SoylentNews is people
SoylentNews
I've been given an old XP pc and have put (X)ubuntu on it in order to get a web-server running with the goal being to let family members sign in and download TV shows/movies/etc.
Have set it up according to a couple of sites (a mix of Ubuntu/apache etc sites) and am using ngrok to open up a tunnel (with the end goal being once it's running and accessible, i will go for the $5/mnth for the permanent address).
Have apache/mysql/php working (this is NEW territory for me, but i THINK it is working correctly) and have ngrok running, but i cannot connect from an external device (my tablet).
I THINK the problem is with firewall (ufw on ubuntu and the router firewall): have tried to get port 80 accessible through both , have allowed access through the router firewall for the web-server: my next plan is to completely stop ufw on the pc and just allow the router to run things.
Does anyone have advice/tips/help?
Gotta be at least a couple people familiar with running a web site around here :)
(Score: 0) by Anonymous Coward on Monday July 30 2018, @06:49PM
You should read https://httpd.apache.org/docs/2.4/misc/security_tips.html [apache.org] But here are some basic steps you can take to harden your server:
Run Apache as a dedicated non-privileged user and group (and definitely don't use nobody).
Secure your directories
Set your various timeout and limit values.
Disable scripting you don't need (SSI, CGI, etc.).
Disable HTTP methods you won't use (Probably anything not HEAD or GET).
Disable ETags.
Set proper security headers on your server.
Forbid .htaccess files.
Disable the Server header (ServerToken).
Set ServerSignature to Off.
Disable Global Directory Listings.
Consider adding mod_security and mod_envasive.
Disable mod_autoindex mod_info mod_include mod_userdir mod_imap mod_status and any other module you are not using.
Enable unattended-upgrades or your OS's equivalent.
Enable TLS
READ YOUR LOGS!!!