You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@httpd.apache.org by Toto Capuccino <sh...@gmail.com> on 2006/03/14 16:43:56 UTC
[users@httpd] [newbie]Setting a secured apache server
Hi everyone,
I am using a monitoring tool -nagios- that is running through a web
interface where you can configure things. I really want avoid people from
being able to log to that server or to know wich is coming in and out of the
traffic. I am actually using authentication with .htaccess file. Is that the
most secured authentication method ? Yes i know it is a naive question and i
am sure the answer is no, so i should ask which authentication method is the
best?
I want to strongly encrypt the traffic...should i use SSL for that ?
Thanks for your info.
--
Le bon sens est la chose du monde la mieux partagée.
Re: [users@httpd] [newbie]Setting a secured apache server
Posted by Richard de Vries <ri...@yahoo.com>.
You oughta look into mod-security. It allows you to do
some real neat stuff as far as "securing a webserver"
is concerned.
--- Kishore Jalleda <kj...@gmail.com> wrote:
> yes SSL would be your best bet, with .htaccess your
> passwords would be
> travelling in plain text, so go for SSL...
>
> Kishore Jalleda
>
>
> On 3/14/06, Toto Capuccino <sh...@gmail.com>
> wrote:
> >
> > Hi everyone,
> >
> > I am using a monitoring tool -nagios- that is
> running through a web
> > interface where you can configure things. I really
> want avoid people from
> > being able to log to that server or to know wich
> is coming in and out of the
> > traffic. I am actually using authentication with
> .htaccess file. Is that the
> > most secured authentication method ? Yes i know it
> is a naive question and i
> > am sure the answer is no, so i should ask which
> authentication method is the
> > best?
> > I want to strongly encrypt the traffic...should i
> use SSL for that ?
> >
> > Thanks for your info.
> >
> > --
> > Le bon sens est la chose du monde la mieux
> partagée.
> >
>
__________________________________________________
Do You Yahoo!?
Tired of spam? Yahoo! Mail has the best spam protection around
http://mail.yahoo.com
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
Re: [users@httpd] [newbie]Setting a secured apache server
Posted by Kishore Jalleda <kj...@gmail.com>.
yes SSL would be your best bet, with .htaccess your passwords would be
travelling in plain text, so go for SSL...
Kishore Jalleda
On 3/14/06, Toto Capuccino <sh...@gmail.com> wrote:
>
> Hi everyone,
>
> I am using a monitoring tool -nagios- that is running through a web
> interface where you can configure things. I really want avoid people from
> being able to log to that server or to know wich is coming in and out of the
> traffic. I am actually using authentication with .htaccess file. Is that the
> most secured authentication method ? Yes i know it is a naive question and i
> am sure the answer is no, so i should ask which authentication method is the
> best?
> I want to strongly encrypt the traffic...should i use SSL for that ?
>
> Thanks for your info.
>
> --
> Le bon sens est la chose du monde la mieux partagée.
>