httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Dan Trainor <>
Subject Re: [users@httpd] Compression and Security
Date Sun, 26 Jun 2005 23:31:29 GMT
Arthur Guy wrote:
> I am not that familiar with apache, I usually use IIS and IIS instillations
> need a patch and filters installed before they are used, I just wanted to
> make sure there wasn't something I was missing with apache.
> Thanks for the security links Aman I will check those out.
> One other thing, I am looking for an ftp server to replace the one that
> comes with IIS, is there a commonly used open source one, the equivalent of
> apache for http. 
> I have looked on several open source software directories but nothing stands
> out.
> Thanks
> Arthur
> -----Original Message-----
> From: Jean-Christophe Montigny [] 
> Sent: 26 June 2005 01:53
> To:
> Subject: Re: [users@httpd] Compression and Security
> Hello,
> Arthur Guy wrote:
>>Isn't it possible to compress images any further?
> Try to compress 100Mb of JPEG pictures and see for yourself.
>>I guess I am not really sure what I am asking when it comes to security, I
>>have setup an apache server running parallel to my current IIS server but
> on
>>port 8080. 
>>I want to switch them over but I would like to be sure that the
> instillation
>>is secure, are there any problems with apache that I need to be worried
>>about? Are there any patches / configuration setups that need to be
> applied?
> What's the point in releasing stable versions if they need to be patched 
> further...
> No, there isn't. Security issues raise from insecure (php, perl, ...) 
> scripts and wrong permissions. If you merely deliver HTML files, and 
> process nothing server-side (such as cgi or aforementioned scripts) then 
> there is not much to do. It depends a lot on the distribution you use, 
> too. But this list is no place for distro flames.
Arthur -

I have been using ProFTPd for quite a while now.  It has an 
"apache-like" configuration file, meaning, it's broken down into 
directives and such.  It's very nice, and I'm sure that many people here 
will also agree.

More info can be found at


The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:> for more info.
To unsubscribe, e-mail:
   "   from the digest:
For additional commands, e-mail:

View raw message