httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "P Fudd" <pf...@binkmail.com>
Subject Re: [users@httpd] running httpd in chroot jail
Date Fri, 18 Jan 2013 19:47:44 GMT

> Zachary Stern <zs@enternewmedia.com> wrote:
> Does it make sense to block outgoing connections for a web server? There
> are some cases where our apps do connect to things like external APIs, and
> they do it on the backend, not necessarily in-browser.

Block outgoing connections to anything apart from the machines you want
and need to connect to.  It means the hacker can connect to them too, but
at least they can't connect to the other 99.9999% of the internet to hack
and cause further problems, using your ip address and reputation when
doing it.

Cheers

---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org


Mime
View raw message