RE: RE: RE: Re: Not Inciting a Holy War

I would never snub FrontPage because it's Microsoft...I snub it because it is terribly insecure
in the way that it ties into the server with it's extensions. Every book on server security I have
read says that you should strip out the extensions and mappings from your server and find a new way
to code your HTML.

Comment on RE: RE: RE: Re: Not Inciting a Holy War

Replies are listed 'Best First'.
RE: RE: RE: RE: Re: Not Inciting a Holy War by Ozymandias (Hermit) on Jun 19, 2000 at 21:46 UTC
FrontPage was originally designed for IntraNet web pages, and that's still where it really shines. Since your Intranet is behind a firewall (it is... isn't it?) then the security issues of the Server Extensions are not so big. Even on the net, with proper username/password policies, you're going to be fine 9 times out of 10. - Ozymandias	[reply]
RE: RE: RE: RE: RE: Re: Not Inciting a Holy War by toadi (Chaplain) on Jun 20, 2000 at 11:13 UTC
Firewalls aren't that secure you know... My opinions may have changed, but not the fact that I am right	[reply]
RE: RE: RE: RE: RE: RE: Re: Not Inciting a Holy War by Ozymandias (Hermit) on Jun 20, 2000 at 19:53 UTC
They are if you use them properly. Block ALL access to every port that isn't absolutely critical. Where possible, shove critical-needs machines that must have net connections outside the firewall, and lock down at the machine level. (i.e., web servers should be outside the firewall - but 22 and 80 should be the only accessable ports, and Apache should be kept current.) Firewalls are EXTREMELY effective when you use them as they were intended to be used, rather than the "but I can't play Quake" way most users would have us do it. - Ozymandias	[reply]
RE: RE: RE: RE: RE: RE: RE: Re: Not Inciting a Holy War by toadi (Chaplain) on Jun 30, 2000 at 17:57 UTC


Think about Loose Coupling
	PerlMonks