Secure php on windows 2003 hosting server.

Posted on 2006-04-12
Last Modified: 2010-04-11
I want to secure php on windows 2003 server. It come to my mind that someone can upload a file and use it to cross sites and defacing other website.
What is the best approch in to leting site owner to use php no that server but make sure that there will not bee a case of cross sitr defacing.
I want to be able to protect agains a hacking attempt
Question by:yalov
    LVL 51

    Accepted Solution


    Author Comment

    Well, Thanks but that did not help so much cause you gave me stuff dealing with scripting. I am looking for eplanation on how am I as a serverowner defance against that. How can I make my server more secure. How can I as a server administrator preavet this things from happening and not as a web site owner. you give me a stuff as if I am a web site owner ant that dose not help.
    LVL 51

    Expert Comment

    > .. as a server administrator preavet this things from happening ..
    you cannot
    all parts --OS, file and process permissions, web server configuration (IIS), application server configuration (PHP), application (PHP-scripts)-- have to take care of each other,
    securing the web server is just a second line of defence, securing the os the third line and so on ...
    The main culprit is the PHP, I mean the programmers writing vulnerable php scripts.
    As server administrator I'd configure php as restrictive as possible (probably also using a patched php, see )


    Featured Post

    Better Security Awareness With Threat Intelligence

    See how one of the leading financial services organizations uses Recorded Future as part of a holistic threat intelligence program to promote security awareness and proactively and efficiently identify threats.

    Join & Write a Comment

    Email attacks are the most efficient and effective way for cyber criminals and hackers to compromise a computer or network. We often find our-self second guessing the authenticity of an email message, for such instances we can follow practical princ…
    If you get continual lockouts after changing your Active Directory password, there are several possible reasons.  Two of the most common are using other devices to access your email and stored passwords in the credential manager of windows.
    Sending a Secure fax is easy with eFax Corporate ( First, Just open a new email message.  In the To field, type your recipient's fax number You can even send a secure international fax — just include t…
    This video discusses moving either the default database or any database to a new volume.

    745 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    14 Experts available now in Live!

    Get 1:1 Help Now