secure settings for live mac tiger web server

Hi,

I'm about to set up dyndns and use my mac as a wed development server. Are there things that I should change to secure the server? I may in the future use it for non-development stuff for low traffic sites but that will be later down the road.

Any suggested changes in settings?

Much thanks,
vkimura
Victor KimuraSEO, Web DeveloperAsked:
Who is Participating?
 
heteronymousConnect With a Mentor Commented:
You're working with Apache (2.x) in OS X Server, so consult the many available sources for securing Apache, and keep in mind the default user assigned for "web" (ie under which the Apache process runs) is _www (with www as an alias of _www ).

See also
http://manuals.info.apple.com/en_US/Leopard_Security_Config_2nd_Ed.pdf
0
 
heteronymousCommented:
Sorry, my bad. TIGER server is going to supply you with Apache 1.3.3 if I recall correctly.

That is rated as sub-optimal in terms of security practices, but configured correctly it should be fine for non mission-critical work.

Otherwise, it's certainly possibly to manually upgrade to the current Apache, but that means forgoing the OS X Server GUI tools.
0
 
Victor KimuraSEO, Web DeveloperAuthor Commented:
Thanks, heteronymous. I have Tiger presently on my mother's home system. I haven't had a chance to read that entire apple doc but I will. I was attempting to upgrade to Apache 2.x but could never get it working on the Tiger. I may upgrade the system to Leopard though as a test. I pray that Leopard will run okay on the older mini mac (powerpc with presently 512 mb).
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.