473,887 Members | 2,357 Online
Bytes | Software Development & Data Engineering Community
+ Post

Home Posts Topics Members FAQ

Open port 80, security issues?

Hi.

This might not be the right forum for my question, but still I throw it out:

I have just succeeded in publishing my ASP.NET web application on my own PC,
opening port 80 in/out in my firewall, so now it is accessable from
internet. It is running on IIS own WinXP.

So far I haven't exeperienced any problem, but are there actions I should
take to secure my PC against hackers, now that port 80 is open? Like add-on
s/w or other smart stuff?

Thanks.

Regards
Bjorn
Dec 21 '07 #1
4 2718
I don't believe so...but bare in mind Im no expert...

As long as your filewall stops access to all those other things you dont
want people having access to....like say sql server or whatnot...

Make sure you got all the latest service packs etc

The security holes will come in from your code so as long as your have
security holes in it like sql injection and protection from brute force
stuff...Then make sure your IIS settings has only the minimum access that
your application needs and I think you are safe..

http://httpsentry.httpsentry-com.qarchive.org/ <-- I just googling and found
this, I cannot verify the product is of use, but if you google all the
things it claims to report on, you will know well enough...

Anyone else know?
"Bjorn Sagbakken" <bj*****@online .nowrote in message
news:Uu******** *************@t elenor.com...
Hi.

This might not be the right forum for my question, but still I throw it
out:

I have just succeeded in publishing my ASP.NET web application on my own
PC, opening port 80 in/out in my firewall, so now it is accessable from
internet. It is running on IIS own WinXP.

So far I haven't exeperienced any problem, but are there actions I should
take to secure my PC against hackers, now that port 80 is open? Like
add-on s/w or other smart stuff?

Thanks.

Regards
Bjorn

Dec 25 '07 #2

"Bjorn Sagbakken" <bj*****@online .nowrote in message
news:Uu******** *************@t elenor.com...
Hi.

This might not be the right forum for my question, but still I throw it
out:

I have just succeeded in publishing my ASP.NET web application on my own
PC, opening port 80 in/out in my firewall, so now it is accessable from
internet. It is running on IIS own WinXP.

So far I haven't exeperienced any problem, but are there actions I should
take to secure my PC against hackers, now that port 80 is open? Like
add-on s/w or other smart stuff?
1) Win XP is not a Web server platform, and you shouldn't be exposing a
workstation to the Internet. If you're going to do such a thing, the you
should be using Win 2k3 server, which is a Web server platform.

2) If the O/S, file system, registry, user accounts, and IIS itself are not
secured/harden to attack, then all you have is hack bait that can be used as
a jumping off point to attack other Web servers and other networks over the
Internet from your computer There are entire books used by professionals,
and they can hardly secure the Win NT based O/S platform facing the
Internet.

3) I'll assume you're talking about XP's firewall or some 3rd party personal
firewall. They are not firewalls. They are machine level packet filters. A
firewall separates two networks. It protects from the network it's
protecting from usually the Internet, and it protects the network it's
protecting the LAN. I firewall must have at least two interfaces. One
interface must face the WAN/Internet and the other interface must face the
LAN. In the case of a software firewall solution running on secured gateway
host computer, the host computer will have at least two network interface
cards (NICS) with one facing the WAN and the other one facing the LAN.

http://www.vicomsoft.com/knowledge/r...irewalls1.html

The list is long as to what you should being doing that you don't have the
expertise to do.

I hate to be blunt about it, but I think you have put up hack bait that has
already been hacked, and you don't know about it.

Dec 26 '07 #3
Thanks for your input. I will try filters like httpsentry.

Bjorn

"John" <no****@nospam. comwrote in message
news:fk******** *@news2.newsguy .com...
>I don't believe so...but bare in mind Im no expert...

As long as your filewall stops access to all those other things you dont
want people having access to....like say sql server or whatnot...

Make sure you got all the latest service packs etc

The security holes will come in from your code so as long as your have
security holes in it like sql injection and protection from brute force
stuff...Then make sure your IIS settings has only the minimum access that
your application needs and I think you are safe..

http://httpsentry.httpsentry-com.qarchive.org/ <-- I just googling and
found this, I cannot verify the product is of use, but if you google all
the things it claims to report on, you will know well enough...

Anyone else know?
"Bjorn Sagbakken" <bj*****@online .nowrote in message
news:Uu******** *************@t elenor.com...
>Hi.

This might not be the right forum for my question, but still I throw it
out:

I have just succeeded in publishing my ASP.NET web application on my own
PC, opening port 80 in/out in my firewall, so now it is accessable from
internet. It is running on IIS own WinXP.

So far I haven't exeperienced any problem, but are there actions I should
take to secure my PC against hackers, now that port 80 is open? Like
add-on s/w or other smart stuff?

Thanks.

Regards
Bjorn


Dec 27 '07 #4

"Mr. Arnold" <MR. Ar****@Arnold.c omwrote in message
news:u2******** ******@TK2MSFTN GP02.phx.gbl...
>
"Bjorn Sagbakken" <bj*****@online .nowrote in message
news:Uu******** *************@t elenor.com...
>Hi.

This might not be the right forum for my question, but still I throw it
out:

I have just succeeded in publishing my ASP.NET web application on my own
PC, opening port 80 in/out in my firewall, so now it is accessable from
internet. It is running on IIS own WinXP.

So far I haven't exeperienced any problem, but are there actions I should
take to secure my PC against hackers, now that port 80 is open? Like
add-on s/w or other smart stuff?

1) Win XP is not a Web server platform, and you shouldn't be exposing a
workstation to the Internet. If you're going to do such a thing, the you
should be using Win 2k3 server, which is a Web server platform.
At the moment I am only testing, but I take your advise, so if the
appliaction ends up more permanently I will set up a different machine with
Win 2k3
2) If the O/S, file system, registry, user accounts, and IIS itself are
not secured/harden to attack, then all you have is hack bait that can be
used as a jumping off point to attack other Web servers and other networks
over the Internet from your computer There are entire books used by
professionals, and they can hardly secure the Win NT based O/S platform
facing the Internet.
Scary stuff, indeed. But of course, that was the reason I asked.
3) I'll assume you're talking about XP's firewall or some 3rd party
personal firewall. They are not firewalls. They are machine level packet
filters. A firewall separates two networks. It protects from the network
it's protecting from usually the Internet, and it protects the network
it's protecting the LAN. I firewall must have at least two interfaces.
One interface must face the WAN/Internet and the other interface must face
the LAN. In the case of a software firewall solution running on secured
gateway host computer, the host computer will have at least two network
interface cards (NICS) with one facing the WAN and the other one facing
the LAN.

http://www.vicomsoft.com/knowledge/r...irewalls1.html

The list is long as to what you should being doing that you don't have the
expertise to do.

I hate to be blunt about it, but I think you have put up hack bait that
has already been hacked, and you don't know about it.
Thanks for the information. I will also check with my company's it-personell
about the best approach for securing a
personal web server, like a host computer or a recommended s/w firewall.

Bjorn
Dec 27 '07 #5

This thread has been closed and replies have been disabled. Please start a new discussion.

Similar topics

1
1920
by: Ray Lavelle | last post by:
I have an application which runs in many different stores. Stores that are within a chain want to be able to share their client lists. I want to implement a sync process where each application would ping a central server every 5-10 mins to check for changes made by any other store to the client list, if any changes are made it would download the new or modified clients then upload any clients that were modified localy. I want the stores...
4
8567
by: Sylvain | last post by:
Hi everybody ! I need some help in programming an RS232 serial interface. Opening a com port upper than "COM9:" (for example "COM10:", "COM11:" etc)returns ERROR_INVALID_NAME error. Details: I use C++ with MFC with Wisual Studio 6.0 on XP.
27
3889
by: Mike | last post by:
Open source programs in general suck pretty bad also. Here are some loose facts regarding why projects like Linux, PHP, MYSQL, and other open source programs suck: - Linux is simply a clone of an operating system over 20 years old similar to DOS (Unix). That's ALL Linux is. The kernal was taken, decompiled, and stolen by Linus himself. That's a fact. Xerox should have sued, but at the during the early 1991, no one was really using Unix...
3
5291
by: Frank Perry | last post by:
Howdy, I'm trying to write data out the com port. I have taken the code from the sample on the MSDN Library CD and used the parts that seem relevant. I can open the com port with CreateFile and get a valid file handle back. But when I try to write to it, the WriteFile comes back and tells me the handle is invalid. The program has control of the port because using Hyperterminal, I can't connect when the program is connected. There...
6
6774
by: Daniel | last post by:
Hi all, Can i open and edit the excel sheet on web page after downloading? After editing, i close the web page and the excel file auto upload to the server. Is it possible? I really struggling about the ability. If not, what advice can u provide? thank you in advance. ur help will be appreaciated.
6
3130
by: kai | last post by:
Hi, I was tring to run an example (HelloWorld.aspx) from MSPrss book, I get this message: "ASP.NET Development Server faild to start listening port 1034. Error message: An attempt was made to access a socket in a way fobidden by its access permissions."
6
3648
by: Brad | last post by:
I have a win2003 server workstation with multiple webs, each web has it's own ip address. In VS2005, if I select to open an existing web site, select Local IIS, the dialog correctly displays a list of all of my webs, however if I attempt to open a site under and web other than localhost I receive the message: "Unable to open the Web 'http://localhost/anywebappname'. The Web 'http://localhost/anywebappname' does not exist" Obviously...
25
3651
by: bmearns | last post by:
Is it possible to specify which port to use as the outbound port on a connection? I have the IP address and port number for the computer I'm trying to connect to (not listening for), but it's expecting my connection on a certain port. Specifically, I'm trying to write an FTP host, and I'm trying to implement the PORT command. From everything I've read, the client supplies the IP address and port number for where I'm supposed to connect...
6
1373
by: Erwin Moller | last post by:
Hi, Maybe this is old news for some of you, but I just found this: http://blogs.zdnet.com/BTL/?p=9847 It will include a JavaScript Virtual Machine built from scratch. Regards, Erwin Moller
0
9799
by: Hystou | last post by:
Most computers default to English, but sometimes we require a different language, especially when relocating. Forgot to request a specific language before your computer shipped? No problem! You can effortlessly switch the default language on Windows 10 without reinstalling. I'll walk you through it. First, let's disable language synchronization. With a Microsoft account, language settings sync across devices. To prevent any complications,...
0
11173
Oralloy
by: Oralloy | last post by:
Hello folks, I am unable to find appropriate documentation on the type promotion of bit-fields when using the generalised comparison operator "<=>". The problem is that using the GNU compilers, it seems that the internal comparison operator "<=>" tries to promote arguments from unsigned to signed. This is as boiled down as I can make it. Here is my compilation command: g++-12 -std=c++20 -Wnarrowing bit_field.cpp Here is the code in...
1
10875
by: Hystou | last post by:
Overview: Windows 11 and 10 have less user interface control over operating system update behaviour than previous versions of Windows. In Windows 11 and 10, there is no way to turn off the Windows Update option using the Control Panel or Settings app; it automatically checks for updates and installs any it finds, whether you like it or not. For most users, this new feature is actually very convenient. If you want to control the update process,...
0
10432
tracyyun
by: tracyyun | last post by:
Dear forum friends, With the development of smart home technology, a variety of wireless communication protocols have appeared on the market, such as Zigbee, Z-Wave, Wi-Fi, Bluetooth, etc. Each protocol has its own unique characteristics and advantages, but as a user who is planning to build a smart home system, I am a bit confused by the choice of these technologies. I'm particularly interested in Zigbee because I've heard it does some...
0
9593
agi2029
by: agi2029 | last post by:
Let's talk about the concept of autonomous AI software engineers and no-code agents. These AIs are designed to manage the entire lifecycle of a software development project—planning, coding, testing, and deployment—without human intervention. Imagine an AI that can take a project description, break it down, write the code, debug it, and then launch it, all on its own.... Now, this would greatly impact the work of software developers. The idea...
0
7141
by: conductexam | last post by:
I have .net C# application in which I am extracting data from word file and save it in database particularly. To store word all data as it is I am converting the whole word file firstly in HTML and then checking html paragraph one by one. At the time of converting from word file to html my equations which are in the word document file was convert into image. Globals.ThisAddIn.Application.ActiveDocument.Select();...
0
5809
by: TSSRALBI | last post by:
Hello I'm a network technician in training and I need your help. I am currently learning how to create and manage the different types of VPNs and I have a question about LAN-to-LAN VPNs. The last exercise I practiced was to create a LAN-to-LAN VPN between two Pfsense firewalls, by using IPSEC protocols. I succeeded, with both firewalls in the same network. But I'm wondering if it's possible to do the same thing, with 2 Pfsense firewalls...
0
6011
by: adsilva | last post by:
A Windows Forms form does not have the event Unload, like VB6. What one acts like?
3
3245
bsmnconsultancy
by: bsmnconsultancy | last post by:
In today's digital era, a well-designed website is crucial for businesses looking to succeed. Whether you're a small business owner or a large corporation in Toronto, having a strong online presence can significantly impact your brand's success. BSMN Consultancy, a leader in Website Development in Toronto offers valuable insights into creating effective websites that not only look great but also perform exceptionally well. In this comprehensive...

By using Bytes.com and it's services, you agree to our Privacy Policy and Terms of Use.

To disable or enable advertisements and analytics tracking please visit the manage ads & tracking page.