On Fri, 2005-12-16 at 06:45, Dotan Cohen wrote: > > I suppose that if I'm not running anything other that my own > self-brewed php scripts (and assuming that they are secure), that > there is nothing exraordinary to worry about with apache- so I have > decided to leave it on port 80. Apache is used on millions of > webservers, so I guess that I have little to be paranoid about if all > those sysadmins with years of experience are comfprtable running it! > > As for securing my own scripts, that is a different subject. Maybe I > wil dig through the php-general archives on that one. Most exploits that hit php based applications will have something to do with injecting things into database queries or input that is not validated correctly. Being paranoid is a good trait for an admin. :) They are out to get you! > ק
