Go out onto the WWW and find the shareware paper called "WWW Security FAQ"
written by Lincoln Stein. It is an excellent starting point for www security.
Dr. Stein has also published a more detailed book on www security as well.
To answer your original question: yes. Although Web servers introduce
unique security considerations to your network, the base operating system that
the server is running on must be considered as well. Many web server admins
choose to create a very basic or stripped down operating system for their
servers in an effort to reduce unnecessary exposures. For example, why run nfs
or ftp on your server if they are not necessary.
owner-firewalls-outgoing @ GreatCircle.COM
04/25/97 09:29 PM
Please respond to owner-firewalls-outgoing @
COM @ INTERNET
To: "DDA .
com/P=Internet/A= /C=us" @ X400
Subject: web security?
Hi there! I am a Greek computer science student, and I need to study
about WWW security (I have major homework :((
Is it necessary to study on both NT and Unix Security 'issues?
Thank you. this is my first message to this mailing list. I 'm making my
first steps on Network security, and I am surprised of how much you
people know about firewalls and Internet security in general!