Arch Linux as a WebServer

ovihc · 2004-11-30 16:50:57

I want to set up a webserver with PHP and Mysql to host webpages. I have a couple of questions about Arch Linux.

1.) Is Arch Linux a good distro to implement a web server with PHP Mysql and Apache? Is it safe?

I had already chosen Freebsd but I still like Arch linux too much to ignore it.

2.) What type of firewall can I install? Is it possible to install a firewall on the same computer as the server, or is it best to dedicate another computer as a firewall.

cactus · 2004-11-30 17:08:54

ovihc wrote:

1.) Is Arch Linux a good distro to implement a web server with PHP Mysql and Apache? Is it safe?

Sure. Any distro can generally be as safe as you make it. Since most arch users know their systems a bit better than some (how many fedora users know EVERY single package that is installed on their box?), they might have a better shot at securing it.
I would say that arch has some security permission issues, but most of these would only cause problems when there are user accounts on the box and you hand out ssh permission to them. For standalone services, these issues should not effect things.

2.) What type of firewall can I install? Is it possible to install a firewall on the same computer as the server, or is it best to dedicate another computer as a firewall.

Yes, you can have a firewall on the box itself. It is usually recommended to have both, depending on your requirements. For most instances, though, you would probably be fine to just have one on the box.
I just use iptables for my firewall. I just hand edit the rules in a bash script, then just save off the rules when I get them how I wan't them. If you are serious about firewalls, I recommend you just hunker down and get familiar with generating the iptables rules by yourself. If, however, you could really care less about firewalls, and only want simple security from your firewall, then by all means...there are firewall script generators out there for iptabes (gui pointy-clicky things).

afu · 2004-11-30 20:27:19

I have been running a webserver from my desktop at work for over a year with no known problems. I'm the only user on this box, but it is exposed to the net.

oscar · 2004-12-21 18:57:14

I use a script called firehol to generate my firewall rulesets, mostly since I haven't had the time to learn iptables properly

cactus · 2004-12-21 19:52:07

oh, yeah...forgot to mention that php safe mode is a good deal. You should have it enabled.

oscar · 2004-12-21 20:33:07

and disable any short tags!
you can't make a proper xhtml-page if your php parser starts parsing your xml-definition (that starts with <?)

cactus · 2004-12-21 20:38:22

oscar wrote:

and disable any short tags!

short tags are disabled by default I believe..so...
Don't enable short tags!

Arch Linux

#1 2004-11-30 16:50:57

Arch Linux as a WebServer

#2 2004-11-30 17:08:54

Re: Arch Linux as a WebServer

#3 2004-11-30 20:27:19

Re: Arch Linux as a WebServer

#4 2004-12-21 18:57:14

Re: Arch Linux as a WebServer

#5 2004-12-21 19:52:07

Re: Arch Linux as a WebServer

#6 2004-12-21 20:33:07

Re: Arch Linux as a WebServer

#7 2004-12-21 20:38:22

Re: Arch Linux as a WebServer

Board footer