Alder Green
2006-Apr-04 09:48 UTC
[Rails] Maintaining and securing the "Perfect Rails/Debian/Lighttpd Stack"
Hi there I''m planning to build "The Perfect Rails/Debian/Lighttpd Stack", published by Ezra Zygmuntowicz and Sean Schertell at http://brainspl.at/rails_stack.html I''m wondering what sort of constant maintanance that setup would incur. What actions have be regularly performed to keep this setup healthy and secure under normal conditions? Alder
Gaspard Bucher
2006-Apr-04 12:00 UTC
[Rails] Re: Maintaining and securing the "Perfect Rails/Debian/LighttpdStack"
Alder Green <alder.green@...> writes:> > Hi there > > I''m planning to build "The Perfect Rails/Debian/Lighttpd Stack", > published by Ezra Zygmuntowicz and Sean Schertell at > http://brainspl.at/rails_stack.html > > I''m wondering what sort of constant maintanance that setup would > incur. What actions have be regularly performed to keep this setup > healthy and secure under normal conditions? > > Alder >Please keep me informed (if possible) on this topic, Thanks Gaspard
Ezra Zygmuntowicz
2006-Apr-04 23:46 UTC
[Rails] Re: Maintaining and securing the "Perfect Rails/Debian/LighttpdStack"
On Apr 4, 2006, at 4:52 AM, Gaspard Bucher wrote:> Alder Green <alder.green@...> writes: > >> >> Hi there >> >> I''m planning to build "The Perfect Rails/Debian/Lighttpd Stack", >> published by Ezra Zygmuntowicz and Sean Schertell at >> http://brainspl.at/rails_stack.html >> >> I''m wondering what sort of constant maintanance that setup would >> incur. What actions have be regularly performed to keep this setup >> healthy and secure under normal conditions? >> >> Alder >> > Please keep me informed (if possible) on this topic, > > Thanks > > GaspardGuys- This is a very broad question ;-) IF you follow the steps to put sshd on a higher port you will avoid tons of automated ssh attacks. As far as maintenance goes, you will need to rotate your log files and delete sessions older then a certain time frame with a cron job. THere is a great debian sys admin web site that has many tutorials on things like firewall rules and other security measures. Aside from these things mentioned, as long as you don''t write insecure web apps that allow attackers to gain a foothold, you should be alright. http://www.debian-administration.org/ Its not a ton of work to run your own server, especially if its just for a few small apps. I have a vps setup with the same guidekines that runs my blog and I hardly ever have to log into the server to do anything. YMMV of course but don''t be afraid of your own server. Its a rewarding experience. And you can always ask here on the list and I will try to help out with problems you run into. Good Luck- Ezra
Alder Green
2006-Apr-05 05:29 UTC
[Rails] Re: Maintaining and securing the "Perfect Rails/Debian/LighttpdStack"
On 4/5/06, Ezra Zygmuntowicz <ezmobius@gmail.com> wrote:> > On Apr 4, 2006, at 4:52 AM, Gaspard Bucher wrote: > > > Alder Green <alder.green@...> writes: > > > >> > >> Hi there > >> > >> I''m planning to build "The Perfect Rails/Debian/Lighttpd Stack", > >> published by Ezra Zygmuntowicz and Sean Schertell at > >> http://brainspl.at/rails_stack.html > >> > >> I''m wondering what sort of constant maintanance that setup would > >> incur. What actions have be regularly performed to keep this setup > >> healthy and secure under normal conditions? > >> > >> Alder > >> > > Please keep me informed (if possible) on this topic, > > > > Thanks > > > > Gaspard > > > Guys- > > This is a very broad question ;-) IF you follow the steps to put > sshd on a higher port you will avoid tons of automated ssh attacks. > As far as maintenance goes, you will need to rotate your log files > and delete sessions older then a certain time frame with a cron job. > > THere is a great debian sys admin web site that has many tutorials > on things like firewall rules and other security measures. Aside from > these things mentioned, as long as you don''t write insecure web apps > that allow attackers to gain a foothold, you should be alright. > > http://www.debian-administration.org/ > > Its not a ton of work to run your own server, especially if its just > for a few small apps. I have a vps setup with the same guidekines > that runs my blog and I hardly ever have to log into the server to do > anything. YMMV of course but don''t be afraid of your own server. Its > a rewarding experience. > > And you can always ask here on the list and I will try to help out > with problems you run into. > > Good Luck- > > Ezra > _______________________________________________ > Rails mailing list > Rails@lists.rubyonrails.org > http://lists.rubyonrails.org/mailman/listinfo/rails >Thanks (again!) Ezra. Alder
Alan Francis
2006-Apr-05 08:54 UTC
[Rails] Re: Maintaining and securing the "Perfect Rails/Debian/Light
Alder Green wrote:> Hi there > > I''m planning to build "The Perfect Rails/Debian/Lighttpd Stack", > published by Ezra Zygmuntowicz and Sean Schertell at > http://brainspl.at/rails_stack.html > > I''m wondering what sort of constant maintanance that setup would > incur. What actions have be regularly performed to keep this setup > healthy and secure under normal conditions? > > AlderHi Alder, Just a note to say I followed the tutorial and all went swimmingly. I had a little problem when I went for a newer version of lighty than was mentioned, reverted, all was well, and have since upgraded to a newer newer version and all is still well. Alan -- Posted via http://www.ruby-forum.com/.