Q

Securing HTML files

We are developing a product that contains around 5,000 HTML files. I am going to install that product in different schools around the world. How can I secure the HTML files in remote places?


In this order:

[1] Secure the server. I'd avoid Internet Information Server(IIS), if possible, due to the many security bugs that have been reported. If you must use IIS, make sure you are diligent about keeping it up to date with patches. This, of course, must be done for the base system as well. Turn off all unneeded services. Check the system with a vulnerability scanner such as ISS, CyberCop, CyberCop Scanner, etc.

[2] Avoid CGI scripts. If you cannot avoid them, use only ones that you have written and know to be correct.

{3] Run something like WatchGuard ServerLock or HP's Virtual Vault. [DISCLOSURE: I am on WatchGuard's advisory board.]


This was last published in May 2001

Dig Deeper on Web Browser Security

PRO+

Content

Find more PRO+ content and other member only offers, here.

Have a question for an expert?

Please add a title for your question

Get answers from a TechTarget expert on whatever's puzzling you.

You will be able to add details on the next page.

Start the conversation

Send me notifications when other members comment.

By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Please create a username to comment.

-ADS BY GOOGLE

SearchCloudSecurity

SearchNetworking

SearchCIO

SearchConsumerization

SearchEnterpriseDesktop

SearchCloudComputing

ComputerWeekly

Close