Ask the Expert

Securing HTML files

We are developing a product that contains around 5,000 HTML files. I am going to install that product in different schools around the world. How can I secure the HTML files in remote places?


    Requires Free Membership to View

In this order:

[1] Secure the server. I'd avoid Internet Information Server(IIS), if possible, due to the many security bugs that have been reported. If you must use IIS, make sure you are diligent about keeping it up to date with patches. This, of course, must be done for the base system as well. Turn off all unneeded services. Check the system with a vulnerability scanner such as ISS, CyberCop, CyberCop Scanner, etc.

[2] Avoid CGI scripts. If you cannot avoid them, use only ones that you have written and know to be correct.

{3] Run something like WatchGuard ServerLock or HP's Virtual Vault. [DISCLOSURE: I am on WatchGuard's advisory board.]


This was first published in May 2001

There are Comments. Add yours.

 
TIP: Want to include a code block in your comment? Use <pre> or <code> tags around the desired text. Ex: <code>insert code</code>

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
Sort by: OldestNewest

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to: