March 2013 | Snel.com

Making the open or closed source decision

When it comes to setting up dedicated servers to run a website, one of the key questions that needs to be addressed is what web server software will be used. The key choice will be whether to opt for an open-source solution such as Apache HTTP Server or a closed alternative like Microsoft's IIS. There are many things to consider and one of the major issues will be how secure the solutions are.
It was noted by news provider Opposing Views that opinions differ on which is the best solutions and each has pros and cons. Therefore, it offered some details about the benefits of both choices.

Open source

The key feature of open-source software is all its code is freely available for users to study and compile. Advocates of this solution claim it is therefore more secure because of the large community that can assess the technology and can report vulnerabilities quickly.

Looking for weaknesses in compiled code is also said to be very time consuming and take real expertise, so only hackers planning to profit from exploiting vulnerabilities are likely to make the effort.

Closed source

On the other hand, solutions such as IIS are kept closed, with only the development team having access to the official copies of the source code. This means hackers would have to decompile the code themselves, which makes finding exploits more difficult. What's more, IIS does not rely on volunteers to identify vulnerabilities, while the development team can create patches for the software much more quickly, as IIS is a business product with dedicated staff whose job is solely to focus on making the solution more secure.
It was observed by Opposing Views there is no overall consensus on which approach is better from a security perspective, so it will ultimately be up to you to weigh up the positives and negatives of each and make the best decision for your business, taking into account all factors, not just security.

However, it was also noted that no matter what web server software you opt for, insecure settings by the end user will make the solution a tempting target for hackers, so IT personnel need to make sure they are doing all they can to minimise their risk.

Why businesses are switching to dedicated servers

For many businesses that need to maintain a fast, reliable website as a key part of their operations, there's an increasing recognition that the best solution for meeting their needs in the current environment is dedicated servers. It was observed by news provider MyHostNews that shared services are no longer a viable options for many companies when it comes to running a business website.

This is because the resources are being split between too many users, resulting in bottlenecks and slow speeds that can seriously harm a business' ability to operate online. As the internet is now the first point of contact for many potential customers, you can't afford to present a poor first impression when it comes to your website. Delays of even a few seconds could make all the difference between acquiring a new customer and people getting frustrated and turning elsewhere.

Guaranteed resources

This is one of the main reasons why dedicated alternatives have become so attractive to many organisations. With these tools, you're able to use all of the resources of the servers and, if you choose to build your own dedicated servers, you can be sure they will have all the processing power needed for your business.
Another benefit of this is that you're also able to upgrade them whenever you need, if you find you're outgrowing your existing solutions. By building your own dedicated servers, you can be sure you get the exact amount of resources for your business without overpaying for excess capacity.

More control

Adopting dedicated servers also provides you with a greater degree of control over your operations. You'll be free to select the operating system of your choice and customise it in exactly the right way to meet your business' unique needs.
Because you'll have full administrator or root access to all aspects of the solution, you'll be able to easily manage and monitor your resources and spot any potential problems early, allowing you to take corrective action to ensure your servers are always operating to their full potential.

Security tips for Apache offered

When it comes to setting up a web server, one area that it's vital you don't overlook in the current environment is security. Cybercriminals are becoming more innovative all the time and constantly developing new ways of compromising websites. For instance, figures from Kaspersky reveal the firm detects an average of 200,000 new threats every day, so it's clear that if you don't have the latest up-to-date protections, you'll be leaving yourself vulnerable.

But installing anti-malware solutions is only the first step in keeping your servers secure, as there are many more steps you can take to protect your systems and confidential information. If you're running your website on Apache HTTP Server, there are a few simple security tips you should be considering. It was observed by information provider the Hosting News that this is far and away the most popular web server software, so offered a few basic tips for keeping your server secure.

Disable directory indexing

The site explained that if directory indexing is enabled, any visitor to your site can view the contents of directories that don't have default pages. This can be a serious security risk, so preventing these from being visible is one of the simplest steps you can take to make your site secure

Disable Apache Signature

Under the default settings, Apache sends information about itself to the client, which may include details such as the name of the application, version number and in some cases even the operating system, all of which an attacker can use to find vulnerabilities. Switching off ServerSignature and ServerTokens prevents this and makes life more difficult for criminals.

Install an application firewall

While you should already have network firewalls in place to protect your internal systems, having an application firewall that is designed to secure your web applications is a must. This sits between your server and the internet to stop hackers exploiting your scripts.
These tips were noted to be just some of the simplest things you should be doing to protect your web server and should be viewed as a start, rather than a comprehensive solution. But once you've got the basics set up, you'll be well-placed to ensure all your systems are protected from attack.

OpenSUSE 12.3 promises faster speeds, more features

Last week, the open-source Linux operating system openSUSE announced the launch of its version 12.3, which is one of the first in what is expected to be a series of upgrades to several of the Linux platform's most popular distributions. It was noted by online news provider ZDNet that other solutions set to receive an update in the coming weeks include Debian, Ubuntu and Korora, but openSUSE has managed to beat them out of the gate and offer users an improved experience.

Stable and easy to use

In the release announcement for the platform, openSUSE noted the 12.3 version provides a stable solution that should be simple to get to grips with. The latest update offers finishing touches to the boot infrastructure and package management, as well as more cloud capabilities for dedicated server users.
For administrators, openSUSE 12.3 is the first build to offer complete packages for open-source cloud computing platform OpenStack. It also comes with enhanced virtualisation tools, while for database users, the distribution has moved from MySQL to MariaDB as its default solutions.
"It provides an efficient mechanism for creating and storing documents for web APIs. Range Types allow developers to create better calendaring, scientific and financial applications," openSUSE stated.

OpenSUSE 12.3 'a winner'

The operating system has been evaluated by ZDNet, with the publication stating there's a lot to like about the latest build. It was observed the system works well with a wide range of hardware, including almost all Intel core processors and AMD chipsets and the publication said it was unable to find a device on which the system didn't run. OpenSUSE 12.3 was also praised for its ease of use, with users able to get up and running on any system without the need for any extra effort or special installation procedures.
But this is just one of the many Linux distributions available for your server. Each might have different pros and cons depending on how you intend to use it, so it pays to look at the various options closely before making a final decision.

What does a minute on the internet look like?

One of the big trends that anybody running a website will no doubt be aware of at the moment is the huge increase in the amount of data being sent and received. It's vitally important for all website owners that they have adequate bandwidth and processing solutions on their servers to cope with ever-increasing traffic. More sites are now using intensive features such as videos and animations, so you need to have the right infrastructure to back this up.

But what does this data mean in real terms? It's all very well talking about terabytes, petabytes and even bigger numbers, but how does this equate to what people do every day? One company that has been trying to answer this is Intel, which recently offered a snapshot of what goes on across the internet in a typical minute.

A minute in the internet

The firm revealed that every 60 seconds, 204 million emails are sent around the world. What's more, around 20 million photos are viewed online and 3,000 new images are uploaded to Flickr. Meanwhile, at least six million Facebook pages are being viewed at any one time while more than 1.3 million YouTube clips are being watched. In commerce, Amazon alone racks up $83,000 (€64,180) in sales each and every minute. However, the dangers of the internet were also highlighted, as there are 135 new botnet infections and 20 people will fall victim to identity theft online.

Explosion in connectivity

What's driving this huge growth is the increase in the number of connected devices in use. Today, it was observed the number of gadgets is roughly equal to the world's population, but by 2015, the number of networked devices will double, so there will be two connections for every person on the planet.
Intel warned it will therefore be a huge challenge for existing networks to step up and handle the explosion in traffic that will result from this, particularly if infrastructure is to remain secure. Therefore, having scalable web server solutions that can be upgraded on demand to meet the evolving environment could be essential if you're going to be prepared for the years to come.

Outdated software ‘a key threat’ to web servers

Companies running web servers who are looking to make sure their sites are protected against the threat of cybercrime need to make sure all their software is up to date, as this has been identified as one of the key risks facing the web.

With so much to think about when it comes to deploying and then maintaining a website, it may be understandable that patching software applications and upgrading solutions falls down the list of priorities. After all, as long as a site is up and running and working effectively, this could be the main thing developers focus on.
However, what this may mean is that good patching practices get neglected and it may be only when high-profile updates are in the news - such as Oracle's recent patch to fix a serious exploit discovered in Java - that spurs companies into action to check their own security.

Web servers 'key source of risk'

One expert to stress the importance of having the right software recently was HD Moore, chief information security officer at Rapid7 and founder of the Metasploit framework. He told the RSA 2013 conference about a scan he performed on the IPv4 web space that found many security flaws are based on outdated software.
Esecurity Planet reported he found old versions of software such as Microsoft IIS and Apache HTTPD were common, all of which could be at risk from publicly-known vulnerabilities that have been removed in newer versions of the software.

Backbone of the net

Having the most up-to-date tools on these systems is essential, as Mr Moore stated: "Web servers make the internet go around." Therefore, not being on the ball when it comes to maintaining these solutions has the potential to be hugely costly to firms as they could leave themselves exposed to significant risk.
Even though many developers' primary concerns may be on zero-day vulnerabilities, which dominates media hype and much security research, the fact that revealed exploits can be discovered anywhere and then used against slow to react companies is a serious problem that needs to be addressed.