|
| Okay fair enough. We could probably use some other protocol easily
enough. I've never heard of either scp or sftp.
But let me clarify where I am coming from. I am a middle-weight techie,
not a heavy-weight. I spend most of my time sorting out content, doing
graphic design, editing , copywriting, managing staff etc. I am not,
and do not pretend to be a heavy weight techie. In fact I dont even
write code (shock horror!) - I simply run a website which is becoming
quite high profile and needs to be run professionally. With me so far?
Okay so I'm not a heavy-weight techie, but I do need to understand the
heavy-weight techie ISSUES! Hence my presence here asking dumb
questions. But I need to know what questions to ask our heavyweight
techies and I need to be able to make reasonably sensible strategic
decisions.
William you seem to know your stuff - in another post, you recommened
FileZilla which seems to be quite robust. Thanks for that btw! Anyhow
I've got FileZilla in the middle of a huge transfer as I write this, so
I dont want to mess with it too much... but does it have the capability
to do sFTP or SCP?
To answer some other points raised. The other folks on the IP ranges
are so far all employees and/or freelance subcontractors. i.e. just 4
IP numbers so far. So that's not a bad start.
It sounds like sFTP is probably a must (is that just encrypted FTP a
bit like httpS: compared to http: ?)
I am told by our techies that MySQL, Apache and Linux are all the
latest versions.
(Though how do I know our techies are telling the truth?!)
Likewise I have the same problem knowing about the Router.
So how do I make sure that all our web-browsers arent vulnerable to
attack and being taken over? I guess I need to make sure that they are
all behind firewalls or something.
And this is where my knowledge really does run out. There seem to be
dedicated firewall boxes and software firewalls ( like those which come
free with msWindows).
[Aside: Now please dont start ranting about Micro$oft - I disapprove of
them as much as the next man, but for now they are a necessary evil in
the business world so can we move on...?]
I'm not looking for the ULTIMATE security - just good, sensible stuff.
Let's not get too paranoid here - afterall there's nothing particularly
interesting on the site in any case, but it might become a tempting
target as it grows in profile!
DoS attacks. Gads not sure what one is supposed to do about that. Can
dedicated firewall boxes help snuff that out automatically??
Regarding unwanted OUTgoing traffic - that's an interesting point. I'll
have to find out.
Btw, when everyone talks about firewalls do they mean dedicated
hardware boxes or software running on a PC/server... or both?!
I like Matt's idea of contacting hackers to see if they can get it. The
only trouble is that I dont know of any - and any that I found I'd
need to be able to trust 100%.
Yes we arent allowing any anonymous access to the back end of the
server whatsoever. I mean users can read HTML files & JPEGs, GIFs etc
and they can also fill in forms (formmail or something??) and they also
have access to our php forms etc.
But there is no anonymous FTP access allowed for example...
With thanks
Ship
Shiperton Henethe
Shiperton Henethe
|
|