Security Basics mailing list archives

Previous By Date Next
Previous By Thread Next

Re: DMZ Web Servers

From: David Glosser <david_glosser () yahoo com>
Date: Sat, 6 Sep 2008 10:32:08 -0700 (PDT)
The fact that you are asking this question means you aren't qualified to do it yourself. 
I'm not being insulting or condescending, only realistic. 
 
With sql injection, Cross-Site Scripting, and other issues,  I would hire an expert to properly design and manage the 
infrastucture 24x7 for you. You don't want your site hacked or your back-end database compromised at 3:00 am one 
weekend. 
 
Make sure the design includes two layers of firewalls,  regular vulnerability scanning/penetration testing, IDS/IPS, 
and if possible Web Application firewall. 
 
 
 
----- Original Message ----

From: "Lafosse, Ricardo" <rlafosse () sfwmd gov>
To: security-basics () securityfocus com
Sent: Friday, September 5, 2008 6:29:24 AM
Subject: DMZ Web Servers

Hello All,

I would like to know any suggestions or ideas how some infrastructures
currently setup their Web Servers in the DMZ and connect back to an
Oracle or MSSQL backend on the inside. I was thinking of just allowing
specific IPs and MACs, but any other help would be greatly appreciated.

Thanks!
Rico
Previous By Date Next
Previous By Thread Next

Current thread: