• Some users have recently had their accounts hijacked. It seems that the now defunct EVGA forums might have compromised your password there and seems many are using the same PW here. We would suggest you UPDATE YOUR PASSWORD and TURN ON 2FA for your account here to further secure it. None of the compromised accounts had 2FA turned on.
    Once you have enabled 2FA, your account will be updated soon to show a badge, letting other members know that you use 2FA to protect your account. This should be beneficial for everyone that uses FSFT.

fold server web access

ICE_9

2[H]4U
Joined
Feb 28, 2005
Messages
3,459
Ok. I have a domain. I have routed the SSL port to my static IP. Changed DNS to point at the fold server.

Question:

How secure is this server?
Is their any changes that need made to secure it from unwanted internet traffic or hackers?

This web hosting stuff is kinda fun so far. I think I might try another website if this works out.

Thanks,
 
It's run over https. You can safely use the server (even the config interface) without worrying that someone is snooping the traffic.

The config interface is protected by a password; it is as secure as the password you choose. The password is sha-1 summed; perhaps if sha-1 were broken someone could figure out a method to get access. Marty9876 has had both SSH and HTTPS redirected to his fold-server box; people have tried to hack it several times to no avail. Since you're redirecting only https, you don't even have to worry about people logging into your machine and changing the password or anything. The password for the web interface is deliberately not changeable from the interface itself.

I sincerely believe the script to be secure, but it would still be a decent idea to disable it. Run "chmod -x /www/cgi-bin/netconf.pl" and it should stop working. Do this and it will be definitely secure. Don't, and it's still probably fine. Netconf is just a lot more code to check than the log script.

Gonna post a linky for the [H]orde to admire? :D
 
how will disabling the script affect the page exactly? I want to still run the server page and reomotely adminstrate it.

As for the link, feel free to admire the garden at https://www.azfolding.com

I only ask that mage dosen't use his super secret password hidden in all copies of fold server to change my User name to his. :D

Thanks for the assurance,
 
Damn, he noticed it! The secret is out!

You wouldn't be able to do any of the remote things that you do through the netconf script. That'd be the "change configuration" link, in other words. I'd be inclined to trust it myself, but I wanted to mention the possibility in case you were as paranoid as I'd tend to be.

Nice little garden you've got going there. :cool:
 
Thanks. I will leave the script running for now I guess. I am planning on leaving for vacation shortly and need to monitor everything while I am away.

Now I am working on getting a web server on a windows system to do some web hosting for a friend as well as myself.

This is getting complicated, (head hurts), but I am learning a lot faster than by reading the book.

 
Great job. I feel inspired now! I have free webspace with COX to play with. Any tips?

BTW, have you run "wget http://vspx27.stanford.edu/psummary.html -O /foldsave/psummary.html"? I got that straight from Mages' LOG.PL. It should take care of the WU's showing as zero points. I had the same problem myself, and running that line cleared it right up.



 
Its updated.

You can use the webspace for image hosting. I used to have cox cable and ran a web page just for stuff but never really had much success with it.
 
To show the servers CPU specs., place a (sym)link to /proc/cpuinfo in /foldsave/fold. Worked great for me. That way you'll get complete pimpage!

Anyways... Keep up the good work.
 
Is that a command line I can type? I am by no means a Linux user, just a dabbler is more like it.
 
U_M will correct me if I'm wrong, but I used: ln -s /proc/cpuinfo /foldsave/fold/cpuinfo. I hope that's how it went... It's been a while. Watch those spaces, too.

Fold-server is my first foray into Linux too. The Mage has been a great help so far 'tho...

Good luck!

P.S. I don't think I had to enter that as ROOT. Damn memory slipping...
 
Thanks, GameALot! It's always amazed me how the users help each other so much. Keep it up, guys! :D
 
Back
Top