Arc Forumnew | comments | leaders | submitlogin
2 points by almkglor 5936 days ago | link | parent

> Although I have managed to figure out how to enable forwarding port 80, I can't find anything on stopping access to port 8080 (so you can still access that port from the internet...). If someone could tell me how to lock that down, I would appreciate it. Thanks in advance.

http://arclanguage.org/item?id=2697



1 point by eds 5936 days ago | link

Thanks for the reminder, I had forgotten about that.

I'm still not sure that's a complete solution though... you don't really prevent access to the port, you just send an access denied message instead of serving the request. (But I don't know that much about web security, so maybe that really is sufficient.)

-----

1 point by almkglor 5936 days ago | link

Not sure either. It depends on whether the Arc Server is secure/{not dumb} enough such that it won't be fooled by someone pretending to be from 127.0.0.1 , for example.

-----

1 point by eds 5935 days ago | link

Couldn't you just make Apache or Linux firewall port 8080 so all attempts to access it from outside are blocked? (That said, I wouldn't know how to do that off the top of my head.)

-----

2 points by gnaritas 5934 days ago | link

Yes, and that's the right approach. See http://articles.slicehost.com/2008/4/25/ubuntu-hardy-setup-p... and scroll down to iptables to see how to setup a firewall on Linux.

-----

1 point by eds 5928 days ago | link

Thanks! That was a really useful article, and not only for setting up firewalls.

-----