Safely exposing a service to the internet

To: debian-user@lists.debian.org
Subject: Safely exposing a service to the internet
From: William Ballard <nospam_50115@alltel.net>
Date: Sun, 23 Jan 2005 02:20:08 -0500
Message-id: <[🔎] 20050123072008.GA16690@alltel.net>
Mail-followup-to: debian-user@lists.debian.org

I have a very tight OpenBSD pf firewall.
My ADSL modem also acts as a firewall.
I know how to enable port forwarding in both.
My always-on machine runs Sid.

I'd like to be able to point my WAP-based cell phone
at my home and get a bit of data.  (The data will be
encrypted and then beamed over to my PocketPC where
it will be properly decrypted.)

How many hoops should I jump through for myself for
security?  Naively I would just run apache and when
a properly encrypted request comes in, run a server
process to do whatever is needed, and then return the
data.  Do I have to worry about buffer overflows in
Sid's apache?  Should I make some kind of jail and
put something in a DMZ?

Reply to:

Follow-Ups:
- Re: Safely exposing a service to the internet
  - From: William Ballard <nospam_50115@alltel.net>

Prev by Date: Re: DHCP and IP routing
Next by Date: Setting up USB scanner
Previous by thread: Re: Cyrillic fonts on Firefox?
Next by thread: Re: Safely exposing a service to the internet
Index(es):
- Date
- Thread