Jump to content


Photo

Hackers : VPS Security ?


  • Please log in to reply
10 replies to this topic

#1 Abaksoft

Abaksoft

    Advanced Member

  • uniGUI Subscriber
  • PipPipPipPip
  • 438 posts
  • LocationAlgeria

Posted 06 August 2014 - 10:22 PM

Hi all,

Anyone have knowledge about VPS security ?
1. If you have an importante Database wich is hosting in a folder, and working with your UNIGUI web application, can a hacker take control of :
- your application.DLL ?
- your database ?

2. Is it safe to show the url : www.xxx.xxx.x.x\myFolder\myappli.DLL
Where xxx.xxx.x.x is your IP server

3. So, hackers can see your IP server !

THX.
  • 0

#2 Marlon

Marlon

    Advanced Member

  • uniGUI Subscriber
  • PipPipPipPip
  • 325 posts
  • LocationNova Mutum - MT - Brasil

Posted 07 August 2014 - 12:36 AM

Hello Abaksoft,

you do not need to show: url: www.xxx.xxx.xx \ myfolder \ myappli.DLL

in my case I only present the Clean URL.

app.falconsistemas.com.br

referring to present the IP you can use a DNS server that hides your real IP: https://www.cloudflare.com/


  • 1

#3 Marlon

Marlon

    Advanced Member

  • uniGUI Subscriber
  • PipPipPipPip
  • 325 posts
  • LocationNova Mutum - MT - Brasil

Posted 07 August 2014 - 12:43 AM

DDoS attack protection:


https://www.cloudfla...om/under-attack


  • 0

#4 Abaksoft

Abaksoft

    Advanced Member

  • uniGUI Subscriber
  • PipPipPipPip
  • 438 posts
  • LocationAlgeria

Posted 07 August 2014 - 08:21 AM

Thank you Marlon,

Very nice is your page home.
So, it confirm that web attacks are possible !
We have to take care of this.

Now my question : even if i hide my VPS IP adresse (Rewrite technics)
can a hacker take control of my VPS server ?

Big THX.
  • 0

#5 Farshad Mohajeri

Farshad Mohajeri

    Administrator

  • Administrators
  • 9666 posts

Posted 07 August 2014 - 08:46 AM

You must activate a firewall and only leave incoming ports open which you need.

You must also change the default ports. For example, don't keep the remote desktop port at its default value.

 

using security software and anti-viruses which are specially designed for Windows Server OS is useful too.


  • 1

#6 Abaksoft

Abaksoft

    Advanced Member

  • uniGUI Subscriber
  • PipPipPipPip
  • 438 posts
  • LocationAlgeria

Posted 09 August 2014 - 11:17 AM

Big Thx Farshad.
  • 0

#7 Volkov-VAA

Volkov-VAA

    Member

  • Members
  • PipPip
  • 19 posts

Posted 14 August 2014 - 03:19 PM

You must activate a firewall and only leave incoming ports open which you need.

You must also change the default ports. For example, don't keep the remote desktop port at its default value.

 

using security software and anti-viruses which are specially designed for Windows Server OS is useful too.

Hi,  Farshad!

 

Let's take out discussion about safety in a separate branch of a forum.
There is a wish to see responses of security specialists about check of the created server on vulnerability.

 

 

 

 


  • 0

#8 vipin

vipin

    Newbie

  • Members
  • Pip
  • 1 posts

Posted 18 January 2016 - 08:39 AM

Hi we are converting our delphi application in web using uniGUI. Please let me know how we do web security management for this web app.


  • 0

#9 Farshad Mohajeri

Farshad Mohajeri

    Administrator

  • Administrators
  • 9666 posts

Posted 18 January 2016 - 09:03 AM

Hi we are converting our delphi application in web using uniGUI. Please let me know how we do web security management for this web app.

 

First step is to use UniLoginForm to create a login form for your app.


  • 0

#10 Abaksoft

Abaksoft

    Advanced Member

  • uniGUI Subscriber
  • PipPipPipPip
  • 438 posts
  • LocationAlgeria

Posted 28 January 2016 - 08:00 PM

Hello vipin,
In addition to what has already been said, you can add
some of techniques that you can improve :
1. Change your default DataBase "masterkey".
2. Even if your folder is stollen, allow runing your program only on your VPS (signature Mac adress etc...)
3. Protect your dll from reverse ingineering (unigui generate a no classical dll...i am testing a solution).

Greetings.
  • 0

#11 md9projetos

md9projetos

    Advanced Member

  • uniGUI Subscriber
  • PipPipPipPip
  • 131 posts
  • LocationSao Paulo- Brazil

Posted 19 August 2016 - 11:03 PM

Talking about security,The mere fact that uniGUI is a server centric environment is already an advantage over traditional Delphi desktop applications.

Application security and server security are two different subjects.

I see many people here concerned about html injection,even though its a valid concern ,SQL injection is still much more dangerous.I myself never write SQL statements in my client application (at least when I´m doing my own stuff and tell the rules).

In your client you should only call methods of  a service or stored procedures and work with the resultsets.

Allways use https ,encryption whatever tool you have in your hands.

If it make things slow,you should work in a VPN .

 

Talking about server security,no matter what you do ,you´ll probably never reach the same level of security of a hosting provider,but if you really want to host yourself the best thing is buying a good dimensioned embed Linux appliance(Fortigate,Sonicwall,etc),and make a course to at least understand the basic concepts.

Some of these appliances even have a kind of playgound to fool hackers.

 

Try not to have your database ,and web server in the same machine,make several backups each day,have periodic password changes,policies to do whenever you fire a system administrator and so on.

 

And of course,don´t use the database server,or the web server to surf the WEB.


  • 1




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users