Closed. This question is not about programming or software development. It is not currently accepting answers.
This question does not appear to be about a specific programming problem, a software algorithm, or software tools primarily used by programmers. If you believe the question would be on-topic on another Stack Exchange site, you can leave a comment to explain where the question may be able to be answered.
Closed 12 days ago.
Improve this question
How can I check if website can be viewed without getting blocked by firewalls like the ones in the schools or in the public places?
I want my website to possibly be viewed from everywhere.
I have Cloudflare DNS and an SSL Certificate from Let's Encrypt
Thank you!
I don't know what to try.
I hope you have only the best intentions with this 😬
I first want to point out, that there are many different scenarios of your site to get blacklisted/blocked. Which would reach from a school blacklisting you to a government DNS blocking your website.
In contrast there would be whitelisting e.g. the school deciding that the people in their network only can view this list of websites. In this case you could do very little to be reached from this network.
To circumvent the blockage of a website it normally requires the user to get around it e.g. by using a VPN.
That said, it seems to me that for a new site it would be most effective to not get blacklisted in the first place.
Related
Closed. This question does not meet Stack Overflow guidelines. It is not currently accepting answers.
This question does not appear to be about a specific programming problem, a software algorithm, or software tools primarily used by programmers. If you believe the question would be on-topic on another Stack Exchange site, you can leave a comment to explain where the question may be able to be answered.
Closed 7 years ago.
Improve this question
I am planning to build my own hosting for my website but I don't have much information about Domain Name Service(DNS), I know how it works but I do not know who is responsible, Whom does Hosting companies ask to register domain names?
This is a complicated and expensive process, that will certainly cost many thousands of dollars to complete.
It depends on which Top Level Domain you wish to register, but the first step will very likely be gaining ICANN registrar Accreditation
You will then most likely need financial and business verification.
Once you have gained registrar status, you would then need the technical expertise to maintain your records with the root servers.
In order to register a domain for a website, it will be infinitely cheaper, easier and quicker to go one of the bulk domain registars.
Closed. This question does not meet Stack Overflow guidelines. It is not currently accepting answers.
Closed 7 years ago.
This question does not appear to be about a specific programming problem, a software algorithm, or software tools primarily used by programmers. If you believe the question would be on-topic on another Stack Exchange site, you can leave a comment to explain where the question may be able to be answered.
This question does not appear to be about a specific programming problem, a software algorithm, or software tools primarily used by programmers. If you believe the question would be on-topic on another Stack Exchange site, you can leave a comment to explain where the question may be able to be answered.
Improve this question
A newbie here, so please bear with me. I registered a domain with a big hosting company.
A few days ago, I noticed I started getting emails directly to my personal email with my full name. I started searching up my website and found a website who shows all my personal information. The exact full address where I live, my full name and my phone number.
Do personal information like that suddenly go all public when I register a domain, without my permission? A little bit worried if it's supposed to be like that, so I'm just asking.
When you register a domain, your contact information is published in the WHOIS service. You can use a WHOIS lookup tool and enter your domain name to see what the registration says. Anyone on the Internet can see the same thing.
Many domain registrars offer a privacy filtering service. They will obscure that information and put up their own name, address, etc. (Look up my domain, tangledhelix.com, for an example of what that might look like.) Some registrars will charge you for this, while others offer it for free or bundled with hosting or something else they sell.
Of course, it is too late to pull back the publication of the information now, but you can add a privacy shield service (if your registrar offers one) and stop the leakage from going further.
Closed. This question does not meet Stack Overflow guidelines. It is not currently accepting answers.
This question does not appear to be about a specific programming problem, a software algorithm, or software tools primarily used by programmers. If you believe the question would be on-topic on another Stack Exchange site, you can leave a comment to explain where the question may be able to be answered.
Closed 7 years ago.
Improve this question
Currently for a company dedicated hosting server, there are a large amount of 403 errors being generated by the company IP for a specific website, while no one from the company is accessing that site. There are a large number of client sites, as well as a staging site hosted on this server, to which the hosting company locked out the company with the reason "a brute force attack was launched from IP address ... (the company IP)". Is there any way the IP could be used by an outside source, or would there be some software, malware, or general error that could be causing this? I'm far from a security expert, and at a loss while the hosting company is not able to give clear answers other than to offer to disable their "mod_security firewall".
Thanks!
You should be able to track on your companies firewall (outbound) what local machines are spamming this external server with requests.
The 403 is just a bi-product of a different problem - the spamming appears to be the root problem. 403 is showing because the request is likely to be malformed and not accepted by the hosted web server.
It is not possible to "steal" an IP when talking about TCP/IP so if the hosting provider detected that it is true.
If you have no firewall where to monitor that and the head of IT thinks does not think that getting one is a good idea..... Go to http://careers.stackoverflow.com/ and start looking for another.
Closed. This question does not meet Stack Overflow guidelines. It is not currently accepting answers.
This question does not appear to be about a specific programming problem, a software algorithm, or software tools primarily used by programmers. If you believe the question would be on-topic on another Stack Exchange site, you can leave a comment to explain where the question may be able to be answered.
Closed 8 years ago.
Improve this question
I have outsourced the programming of an iPhone app.
The programmer has requested access to a server to uploaded data from the app which is a necessary part of our app.
However I have never met the programmer.
I don't have any programming skills, and wouldn't know what he has uploaded to the server.
So therefore,
Do you know of any solutions to my issue of ensuring that the server is only used for the purpose of our app, and not for running any other code.
I intend on using amazon servers, but could use another option depending on the answers
There is no easy "magic bullet" - You will need to trust someone whatever you do.
Either you will need to trust your developer to use the server correctly. Or you will need to trust an experienced sysadmin to set up the server properly and give defined access rights to other users.
In my experience, it is unlikely that a developer you hire will use your server for malicious purposes. However it is quite likely that either:
They will use the server for some other, non-malicious uses on the grounds that "no-one will notice" (e.g. transferring a few files). Probably not a big issue as long as they are sensible.
They will make a mistake with config / security that will allow others to gain unauthorised access. This could be a big problem - you could find your server hijacked and your customer data compromised.
Basically it all comes down to trust, your tolerance for risk, and how much you are willing to pay an expert to run this stuff for you.
Closed. This question does not meet Stack Overflow guidelines. It is not currently accepting answers.
Closed 8 years ago.
This question does not appear to be about a specific programming problem, a software algorithm, or software tools primarily used by programmers. If you believe the question would be on-topic on another Stack Exchange site, you can leave a comment to explain where the question may be able to be answered.
This question does not appear to be about programming within the scope defined in the help center.
Improve this question
Let's take a wordpress site as an example, as you guys know, wordpress' admin panel can be accessed only through site/wp-admin. My question is if I used .htaccess file to deny all access from other IPs except mine, will my site be safed from hackers?
Note: To keep things simple, let's assume that the site contains only static contents, with the contents retrieved from the database, IMHO if there's no input for the hackers than there's no way that the site can be hacked with XSS, sql injection, etc. Please correct me if I'm wrong even a wise man like me can be wrong. :)
.htaccess is useful for security, but it does not guarantee invulnerability from hackers, even with all of your assumptions. http://www.cmswire.com/cms/web-cms/how-they-hack-your-website-overview-of-common-techniques-002339.php
Using .htaccess alone to restrict access to a URL by IP address is a "good enough" solution in that most of the time it will work just fine. There are certain pitfalls however, like if your IP address changes, you have to go into the console and update your .htaccess file, which isn't a huge deal but also inconvenient.
IMO you'd be better off focusing on using SSL (SSL certificates are cheaper than ever!) to encrypt all traffic to your site (or at least your admin panel), and choosing a strong admin password, than you would trying to restrict access to your admin panel from unknown locations.