Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.

IWMW 1997: Security and Performance Issues

256 views

Published on

Slides for talk at IWMW 1997 event.

See http://www.ukoln.ac.uk/web-focus/events/workshops/webmaster-jul1997/

Published in: Education
  • Login to see the comments

  • Be the first to like this

IWMW 1997: Security and Performance Issues

  1. 1. Security and Performance Issues Mark J Cox UK Web Ltd. mark@ukweb.com
  2. 2. Security and Performance • Users Access • Users Publish • Protecting Pages • Performance Issues • Secure Servers
  3. 3. # Netscape HTTP Cookie File .netscape.com NETSCAPE_ID/c65ffb1e,c77ce www.allaire.com CFO_ST/34103 www.allaire.com CFO_USE_FRAMES /no .hotwired.com p_uniqid/zEDAPPoAcQ5Fs4/afA .focalink.com SB_ID/ads02.12057824514931097570 .webcrawler.com AnonTrack/A566DD0C33098E6B .realaudio.com LastVisit/19425898049113349 www.boots.co.uk sidnewkey/4Ga74r10 www.microsoft.com MC1/GUID=9cd610f3f00f8600846 www.barclays.co.uk entranetid/3384AAD5120 www.soc.staffs.ac.uk RoxenUserID/0x440e .ffly.com USERNAME/markcox .ffly.com PASSWORD/oPOioS4OJi2
  4. 4. Security and Performance • Users Access • Users Publish • Protecting Pages • Performance Issues • Secure Servers
  5. 5. Security and Performance • Users Access • Users Publish • Protecting Pages • Performance Issues • Secure Servers
  6. 6. CGI Security Risks #!/bin/sh echo Content-type: text/html echo echo <html><h1>test.cgi</h1> echo You typed $QUERY_STRING test.cgi
  7. 7. Security and Performance • Users Access • Users Publish • Protecting Pages • Performance Issues • Secure Servers
  8. 8. Security and Performance • Users Access • Users Publish • Protecting Pages • Performance Issues • Secure Servers
  9. 9. Hidden URL’s http://www.ukweb.com/staFF_oNLY/
  10. 10. http://WWW.stars.com/Vlib/Software/Servers.html http://psych.psy.uq.oz.au/~ftp/Crypto/ http://www.c2.net/products/stronghold/ http://altavista.digital.com/cgi-bin/query?pg=q&stq=40& q=download+128bit+ssl+encryption http://search.yahoo.com/bin/search?p=stronghold+server http://webcrawler.com/cgi-bin/WebQuery?searchText =netscape+competition http://127.61.4.123/intranet/common/ http://admin.ihaevv.nl:81/ http://www.gucnys.com/_internal/competitors.html
  11. 11. Security and Performance • Users Access • Users Publish • Protecting Pages • Performance Issues • Secure Servers
  12. 12. Security and Performance • Users Access • Users Publish • Protecting Pages • Performance Issues • Secure Servers
  13. 13. www.jpl.nasa.gov • Sun Ultra 1 running Solaris • Apache Web Server • 256Mb of RAM • >500 concurrent clients • 5 million hits per day
  14. 14. Security and Performance • Users Access • Users Publish • Protecting Pages • Performance Issues • Secure Servers
  15. 15. Extranets Site 1 Site 2 Internet Confidential Information
  16. 16. Security and Performance • Users Access • Users Publish • Protecting Pages • Performance Issues • Secure Servers
  17. 17. Stronghold Secure Server • 128 bit • Verisign approved • Reference Sites • Apache code base • Source code • £Educational Discount
  18. 18. Security and Performance Issues Mark J Cox UK Web Ltd. mark@ukweb.com

×