Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
M
M
Maxim E2014-11-26 11:59:47
Apache HTTP Server
Maxim E, 2014-11-26 11:59:47

How to implement secure access to Apache/Mysql server?

We have:

  • local server
  • LAN computers
  • Remote laptops with mobile Internet (USB modems), we can configure them as you like
  • Web application (processed by Apache on the server)
Necessary:
  • Maintain server access security
  • Open access to the server to remote laptops via mobile Internet
My options:
  1. I thought about restricting access by IP, but when accessing from the mobile Internet, IP is dynamic
  2. Use Dynamic DNS for laptops or raise your own server
  3. Set up a proxy server on the local network

Advise how best to solve the problem of access and do it safely enough? I repeat: access is required through the browser.
AP1: Requires access without additional programs. For a laptop user to open a browser, enter a username and password, and be able to use the system.

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

4 answer(s)
Report
M
Maxim E, 2015-09-27
@creativeworm

The task was solved by installing the ssl certificate and basic authorization.

Report
A
Alexander Borisovich, 2014-11-26
@Alexufo

https
secret page - domen.ru/asdcf0000lalala
phpmyadmin
basic autorization
monitor access logs if you are afraid of brute force.
Add an ip limit to the range of your mobile and office subnets.

Report
A
Alexey Tutubalin, 2014-11-26
@Kennius

The first thing that comes to mind is a VPN, it will solve all your problems.

Report
T
tushev, 2014-11-26
@tushev

Put secure user logins and passwords on the web application and make sure that access to any parts of the application is impossible without a login and password. (Most applications are protected in this way)
Allow access for the entire possible range of IP addresses allocated by the provider, forbid other addresses. (I think you can find out the ranges. And if necessary, you will supplement it)
Use https. (If you are afraid of "wiretapping")
Another option is to disable access to the application from the Internet. Access to do only from the local network. And let it into the local network from the outside through VPN. Then the security lies with the VPN.
Make one-time passwords via SMS.
Sign your computers of your users with a digital key.

Similar questions
J
Jedi2018-12-16 04:12:40
How to write it in Koa? 3Reply
X
XenK2016-05-20 20:31:14
Bypass .htaccess? 2Reply
K
koshelevatamila47412021-12-22 22:08:17
Why doesn't https work? 4Reply
B
Boris Yakushev2016-05-24 16:10:25
Removing apache ubuntu site? 1Reply
A
Alexsey2014-04-07 07:07:05
Setting .htaccess 1Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question