Security

Contents 1 Server Side Security 1.1 Firewall 1.2 Media wiki 1.2.1 URL : MediaWiki 1.2.2 Version:1.3.4 1.2.2.1 Basic User Right Control: 1.2.2.2 Original source from: my-whiteboard 1.3 File Permissions

Server Side Security

Firewall

For LAMP based servers, the primary concern for internet faced servers is Firewall and Security app

for this we can use ConfigServer , this can be used in any linux based servers , it has pre-compiled modules for Cpanel/Whm , Webmin etc.

Its efficient for Login Failures ( brute Force ) .

It has its internal update script, which can be used to update automatically.

Media wiki

URL : MediaWiki

Version:1.3.4

Basic User Right Control:

Add the following lines to LocalSettings.php:

   #do not allow anonymous users create an account
   $wgGroupPermissions['*']['createaccount'] = false;

   #users do not need to log in to read
   $wgGroupPermissions['*']['read'] = true;

   # require that users log in to edit
   $wgGroupPermissions['*']['edit'] = false;

   # allow these pages for anonymous users
   $wgWhitelistRead = array( “Main Page”, “Special:Userlogin”, “-”, “MediaWiki:Monobook.css” );

   # remove the link to the talk page for non-logged in users
   $wgShowIPinHeader = false;

   # require that users log in to read
   $wgGroupPermissions['*']['read'] = false;

Original source from: my-whiteboard

File Permissions

If you are using apache , lighttpd , then default file permission to " 755 " is a secure.

you can change the file permission

chmod 755 /folder/path/