Kbase P17498: Why is it dangerous to not have a DMZ between web server and
| Autor |
Progress Software Corporation - Progress |
| Acesso |
Público |
| Publicação |
4/23/2003 |
|
Status: Unverified
GOAL:
Why is it dangerous to not have a DMZ between web server and transaction server/database server?
GOAL:
Why do I need a DMZ?
FACT(s) (Environment):
Windows NT 32 Intel/Windows 2000
FACT(s) (Environment):
WebSpeed 3.1x
FIX:
Some users install the webspeed messengers and Microsoft IIS in the same server where the database is running and have just the port 80 open in the firewall, this is not a good strategy in terms of protecting your valuable data stored in the database.
There could be new and old bugs in IIS webserver software that a potential hacker could exploit to certain point he could gain access to vital information on your system.
A DMZ can be implented to protect your data against such attack, Progress supports such configuration, for more details, please reference webspeed whitepapers at
Progress tech support website