Securing Your XAMPP

XAMPP, Part 3

In dealing with security, there are some essential concepts that we all need to wrestle with.  On the one side, we want to share our stuff, or at least certain parts of it.  On the other side, we need to keep safe and private the things we don’t want others to know about, steal or damage and destroy.

Perhaps you want to just open your WAMP up to the rest of the machines in your local network.  But if we’re going to open it up to a larger audience, we had best know how to set up the fences and close the open doors.  This article will describe the basic ways we have of securing XAMPP for Windows.

A few words of caution before you do that: Be prudent, and don’t disrupt other people’s operations. If it’s your own network (not your employer’s), you’re free to do whatever you want. However, opening the gate to the Internet requires some serious study of the consequences. There are LOTS of malicious people who would love to put key loggers or Trojans on all the systems connected to your LAN.  DON’T make it easy for them.

In order to make this a bit more useful, I started all the XAMPP programs, including Mercury Mail and FileZilla Server, and then opened http://localhost/xampp to get the XAMPP Status Screen.
Continue reading