Closed. This question does not meet Stack Overflow guidelines. It is not currently accepting answers.
This question does not appear to be about a specific programming problem, a software algorithm, or software tools primarily used by programmers. If you believe the question would be on-topic on another Stack Exchange site, you can leave a comment to explain where the question may be able to be answered.
Closed 4 years ago.
Improve this question
MAKING THINGS SIMPLE EDITS
I am developing an app, have a nodejs API that read data through MSSQL server, now that API is Running on Localhost:3131/ It means it will run locally only.
I do have a Windows Server that stays online always, I can use pm2 on that server with the API files to make things Live, But if i run it how can i make my SERVER IP Public so I can access it through everywhere.
HOW DO I MAKE MY SERVER IP ONLINE BUT SECURE!
There are many ways to achieve what you desire. If you were to do it on your own network/pc then one traditional method called 'port forwarding' can be used for projects under development, but this still means that your IP will be exposed to the web.
Virtual Private Servers and Dedicated servers are used more commonly used these days to host powerful applications. You would need to run a web server first where your web files can be hosted and then you can link your node.js server and sql database.
There are several hosting providers out there which are built for nodejs applications. You can go for 'unmanaged' and 'managed' hosting providers.
Managed providers provide a simplified "Node Appliance" solution. Node and NPM will already be set up for you, and deploys are typically done via git push or similar method. You will have less control of your server, but everything will be set up for you.
There are some managed hosting providers which nodejs recommend themselves. You can view them here:
https://github.com/nodejs/node-v0.x-archive/wiki/Node-Hosting
Some popular ones include:
Heroku
Amazon Web Services
AppFog
Microsoft Azure
RedHat OpenShift
In your case, you are using SQL and Node, so Heroku actually offers free nodejs hosting and provides a free addon for MySQL databases too. Only downside is that the duration (hours) for which you can run apps are limited.
It might be worth doing this on a Virtual Private Server for lower costs. Alternatively, have a look at NodeChef who specialise in Node.js and MySQL.
Hopefully, this gives you enough information to understand what steps to take next.
Related
Closed. This question needs to be more focused. It is not currently accepting answers.
Want to improve this question? Update the question so it focuses on one problem only by editing this post.
Closed 1 year ago.
Improve this question
I want to scan for malware content directly in memory files and I want to know which is the best way to do it.
I’m in charge with the improvement of the website security policy for our web applications that were developed in .net core and Angular
I read the OWASP recommendations and one of them was to scan the files for malware
I’ve identified two ways of scanning the files: calling a third party API from cloud or calling AMSI interface. Calling a third party over the internet is not an option for me because the client wants the verification to be done on-premise.
What is AMSI:
The Windows Antimalware Scan Interface (AMSI) is a versatile interface standard that allows your applications and services to integrate with any antimalware product that's present on a machine. AMSI provides enhanced malware protection for your end-users and their data, applications, and workloads.
The Windows AMSI interface is open. Which means that any application can call it; and any registered Antimalware engine can process the content submitted to it.
I opted for calling AMSI interface from .net core to analyze the http requests for malware content but my tests are not working on some servers where Symantec endpoint protection is installed as an Antivirus provider and subscriber to AMSI. AMSI seems to be bypassed.
When I test a call to AMSI with an eicar standard content, AMSI returns the result as if there is no detected malware even if I had a post with malware content. That is why it seems that AMSI is being bypassed.
Do you know what I could do to fix it? Why is it that the AMSI is being bypassed? What should I check or take into consideration?
Would it be better to develop a windows service that scans the files from a queue and runs a .bat in order to give commands to the antivirus programs to scan the files? Is there any third party web api that can be installed on premise?
I've also been looking into APIs for .NET for AV scanning, but it seems there isn't much out there.
AMSI is a new standard (starting Win10), but seems to be only for "Fileless scans" (i.e. strings and blobs). Here is a nice article with a .NET library:
Using Windows Antimalware Scan Interface in .NET
I've also found out a fairly active open-source scanner:
ClamAV
and a library in .NET to scan in-memory (although very old from 2017):
ClamAV.Managed
Each commercial Enterprise grade AV has some kind of Web API, but there is no standard - so individual development is required for each one...
I've tried the route of queuing and manually running a CLI AV - in my case Windows Defender - but it took on average over 2 mins to scan a file (might be good enough for your use case). The major benefit is that it could be generic and support any AV that has a CLI - but the queueing and running in the console is also a major security (and memory leak) risk (not to mention it would be tricky/pricey to get running in a Cloud hosted instance like Azure AppService).
Amazing that in 2021 we still have no standard for AV scans...
Closed. This question does not meet Stack Overflow guidelines. It is not currently accepting answers.
This question does not appear to be about a specific programming problem, a software algorithm, or software tools primarily used by programmers. If you believe the question would be on-topic on another Stack Exchange site, you can leave a comment to explain where the question may be able to be answered.
Closed 9 years ago.
Improve this question
Hi I just finished setting up my new apache web server from my laptop running windows 7. I created the server using apache, then port forwarded my laptops ip (port 80), and finally got myself a free domain using dot.tk. Ive added a few files and done some basic html stuff, and it is successfully up running and accessible to everyone through the domain. But i have a question. Lets say someone was to download files from the site. Is my local network's bandwidth consumed? If anyone can explain how this works that would be great.
Thanks in advance.
The data will run through all segments connecting the client (your end user) to the host (your hosted web server).
So if they need to get to your house where your laptop is to get to the web server, then your house's network connection's bandwidth will be used.
If you hosted it remotely on some shared server site like Amazon instead, then the bandwidth of remote clients accessing your server never uses your home connection's resources, it only uses the resources between their computer and Amazon.
Closed. This question does not meet Stack Overflow guidelines. It is not currently accepting answers.
This question does not appear to be about a specific programming problem, a software algorithm, or software tools primarily used by programmers. If you believe the question would be on-topic on another Stack Exchange site, you can leave a comment to explain where the question may be able to be answered.
Closed 9 years ago.
Improve this question
good day, may I ask if anyone knows if it's possible to connect two or three computers through a wifi router? It's hard to put it in one sentence so in detailed explanation, I would be making a software (java) in a main computer (I'll call it the server), another computer would then access the server through a client/server type of setup. Basically the computer (connected to the same wifi hot spot as the server) would access the software on the server either through php/jsp and utilize that software in an office setup wherein all the centralized data on the server is accessible to the connecting computer. I would put in a log-in screen first as standard practice to protect access to the server. I was hoping to ask if this is possible (since it's the same setup as using a LAN/wired connection in an office). If it's possible I'll try to research on how to do it (I heard I'll have to read more on sockets programming for this). If you need more detail on the scenario I would gladly provide it. Thank you for answers in advance.
*my next development goal would be to connect the server through a dial-up modem to connect to a remote computer connected to a dial-up modem as well. I'm trying to avoid internet connectivity to increase security problems and to make it more exclusive. Then maybe connect a couple of android tablets as well that is connected to the server for portability. so that would be around 2-3 computers connected to the server and a few portable tablets accessing the data. it would be great if anyone could point me in the direction for the first few steps on connecting the computer to the servers as well... right now I've already developed a java software that is working but it's only on the server and not connected to any router/computer at the moment.
Thanks again.
Yes, this is all perfectly possible. Your question however is in the wrong exchange. Stackoverflow is more for actual programming issues.
Closed. This question is off-topic. It is not currently accepting answers.
Want to improve this question? Update the question so it's on-topic for Stack Overflow.
Closed 9 years ago.
Improve this question
Can someone recommend a web host that will allow me to use the latest versions both of Ruby and Rails? I tried Dreamhost but they're running Ruby 1.8.7 which would mean I'd have to rewrite my entire app. But the most I can afford is around $10/month.
Heroku is your friend.
Free for a single dyno.
Lots of addons with free tiers.
No mucking about in server admin duties.
Deploy via git.
Specify your Ruby interpreter and version via Gemfile
Asset compilation on-push
It's just too easy.
Check out webfaction. Not free, but very cheap, awesome support. Shared hosting, but you get ssh access and close to full control. You can install your own software if needed. It is great if you want more control or want to do more than just a rails site. And it is easier to manage yourself, e.g. when compared to a linode for instance (where you have complete control, but have to setup everything yourself).
$10 is a pretty big budget in my opinion, you could perhaps look into getting a VPS? One of my friends (text book village (.) com) got a vps from computinghost.com , they compiled everything for him but the $10 control panel gives you Zpanel as your control panel.. So, if you can manage through command line or can do everything through your application's interface.. I would recommend it.
They also give shared hosting services, maybe contacting their support would help
For Rails, it's better to have your own environment than a shared hosting like Dreamhost.
Heroku, will be the first recommendation, the current stack is Cedar Stack which supports Ruby 1.9.3. Free if you are using only one Dyno (approx. 512MB RAM), 10K records in DB.
We also use DigitalOcean - http://digitalocean.com for some of our hosting. Plans start from $5 for 512 MB RAM. You can run a decent sized rails app on this.
You can also look at AWS, which provides one year free tier, basically hosting, storage etc - http://aws.amazon.com/free/ It's a good option if you think you need to scale in by end of the year.
Closed. This question does not meet Stack Overflow guidelines. It is not currently accepting answers.
This question does not appear to be about a specific programming problem, a software algorithm, or software tools primarily used by programmers. If you believe the question would be on-topic on another Stack Exchange site, you can leave a comment to explain where the question may be able to be answered.
Closed 7 years ago.
Improve this question
Is it doable to set up a non-domain-based (standalone) Windows Server 2008 as an SSTP VPN (Secure Socket Layer Tunneling Protocol VPN)?
I'd like to enable remote users to access a network via SSL-based VPN (currently using PPTP) by making an SSTP VPN connection via a Win2k8 server. Most of the docs seem to include running in an AD domain with an in-house Certificate Authority to enable this feature.
Is it possible to do this with a stand-alone Win2k8 server? If so, how?
you connect with host address for sstp. you can use standard web certificate from any ssl cert provider. that host address need to resolve to your vpn server.
step-by-step guide
http://www.windowsecurity.com/articles/Configuring-Windows-Server-2008-Remote-Access-SSL-VPN-Server-Part2.html
My understanding is that the certificate used as part of the authentication hasto come from Active Directory Certificate Services, and there is no way to get it from any other source (I'll admit to not trying too hard to figure out if it was possible, I was investigating SSTP for another VPN related project)
Setting up the 2008 server as a standalone AD controller would get around the issue; the client systems don't need to be in the domain.