In an article regarding the May 1999 hack
of the White House web site, a journalist
writes, "the White House hack lasted for
only a few minutes, due to what is known
as a 'crontab,' a timed command set by the
system administrator. This command
automatically refreshes the entire site with
identical content from a secure server to
help guard against the kind of attack
that took place Monday."

I would like to implement something similar
for my web sites. Does any one have ideas
on how to do this (if it's possible)
or perhaps might point me in the direction
of some helpful tutorials?


Thanks very much!


JAS

I would think the Cron job would be the easiest part of the implementation. The most important thing you would need is the "secure" server. This would mean a dedicated server on its own private network separated from the "public" box by a firewall (router) that would allow only an outbound connection to the public box so content could be pushed to it.

Rich
-- Security aint cheap

Also keep in mind that this would only work for a 100% static web site - you couldn't keep a database or anything like that on a private server without allowing write access to it, thus opening the same security holes that are there on the public server (otherwise it would continuously "update" the site with outdated content).

There are much better ways to keep hackers (crackers actually... hackers are innocent :)) out of the system for a dynamic site... but either way it takes lots of work...

------------------
Justin Nelson
FutureQuest Support

LOL - Can't wait to see the dynamic, flashed, mp3 version of whitehouse.gov :)

I'm just waiting for Real Video ;)

Justin . . .

You mention that there are other ways to keep
out or discourage crackers. Care to share any
suggestions??

Thanks!

JAS