摘要 |
A method and apparatus for illustrating how to secure and manage a web server computer from unauthorized access without requiring a firewall. The web server computer is secured from an authorized external client computer (step 400) over the Internet by removing the web server's root or supervisor rights. The external client computer (400) can be authorized through a trusted IP address list (step 304), as well as requiring a password key from the user of the external client computer (step 406). A telnet session and a ftp session can remain connected between the server computer and the Internet in order to manage the server computer while it is locked. Even though the supervisor rights have been removed from the server computer (step 412), an Internet session will continue to run to allow access to the server computer. The authorized external client can also restore the supervisor rights and manage the web server computer accordingly (step 416).
|