Also very true unless you're running nothing but web applications which is the way the world appears to be going, at least where I work. You can possibly run two web servers, one internal and one external and only the external users would be down if that one was under attack. But that environment might be better protected by making external users VPN to your inside network and not expose the web server to the internet at all. If that was your configuration (no public users, only VPNed users or corporate users) would you still run the web server on its own hardware?
-----Original Message-----
From: web400-bounces@xxxxxxxxxxxx [mailto:web400-bounces@xxxxxxxxxxxx] On Behalf Of Walden H. Leverich
Sent: Thursday, May 14, 2009 10:43 AM
To: Web Enabling the AS400 / iSeries
Subject: Re: [WEB400] More on iSeries web apps and security
The backend server may be protected but if it can't be accessed
because the web server component is down.
Absolutely true! But the thing to ask yourself is "are the internet
users the only "user" of this backend?"
Are you running internal accounting? Warehouse management? Internal
sales (phone)? Shipping/Receiving? Another website? etc. all these
functions can continue if the backend is still up.
-Walden
As an Amazon Associate we earn from qualifying purchases.