April 22, 2012 at 6:11 am #4322
Aproximately 1 1/2 ago i downloaded and installed premium desktopserver in my computer and i began working in my website. On friday i got the smart hdd virus in my computer. I had microsoft assitance and this virus was removed from my computer. I then followed, by changing the location of my child theme and deleted all together the xampplite folder from my computer since i believe that it is from here that this virus entered. I am about to install once again the desktopserver but i would like some guidence as to how safe is xampp? Also i have the folling questions.
1. Once i moved the xampplite folder to the recycled bin, am i still in any way connected to xampp?
2. Can i develop a site with xampp with no internet connection?
3. Can anyone still have acess to my computer when i run xampp with no internet connection?
4. Is it possble that i got the smart hdd virus from the xampp?
5. If so, how can i protect my computer?
Your answers will be greatly appreciated!
Thanks!April 22, 2012 at 12:40 pm #4323
Stephen CarrollKey Master
Thank you for writing us. Let me address your questions by number. We’ll assume you are on Windows because you mentioned that you obtained support from Microsoft. What browser are you using (Internet Explorer is know to obtain the smart hdd virus quite easily)?
1) By deleting the XAMPP folder you will destroy your database containing post and page content, along with the standard Apache and MySQL services. However, you should make sure you shut down the database and web services before attempting to move the xampplite folder using DesktopServer’s first option “Stop or restart…”. You can be sure by rebooting your system and then deleting and emptying the trash on your system. Once xampplite is deleted it is permanently deleted and no longer present, nor functional.
2) Yes you can work without any network connection. DesktopServer does not require an Internet connection. It is a “virtual web server computer” that lives on your real computer only. Please note that when you turn off your real computer, DesktopServer is also turned off. To turn the server back on (Apache web server & MySQL database server), you must start DesktopServer once upon restarting your computer.
3) Without an Internet connection, no one can access your computer *via the Internet*. To prevent anyone on any network from accessing your xampplite, you should run firewall software. Windows comes with firewall software that allows you to block incoming users from accessing your computer and is turned on by default (Macintosh users are turned off by default and may wish to turn it on using the control panel).
4) No. We pre-scan before distribution on our file servers. However, if you install unknown, untrusted third-party plugins or leave your firewall ports 80/443/3306 open while at a cafe or wifi hotspot, it could be possible for someone to hack your system and inject a virus. This may also be true whether or not you are running DesktopServer’s XAMPP. Note that some third-party antivirus software may falsely identify DesktopServer’s features as a virus infection. As with our testing boxes, we suggest running only licensed OEM copies of Microsoft Windows and install Microsoft’s free anti-virus and security application http://www.microsoft.com/security-essentials in lieu of aggressive and system altering third party anti-virus. We do not recommend running Microsoft’s security essential with other third party anti-virus at the same time as doing may make your system unstable.
5) Be sure to block access to ports 80/443/3306 when roaming or on an untrusted wifi network, such as at an airport or cafe. For additional support, please be sure to include your operating system version (XP, Vista, Windows 7, etc.).
StephenApril 23, 2012 at 9:04 am #4328
And thank you very much for your thorough answers….
Yes, i am using Internet Explorer and windows 7.
For antivirus programs I have Mcafee and just yesterday I installed Malwarebytes….. Did I overkilled it? Should I just download Security Essentials and get rid of Mcafee and Malwarebytes?
And, I apologize but I am actually an architect located in Geneva Switzerland and I have learned css coding and dreamweaver on my own, created my own static website hortensiagonzalez.com and decided to do a dynamic website and…..any of this is not along my aley……sooooo how do I close the ports 80/443/3306?
Thanks!April 23, 2012 at 3:59 pm #4330
Stephen CarrollKey Master
Thank you for your patience. To block those ports, you’ll need to do the following:
1) Go to the “Windows Firewall with Advanced Security” by either clicking the Windows Start button and typing that phrase or visiting Start -> Control Panel -> System and Security -> Windows Firewall -> Advanced Settings
2) Select “Inbound Rules” from the context tree on the left then locate the rules for Apache and MySQL in the results pane on the right.
You can create additional rules to block inbound ports. However, if you have already run DesktopServer, you may have the Apache and MySQL rules already present (with default settings). Simply locate the rules (you may have more then one for various profiles, groups, etc.) and double click them. You can block all ports associated with the program services vs. having to fill out specific port numbers. Just click the “block the connection” option (see attachment) from the General tab. Apply the same changes to all instances of Apache and MySQL rules that are listed. This will block inbound connections from outside/fellow users on your network, but still allow you access on your local machine.
To verify you still have access on your local box, visit one of your websites or look for the orange XAMPP logo by visiting http://localhost
You must be logged in to view attched files.April 24, 2012 at 6:15 am #4341
Hi Stephen and thank you very much for this imput!
You must be logged in to reply to this topic.