I'm trying to set up a small company intranet on an Apache web server and need help figuring out the best way to provide about 60 users with remote access to browse our LAN. We currently use a hosting company as our service provider and the entry point to the intranet will be thru a link on our company web site.
I tried to look up best practice info., etc. on the web and got overwhelmed with the deluge of information regarding this topic - virtual directories, SSL, .htaccess, etc. so I'm hoping someone here can help me sort this out.
What I'm looking for is advice on a the most secure, simple way to authenticate users outside the network to browse, upload, and download from a specific share on our LAN.
1)Could I use basic html authentication for general access, then some Apache-compatible version of SSL for directory browsing only? How much firewall protection am I getting from the ISP?
2)Is it better/safer to somehow "image" the directories in question rather than provide direct access to these locations? (resulting in a maintenance nightmare, I might add)
3)Would some type of intranet VPN access defeat the purpose altogether? Is speed a concern with this option?
4) What IS this the most commonly used way to do this?
Any advice at all would be greatly appreciated. Thanks
I tried to look up best practice info., etc. on the web and got overwhelmed with the deluge of information regarding this topic - virtual directories, SSL, .htaccess, etc. so I'm hoping someone here can help me sort this out.
What I'm looking for is advice on a the most secure, simple way to authenticate users outside the network to browse, upload, and download from a specific share on our LAN.
1)Could I use basic html authentication for general access, then some Apache-compatible version of SSL for directory browsing only? How much firewall protection am I getting from the ISP?
2)Is it better/safer to somehow "image" the directories in question rather than provide direct access to these locations? (resulting in a maintenance nightmare, I might add)
3)Would some type of intranet VPN access defeat the purpose altogether? Is speed a concern with this option?
4) What IS this the most commonly used way to do this?
Any advice at all would be greatly appreciated. Thanks