A Web Server is a computer configured and connected to Internet, for serving web pages to people when the require them. Information on Public web servers can be accessed by people anywhere on the world. Since web servers are open to public access they can be compromised by hackers for malicious things
What a hacker can do ?
1)Hackers can deface websites
2)Hackers can steal valuable data from systems.
3)Hackers can use that data for its malicious purpose.
4)Hackers can give you a significant loss of revenue if you have a ecommerse site.
5)In the case of corporate and government systems, loss of important data may actually mean the launch of information espionage or information warfare on their sites.
6)Hackers can cause significantly damage to the image of a organisation
Common security threats to a public web server can be as the following-
----------Unauthorized access
----------Defacement
----------Content theft
----------Data manipulation(Injections flaws)
----------Improper usage of code(Code disclosure)
----------Improper Web Hosting(web server vulnerability)
----------Physical Threats(physical stealing and damage)
Hackers take advantage of different security flaws in a web hosting infrastructure and exploit the vulnerability to compromise the system. Common security flaws that can lead to acompromise can be categorized as
----------Flaws or bugs in web hosting software (OS, application etc)
----------Insecure design and coding of hosted application
----------Weak password
----------Social engineering
An attacker can adopt various hacking techniques or tools to exploit or take advantage of the above mentioned security flaws. A discussion on common hacking/attack methods.