it.ucsf.edu

Connect a Web Server to the Internet?

John Kealy's picture

1. Contact IT Service Desk and provide the following information:

  • Contact name, department, phone number and email address
  • IP address of web server
  • Server name
  • OS platform
  • Web Application

2. The request will be logged into Service Now  and you will be provided with the tracking number.

3. IT will do a vulnerability assessment of the web server. If the scan shows that vulnerabilities do exist, you will be contacted to discuss the findings. More information regarding secure coding best practices and vulnerability scanning services can be found here.

Note: If a device does not pass the vulnerability scan, the port 80 open request will be deferred until the server has been secured and passes the scan.

4. Once the request has been processed, an IT representative will notify you when port 80 has been opened.

5. Once approved, your web server will be regularly scanned for vulnerabilities. You are responsible for patching or otherwise mitigating vulnerabilities in a timely manner; failure to do so may result in removal of your server from the network.

Note: Process time is approximately 14 calendar days.

Background Information

On July 19, 2001 the Code Red Worm attacked the Internet and all in-bound traffic to UCSF web servers (port 80) was blocked. Since that time, a process has been implemented by IT to enable web servers to be connected to the Internet in a timely manner once they have been hardened.