Analysis of Negligence in Web Server Security Management at Direkon.com and Its Impact on Malware Attacks Daniel Kasse, Indah O. Laleb
Politeknik Negeri Kupang
Abstract
Web server security is a crucial aspect of protecting data and systems from cyber threats. This research focuses on the analysis of negligence in web server security management implemented at Direkon.com and its impact on potential malware attacks. The system analyzed includes a server based on Ubuntu 22.04 with default configuration and the use of phpMyAdmin as a database administration tool, along with the implementation of CAPTCHA to counter automated access. Through log analysis that recorded attempts to access phpMyAdmin from suspicious IP addresses, it was found that CAPTCHA effectively prevents automated access- however, attackers still attempted to access different versions of phpMyAdmin. The default configuration of Ubuntu and phpMyAdmin, combined with the absence of antivirus software, increases the system^s vulnerability to attacks. The research methodology includes security audits, vulnerability scanning, and penetration testing to evaluate the effectiveness of current protections and identify areas needing improvement. The analysis results show that while CAPTCHA protection works well, additional security enhancements such as software updates and configuration hardening are necessary to reduce risks. The study recommends routine updates for the software in use, strengthening CAPTCHA systems, and implementing additional security measures to protect the server from potential malware attacks and other vulnerabilities. Awareness and proactive measures in security management are key to maintaining the integrity and security of data in a self-managed server environment
Keywords: Web Server Security, Malware Attacks, Vulnerability Assessment, Cybersecurity
