Risks

[hostfreak]

Just curious, after I install WAMP, what are the security risks? If any at all? I am new to trying to run it on my own system, so please forgive my ignorance.

[wildteen88]

There will be no risks if you are installing for testing/development purposes when creating your PHP scripts. Unless you configure your router (if you have one) ans/or firewall to allow connections via the port Apache runs on (80 is the default).

[hostfreak]

Should I run it as "Online" or "Offline"? I am not sure it makes a difference?

[wildteen88]

Where is Online or Offline defined? I am not using WAMP so I don't know what you're referring to, however I do have used wamp before. I just prefer manuall install of Apache, PHP and MySQL myself.

 

For now I guess Offline should do.

[hostfreak]

The online option is when I go over the WAMP panel in the task bar. It works as "offline" so I will leave it as that. I considered a manual install, but read it would be a pain with no prior experience etc. So I opted for this, for now.

[Hypnos]

Offline = Only accessable from localhost.

Online = Accessable from any interface.

 

EDIT, to answer your question:

MySQL will not allow remote connections by default. The only thing that it opens up is port 80. Many ISPs will block that for home connections. But yes, if apache gets a security hole found, and you have it Online, then you are at risk like the other servers, while it's running.

 

Personally I don't keep WAMP running all of the time. Just when developing. And I normally leave it Offline.