Port 80 Problems

Dear all,

I have been having a conversation about Amazon Web Services in the programming forum , but I thought I'd move over to here for a discussion on the security issues.

I'll paraphrase:

I currently run a shop using Amazon Web Services (AWS) have a few technical questions about my setup. The shop uses a PHP interface to query AWS and retrieve XML data which is then parsed and presented as an html page. Amazon use load balancing and also reserve the right to change IPs at any time. Consequently, their range of IPs changes frequently.

My hosts will not allow outgoing port 80 requests unless I specify the exact IPs that I wish to query. This is, apparently, a security measure to prevent people using their servers to perform things such as DOS attacks etc.

See: http://www.webhostingtalk.com/showth...hreadid=321423
I have a managed dedicated server where my hosts take care of all configurations and security issues. They have said that they can set the server up to remove the port 80 restriction. However, there is a "but...". They will do this only if I am responsible for any security breaches as a result of this change. I am, as you might imagine, a little wary of accepting that scenario.

Is this normal and is it a sensible security measure?

Can you think of a reason why such a firewall rule makes any sense?

What would the implications be if I instructed them to allow all outgoing port 80 traffic?

Many thanks in advance,

 

 

 

 

Top