20154309 "Network countermeasure Technology" Exp8:web Foundation One, the experiment request
- Master the basics of Web programming
- HTML syntax
- Javascript
- Php
- Front-end, background, how to establish connections between databases
- Master the use of the database
- MySQL startup, create database, form and other basic operations
- Use of SQL statements
- Understand some of the security implications and principles of web design today
- SQL injection
- XSS attack
Second, the experimental question answer
- What is a form
- A form is a component in the web design that collects data entered by the user for subsequent processing, implementation, and interaction between users
- Browser can parse what language to run
- Html
- Php
- Scripting languages: JavaScript, Python, etc.
- What dynamic languages are supported by webserver
- JavaScript, Python and other scripting languages
Iii. experimental Process (i) Web front-end HTML
Apache
Apache is a Web server under Kali, which can be opened by accessing the IP address + port number + file name.
Enter the command apachectl start to open Apahce and use NETSTAT-APTN to view the port number to confirm that Apache is turned on correctly, as shown in:
Enter apache2 the folder where the HTML files are stored/var/www/html create a new HTML file, design your own form (here lyq.html a little bit of change in the folder, place the desktop in the same folder to do the background map)
(ii) Web front-end JavaScript
Javascript
A scripting language for Web development that implements some dynamic functionality on a Web page and enables interaction with users
Dom
(Document Object Model): A standard programming interface recommended by the Organization for the processing of Extensible flag languages
The following is the use of JavaScript to create some simple user name password validation rules (user name can not be empty and limit the length of the password)
(iii) Web back-end MySQL FoundationStart MySQL (command similar to Apache2)
Log in to MySQL with the default username password (default password:[email protected])
Use show databases;
commands to view basic information
- Change Password
- input use MySQL;, select MySQL database
- Enter select User, password, username, password, and permissions stored in host from the user table in the User;,mysql library
- Enter update user SET Password=password ("New password") WHERE user= ' root ';
- Enter flush privileges;, UPDATE permissions
-
- Quit MySQL after quit to log in to MySQL with a new password
- To create a new table:
CREAT SCHEMA
Thename ;
command to create a library, and then add a form
- Then add the information we need to the table
Use the command to see the user information we just added
(iv) Web backend to write PHP Web pagesFirst, write a simple php file myphptest.php
(v) SQL injection
(vi) XSS attack test20154309 "Network countermeasure technology" Exp8:web Foundation