Dream Weaving the first large open source program, the reason is easy to poison, because the study of its people too much, the user is too large, there is opportunity and commercial use. So it became the target of many hackers.
The official website downloads the DEDECMS installs the package, the decompression comes out, has a uploads file, this inside folder is the website installation file, inside the file many, today Show station net mainly introduces under the each function module of the next Plus folder, if you just do a enterprise station, Do not need too many functions, then the small series suggest you look at the following related file operation:
First of all, small part of the proposed if the following features are not used, you can delete, here is the only one not recommended to delete the "link" module, the other modules under the beginning of the explanation, if you feel that you can not use, in the installation package to delete:
Delete: Guestbook folder "Message board, after we install more appropriate message this plugin"; Delete: Task folder and task.php "scheduled task control file" deletion: ad_js.php "ad" Delete: bookfeedback.php and bookfeedback_js.php "book comments and comments call file, there is injection vulnerability, unsafe" Delete: bshare.php "sharing to Plugin" Delete: car.php, posttocar.php and carbuyaction.php "Shopping cart" Delete: comments_frame.php "Call comment, there is a security vulnerability" Delete: Digg_ Ajax.php and digg_frame.php "top step" Delete: download.php and disdls.php "Download and Count Statistics" Delete: erraddsave.php "error correction" Delete: feedback.php, Feedback_ ajax.php, feedback_js.php "comments" Delete: guestbook.php "message" Delete: stow.php "Content Collection" Delete: vote.php "vote" Delete: Member Directory "Membership Directory, general Enterprise station do not need" Delete: Special "feature" Delete: Company "Enterprise Module" deleted, these functions will not have, a lot of security risks also disappeared.
Related reading:
Dedecms the theme of the safety course of dream weaving
Dream Dedecms folder Directory permissions setting Dedecms Security Defense Hanging Horse Tutorial
Dream dedecms Prevention Voting module SQL injection spam information
Dream dedecms dede_guestbook Message table How to quickly delete SQL injection
This article address: http://www.xiuzhanwang.com/dedecms_aq/675.html