Most people are worried about database security issues! Generally, the database suffix is complicated and the suffix is. asp. But is it absolutely safe! The answer is yes. It will never be safe! Because once someone guesses your path, you can use the database to download this name!
Someone uses it again #*. ASP is used as the storage method of the database, because according to the encoding principle of IE, # the following things won't be downloaded, but General Attackers know that # Decoding in IE is % 23, so once he enters % 23 *. ASP can download your database, so none of the above methods can work!
Let's introduce one of my methods now,
First of all, we need to know that the browser will not give an explanation when it encounters ASP. Therefore, the suffix of your file can still be explained by the browser, once you download your file, you can use it again. Based on this, we first create a new table in the database, name it notdownload and add a <% = 'A' = 1%> in this table as long as it is not the correct ASP statement, so that once he guesses your database, when you enter your database path in the browser, the browser will explain ASP statements, but suddenly the wrong statement will stop and an error will be prompted, if there is no error type, it cannot be read and will not be downloaded!
Some people are beginning to worry that the use of the database will not be affected, of course, because you are not separately asking the browser to explain your database, but every time you call a table with a purpose, so we won't read your wrong table information, so the database can still be used. For further security, we still need to set a complex name, and add #, in short, the database looks like this: #45sdf34 # $ % @ # $. ASP
At the same time, there is a table in the database
The table contains an incorrect ASP field.
Do not consider encryption, especially access for small websites. It is safe. There are more than n software for password cracking on the Internet! Of course, you 'd better add a password and combine numbers, letters, and special letters!
You can try it. If someone else can download the database, I can only say that you are really a master. The above settings are sufficient to resist the pulling of most undesirable elements!
The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion;
products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the
content of the page makes you feel confusing, please write us an email, we will handle the problem
within 5 days after receiving your email.
If you find any instances of plagiarism from the community, please send an email to:
info-contact@alibabacloud.com
and provide relevant evidence. A staff member will contact you within 5 working days.
