Now do foreign direct sales enterprises are more and more. And now the website construction program has a lot of, can in a very short period of time to produce a considerable scale of foreign trade sites, such as the current most popular Zencart shop procedures, open source widely used. and has a good payment interface, the world's most popular with sellers of the pro-Lai. Open source program always has its shortcomings, any program will have loopholes, since it is to do foreign trade station outlet stores, of course, and funds linked together. At this point, the safety of the shop to take the brunt of the consideration. The following easy to search on the basis of their own years of foreign trade construction station experience to talk about the establishment of a well-known program Zencart security issues.
Security first step: Web Space selection
We do is the foreign trade station, facing the foreign customers, in the server choice can not be so random, preferably with foreign servers, because the domestic server export bandwidth is obviously insufficient, in foreign countries it is difficult to ensure speed. Take easy to search the use of the ixwebhosting server, because it is a veteran of the United States host business, after-sales service has been done, so that the use of many years. They have Chinese language stations in China (http://cn.ixwebhosting.com), do not understand can directly consult their Chinese customer service. No qualification of foreign space, easy to search is not recommended, because there is no guarantee, if the illegal attacks, the consequences of unimaginable, your PayPal funds will be threatened.
Security Step Two: Modify .../includes/configure.php and .../admin/includes/configure.php the names and permissions of two files
When the installation of Zencart files, connect the database, do not rush into the background to do the relevant settings. The first thing to do is to modify the properties of these two files, the source file is dist-configure.php this name, please modify to configure.php and then set permissions, generally set to 777 is set to read-only permissions. This is the official emphasis on the operation of the method. Many people do not care, the result of a lot of loss.
Security Step Three: Delete or rename the Zc_install folder
Zencart official interpretation of the method is renamed, but according to the experience of easy to search, we recommend that the best or directly delete the good, that is, remove the way, in some cases, if once someone hacked to the server, it is easy to guess the creation of documents, not worth the candle.
Security Step Fourth: Modify the admin filename
This is a step that many friends can easily overlook, but this step is quite important, because Zencart is open source system, a lot of people just know your site domain name, you can use Guess Solution tool Scan to your website backstage, find the relevant web page loophole, upload Trojan, and then get control of your site permissions. Your site will be obsolete by then.
Of course, can not only modify the source code in this file name on the line. This involves a lot of documents, otherwise many paths will be misplaced. As long as the source has the relevant admin file name to be modified.
These are some tips for using Zencart to establish foreign trade security settings. are easy to search according to the use of many professional experience summed up, hoping to help everyone.
The original creator of this article Easy search (Http://www.zzbaike.com/wiki/Gallery:Modules:zencart) Welcome everyone to reprint Webmaster Exchange Group: 4114653
The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion;
products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the
content of the page makes you feel confusing, please write us an email, we will handle the problem
within 5 days after receiving your email.
If you find any instances of plagiarism from the community, please send an email to:
info-contact@alibabacloud.com
and provide relevant evidence. A staff member will contact you within 5 working days.