qualys security

I. Internet Security Protocol Overview 1.1 Internet Protocol SystemArchitecture of the TCP/IP protocol IP datagram format and TCP/UDP message segment format Web Technology composition: HTTP protocol, HTML markup Language. The relative position of security mechanism in TCP/IP protocol stack: Network layer, Transport layer and application layer.1.2 Internet

--IP security Policy for server security (lists only the ports or protocols that need to be masked or blocked) Protocol IP Protocol Port source Address Destination Address description method ICMP------ICMP blocking UDP 135 Any IP address my IP address 135-udp block UDP 136 Any IP address my IP address 136-udp block UDP 137 Any IP address my IP address 137-udp block UDP 138 Any IP address my IP address 138

Security researchers have called on Oracle Java 6 users to upgrade to Java 7 as soon as possible to avoid being a victim of active network attackers. Timo Hirvonen, a senior analyst at F-secure, issued a security warning on Java 6 on Twitter this weekend, called CVE-2013-2463. PoC for CVE-2013-2463 was released last week, now it's exploited in the wild. No patch for jre6... Uninstall or upgrade to JRE7

Delete the following registry primary key: Wscript.Shell Wscript.shell.1 Shell.Application Shell.application.1 Wscript.Network Wscript.network.1 regsvr32/u wshom.ocx carriage return, regsvr32/u wshext.dll carriage return Windows 2003 hard Drive security settings C:\ Administrators All System All IIS_WPG only This folder List Folder/Read data Read properties Read Extended Properties Read permissions C:\inetpub\mailroot Administrators All System All Se

Command:Vim/etc/login.defsDefault settings:# Password Aging controls:## Pass_max_days Maximum Number of days a password is used.# pass_min_days Minimum number of days allowed bet Ween password changes.# pass_min_len Minimum acceptable password length.# pass_warn_age number of Days warning given before a password expires. #PASS_MAX_DAYS 99999pass_min_days 0 Pass_min_len 5 pass_warn_age 7Analytical:Pass_max_days---Password valid days, maximum how long to change

Original address: Webapi using token+ signature verification first, not to verify the way API Query Interface: Client invocation: http://api.XXX.com/getproduct?id=value1 As above, this way is simple and rough, in the browser directly input "Http://api." Xxx.com/getproduct?id=value1 ", you can get product list information, but this way there will be a very serious security problems, without any verification, you can get to the product list, resulti

Step One: Open the Conf folder under the ACTIVEMQ installation directory, open the Conf/jetty.xml, Value value = "false" for property name authenticate, modified to value = "true". The implication is: Launch login security authentication mechanism Step Two: Configure ACTIVEMQ secure login account and password Control ACTIVEMQ Security login account and password information is in the Conf/jetty-real.proper

Mobile phone lost QQ Security Center how to solve the tie? The first step: you can in the QQ token page Click to bind, the following figure: You can also click the "Bind" button on the Secret Protection Toolbox page, as shown below: The second step: into the Untied QQ token page, to determine the binding QQ token on the use of the user business impact, if you determine no problem, please click to determine the unified

Original link: http://sarin.iteye.com/blog/829738 Now for the security part. The Spring security framework is an upgrade of the Acegi, a framework that utilizes multiple filtering mechanisms to process requests, releasing requests that meet requirements, and blocking requests that do not meet the requirements, which is the biggest principle. Let's take a look at the simple URL filter below. Write an authen

Google will improve the ranking of HTTPSSSL websites. How can we make websites correctly use the SSL security protocol? Google provides several suggestions. Google will improve the ranking of websites using HTTPS/SSL,How can I make websites correctly use the SSL security protocol? Google provides several suggestions. Select the type of certificate you need: single domain, multi-domain, General Certificate

Tags: show change useful stage Auth tab ros. SQL descriptionby Don Kiely, 2014/06/04 reprinted from: http://www.sqlservercentral.com/articles/Stairway+Series/109941/ This series This article was part of the stairway Series:stairway to SQL Server Security Relational databases are used in a wide variety of applications, through a widely distributed network, especially the Internet, from dazzling client connections, so that almost anyone can access the d

modify/$HOME/.bash_logout in the user's home directory, and add the above line. Action 23: Set up an IP that allows remote SSH Methods: 22-s/ip-j input-i eth0-p TCP ACCEPT network segment in iptables plus rule iptables-a. [Web aspect] Action 24: Turn off the Apache default directory browsing Method: Edit the httpd.conf file and clear "Indexs" for each "Directory" directive. Action 25: Clear the server information in Apache header information Method: Edit the httpd.conf file, add two line

files (for example:. rhosts) or modify other files. Many web sites allow the use of root accounts. Let anonymous FTP root directory and subdirectory owner is root, belong to group (group) is system, and limited access (such as chmod 0755), so only Root has write power, which can help you maintain the security of the FTP service. The following is an example of an anonymous FTP directory setting: Drwxr-xr-x 7 root System 1 15:17./Drwxr-xr-

Tcp 1028 My IP address-1028 Any IP address-any port Gray Pigeon-1028 Stop Udp 1026 My IP address-1026 Any IP address-any port Gray Pigeon-1026 Stop Udp 1027 My IP address-1027 Any IP address-any port Gray Pigeon-1027 Stop Udp 1028 My IP address-1028 Any IP address-any port Gray Pigeon-1028

Author: Darl Kuhn, Steve Roughton Oracle Label Security (Oracle Label Security) controls user access by row. Most commercial applications must handle security issues. Applications often need to restrict access to dedicated records, establish audit trails, or execute a workflow process, all of which must comply with the company's

Network security experts use practice to tell you How situation awareness should be implemented and how network security situation should be handled. In a large-scale network environment, cybersecurity Situation Awareness obtains, understands, displays, and predicts the future development trend of all security elements that can cause changes in the network situat

Text/Zhang tingwei With the development and integration of computer and network communication technologies, the "terminal" we understand has changed in the traditional sense, it is not only the desktop and notebook Power connected to the network cable in the NetworkBrain, including mobile phones,PDA,PSPGameNew mobile devices such as playbooks and e-readers. These terminals pose a huge challenge to network security: they have many types and are connect

Http://starrynight.blogdriver.com/starrynight/204036.html Spring security system: acegi security -- Acegi Introduction Acegi security system is a security framework for Spring framework, which can be seamlessly integrated with popular web containers. It uses spring to provide

Work control network security is one of the four major trends of network security threats in 2016 According to the 2016 Network Security prediction report recently released by Georgia Institute of Technology, there were four major trends in network security threats in 2016, of which the work control network

Intranet SecurityFor enterprises, the problem should start from four levels and take into account the internal network security of the enterprise comprehensively. In terms of it o M, the security of user behavior should be determined. Finally, when users pass layer-by-layer security checks, in addition, enterprises also need to check the