Use Mccafés (McAfee) to build a hyper-secure Web site Directory _win server

Source: Internet
Author: User

Say a certain day of a station chrysanthemum, found that the Web directory permissions are very small,
In addition to the basic upload function is sound, almost no permissions, modifications, deletions, replacements and so on do not work.
I thought this station right set up really cow B, behold hundred secret must have a sparse, finally or be under Get server permissions.
Do not realize this station great article, although the hands of the server, but still on the web directory helpless.
In the following always actively studious, encounter so abnormal server, must be Skinner cramp to find its reasons.
First look at the directory permissions, found nothing special, not to mention I am now administrator rights,
Should be unimpeded, it seems that the problem is not out of the set of permissions.
So I tried to find out, suddenly a flash of light, found on the server equipped with Mccafés.
I've heard this thing is quite a cow B, most servers use it to housekeeping guard.
Is the problem here? After the next a great concentration of pondering, finally uncover the answer, the truth.
(The front is all fart words, the following start the topic)

After discovering that there are very few online related content, so write this article to make a record.

First install the McAfee v8.5i Patch 6 Bug Integrated version. Procedure omitted.

McAfee Download Address: http://www.jb51.net/softs/17178.html

After the installation completes the mail clicks the mccafés icon in the lower right corner, opens the VirusScan console, like figure one.


Next, select Access Protection and right-click the property to eject the Properties dialog box, as shown in Figure two.

When you see the "Access Protection rules" interface, we check "Enable Access Protection" and "prohibit McAfee server from being stopped", as shown in Figure three.

Then we click User Custom rules to see that Mccafés has added many security rules by default,
Our goal is to prevent web directories from being maliciously modified, added, and deleted, so all we have to do is create a new rule.
This assumes that our space only supports ASP-formatted Web site programs, so we should add a rule that prevents new and deleted ASP files from being modified.
Click the new option at the bottom right and we'll see the interface in Figure four, check the second item, click OK

At this time we have entered the rules of the interface, the specific set up method, please refer to figure Five.

The E:\wwwroot in the diagram is our web site directory,
E:\wwwroot**.asp means to prohibit the creation, modification, and deletion of any ASP-formatted files in all directories in the E:\wwwroot folder.
So our goal is achieved, even if our website has loopholes, others have no way to upload backdoor files.
However, some people will ask, in the event of missing which directory, accidentally written to Webshell and the right to enter the server, what to do?
Don't worry, we have a last resort, which is to add a sturdy lock to mccafés.
We click on the VirusScan Console File menu, select the User interface option, click the Password option,
Tick the second item and set our password, as shown in Figure six.

At this point, a secure web directory was born, even if hackers do everything possible to enter our server, there is no way to modify our rules,
Only to our super BT settings alone in a daze. [FACE03]
Note: This article mainly takes the ASP file to do the demonstration, we may revise the e:\wwwroot**.asp for us to want the restriction the format,
such as E:\wwwroot**.aspx e:\wwwroot**.php, and so on. If the database format of our site is ASP, please change to MDB format,
Prevent mccafés restrictions, resulting in web site errors.

Here are some other articles about McAfee settings in the cloud-dwelling community:

    • mcafee Create a secure Windows Server security settings graphic Description
    • mcafee password unlock graphics and text method [McAfee password settings, login, modify, forget password]
    • mcafee scan Automatic Stop repair method
    • mcafee Beginner's introductory tutorial how to enter a password unlock

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

  • Sales Support

    1 on 1 presale consultation

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.