Windwos server security-common security check list
Recently, a security check was conducted on the website server, and the following lists were checked separately to prevent unburned attacks.
Serial number |
Regular check |
1 |
Port Check (disable unnecessary ports) |
2 |
NTFS permission management (file directory security settings) |
3 |
Windows Account Security (password security) |
4 |
Secure Management of FTP, SMTP, and Remote Desktop Functions |
5 |
Server System patch |
6 |
System Fire Prevention Function settings |
Serial number |
Web server security check |
1 |
Website Trojan Detection |
2 |
IP address filtering (malicious access) |
3 |
File Upload Security |
4 |
XSS attacks |
Serial number |
Web server security check |
1 |
Sa account Security |
2 |
Ordinary data user security |
3 |
SQL permission management (blocking unnecessary remote processing functions) |
4 |
Database file security |
After inspection, it is found that there are still XSS security problems in some places. If someone breaks down, it will be troublesome. If a script is light, it will make the website open a pop-up window and cause severe internal injuries.
In terms of data script injection, it is still OK, and a tool software is used for troubleshooting, except for someProgramNo requests can be directly injected through SQL.
The error is mainly caused by INT conversion, which is not properly handled by programmers.
For more details about server security, refer
Windwos server security-website Server Security Settings