Do six easy to do a good job site security

Source: Internet
Author: User
Keywords Website security

Intermediary transaction http://www.aliyun.com/zixun/aggregation/6858.html ">seo diagnose Taobao guest cloud host technology Hall

I. Source code Security

After market research, the current market has 50% of the Web site is used is the Internet Public template website, which leads to 45% of the site to become someone else's money-making tools, open source is very unsafe, from which to find loopholes, the use of sites for profiteering.

Ii. Database Security

At present, for small web sites, the most common database is access, the database has a lot of sensitive information, need administrator attention to things, such as: background password, customer data, and these will become unscrupulous elements for profiteering targets, Access suffix is. mdb in the browser is the customer is directly downloaded, so we recommend that the administrator to the database security settings, placed in the database is downloaded, causing the background administrator leakage, causing the site security problems.

Third, the safety of the set of robots

The setting of the robots is generally a more tangled problem, if set, will expose the background management address, will give the site security leave hidden dangers, but is conducive to the search engine crawl, here to the webmaster some suggestions, it is recommended that the background do not use login.asp login.jsp, such as universal login name, You can set a file name that is more complex. At the same time, set up a verification code mechanism to prevent brute force.

Four, IIS or Tomcat set security

Web server settings security has always been in the Internet, in IIS, after each update completes, as far as possible to set not to write operations, so as to effectively prevent IIS vulnerabilities problem, for Tomcat, the need to set Tomcat management password, as far as possible to set up complex, this is what webmasters need to know.

Five, the background weak password security

Weak password security can be completely prevented, webmaster for the convenience of memory, set some simple password, such as domain name, name, QQ, etc., this information can be from the WHOIS can also be obtained, is the record of the black is basically 99%, so strengthen the background password settings, is also a key factor in the security of the site.

Vi. Space Security Issues

This security issue is one of the most serious problems space is a variety of sites placed in a server, it is conceivable that the safety of other people's sites will directly affect their own site security, through the vulnerability of others to get the server user name and password, thereby infecting all the site, which is a very terrible factor, unable to defend , unless you are managing a VPS or stand-alone server, webmasters need to view the site data every day and find and solve problems in a timely manner.

Article by: Professional website maintenance: http://www.hnlingwei.com Webmaster Original, reprint is a virtue

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

  • Sales Support

    1 on 1 presale consultation

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.