Security settings in discuz! configuration file

Intermediary transaction http://www.aliyun.com/zixun/aggregation/6858.html ">seo diagnose Taobao guest cloud host technology Hall

Different sites have different levels of security requirements, sing (Comsenz) launched the discuz! system allows site managers to customize the configuration file in config.inc.php Forum security settings from the adjustment site security level, It can also enhance the security and defensive performance of the Forum.

The picture above is discuz! After the default installation, config file default settings, if the administrator needs to change this security settings, can be found in the Forum Directory, config file opened after the change can be saved. You can use Notepad or other programming software when editing a configuration file.

The following is an explanation of the options for Forum security settings:

1, $forumfounders = ' 1 ';

The founder of the Forum UID. Can support multiple founders, using "," delimited. The founder of the authority will be higher than the general administrator, some important backstage functions only after the founder login, can be managed, such as: Management personnel, template management, database backup and recovery, access to ucenter, etc., so by setting up the founder of the Forum account, can greatly enhance the security level of the forum. Add Forum Founder method See: http://faq.comsenz.com/viewnews-861

2, $attackevasive = 0;

A forum defense level that prevents a denial of service attack from a large number of irregular requests. The meaning of the data is: 0 = close, 1 = cookie Refresh limit, 2 = Restrict proxy access, 4 = two requests, 8 = answer the question (you need to answer the question for the first visit). If you need to set up a variety of defense levels, you can use the | You can set this to 2|8 when you combine the number of levels, such as restricting proxy access and requiring you to answer the question the first time you access it.

3, $urlxssdefend = 1;

Forum access page Defense switch. Can avoid users through the illegal URL address to the site users harm, the default value of 1, that is, open, not recommended to modify to 0.

4, $ADMINCP = Array ();

Security settings for the administrator account.

1 $admincp [' forcesecques '] = 0;

Managers must set security questions to enter the system setup, 0 = no, 1 = is [secure]. This is to the Forum has the administrative authority to enter the backstage added a security barrier, only the administrator password and the security question two all fills correctly, can enter backstage.

2 $ADMINCP [' checkip '] = 1;

Background Admin operation verifies the administrator's IP, 1 = is [secure], 0 = No. Set 0 only when the administrator is unable to log in to the background. Set up the authentication administrator's IP, can prevent this administrator account in many places to log in the forum backstage, protects the same account to the backstage manages the uniqueness.

3 $admincp [' tpledit '] = 0;

Whether to allow online edit Forum Template 1 = is 0 = no [security] defaults to 0, when set to 1 o'clock, the administrator can see the words "edit", "delete" in the Admin Center => Interface => Template Management => the details of the corresponding template, otherwise you can see only the word "view", that is, do not allow online Edit the template. In general, it is not recommended to set this to allow online editing, copy the template file and then edit, you can ensure the integrity of the original template file, for improper modification after the problem of the page error can be timely recovery.

4 $ADMINCP [' runquery '] = 1;

Whether to allow the background run SQL statement 1 = is 0 = no [security] defaults to 1, that is, administrators can see the text box that can enter custom SQL statements in the Central Administration => tool => database => upgrade, when modified to 0 o'clock, this text box is not displayed and can only be run in the background SQL statement. When the SQL statement is allowed to run, unless the statement is completely correct, do not run easily, and run the SQL statement, you must do a backup, otherwise improper operation, resulting in data loss or database damage, the consequences are very serious.

5 $ADMINCP [' dbimport '] = 1;

Allow background Recovery Forum Data 1 = is 0 = no [security] defaults to 1, which allows administrators to recover data in the Central Administration => tool => Database => recovery, and when modified to 0 o'clock, a hint that does not allow recovery of data appears. When it is determined that the backup files to be recovered are up to date and that the correct data is allowed to be recovered, it is possible to effectively prevent recovery of erroneous backups from causing data loss in the forum.