Shulou(Shulou.com)06/02 Report--

This article shows you how to configure a virtual host security group. It is concise and easy to understand. It will definitely make your eyes shine. I hope you can gain something from the detailed introduction of this article.

Every website is facing various security threats, the most common such as: cc attack, ddos attack, xss attack, sql injection, upload vulnerability, hang horse, tampering, etc., then we introduce how to set up a virtual host to protect against such attacks.

Take virtual host as an example to introduce security settings (the main idea is to set the whole station to read-only state, and set write permission separately for uploading directories that need write permission, but use directory protection function to close script execution permission for this directory).

1. For common attacks, the virtual host provides Baidu Cloud Acceleration for protection. After opening, it can effectively prevent CC, DDos, Xss, sql injection, upload vulnerabilities, hang horses, tampering and other hacker behaviors.

Open method: login website background-business management-virtual host management-management-website security management-Baidu cloud acceleration, click to enter, you can open.

2. Virtual hosts provide a large number of security settings for common vulnerabilities such as hanging horses, tampering, and uploading.

If it's a Windows host

(1)Read only settings. It is recommended to set read-only attributes only for directories or important files that do not need to be updated to prevent hackers from tampering. For example, home files, database connection files, generally not updated can be set to read-only, do not recommend the whole station set to read-only, will cause later maintenance more trouble.

Windos Host: Log in to the website background-Business Management-Virtual Host Management-Management-File Management, select the directory or file to be set, click the Permission button. After confirmation, click OK Settings to check whether the settings are successful through the permissions function in File Management.

(2)Directory protection, upload vulnerability has a good role in protection. It is recommended to set directory protection for high-risk directories. After setting, the execution permission of corresponding directories will be cancelled (especially upload directories with writeable permissions, plus,upload directories of dedecms, etc.).

Windows host: click host control panel-website security management-directory protection, browse and select the directory to be set-click [Add], after setting, you can upload a program file to this directory to test whether it can run normally.

If it's a Linux host

(1)Read only settings. It is recommended to set read-only attributes only for directories or important files that do not need to be updated to prevent hackers from tampering. For example, home files, database connection files, generally do not update can be set to read-only, do not recommend the whole station set to read-only, will cause later maintenance more trouble.

Linux system host: login background-business management-virtual host management-management-file management, select directory to set-permission settings-owner and group read-only, and apply to subdirectories at the same time.

(2)Directory protection, upload vulnerabilities on the site space has a very good role in protection. Set directory protection for high-risk directories to prohibit script execution permissions (especially upload directories with writeable permissions, plus,upload directories for dedecms, etc.).

The above is how the virtual host security group is configured. Have you learned any knowledge or skills? If you want to learn more skills or enrich your knowledge reserves, please pay attention to the industry information channel.

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.