Shulou(Shulou.com)06/02 Report--

How to configure the virtual host? I believe that many inexperienced people are at a loss about this, so this article summarizes the causes and solutions of the problem. Through this article, I hope you can solve this problem.

At present, Internet hacker intrusions occur frequently, many virtual host users do not have high security awareness, and it is very common to be hacked. Hackers may cause websites to be hung with viruses, Trojans, data deleted by hackers, hackers using the server to attack others, occupying the server's disk and bandwidth, and so on. In order to improve the security of the host, it is recommended that everyone do a good job of system security configuration and enhance the awareness of security protection.

Virtual host system security configuration

1. Set more complex virtual space passwords, it is recommended that more than 8 digits, mixed case with numbers, special characters, do not use 123456, password and other weak passwords.

two。 No application service should be run using system or administrator account to avoid system intrusion when the application service is vulnerable.

3. If you install the pure version of the system independently, it is recommended to modify the default ports such as remote management 3389 and 22, and use other non-standard ports to reduce the chance of being hacked.

Website program / directory security configuration

1. Do a good job of checking the injection vulnerabilities of the website and controlling the access rights of the website directory. (it is recommended that the website be set to read-only, enable write permission for directories such as attachments to be uploaded, and disable script execution permissions for uploaded files)

If some official source code, timely follow the official version to upgrade and update the patch, if some network companies / self-developed programs, pay attention to some upload functions, submit messages, etc., to be subject to strict program judgment restrictions.

two。 The directory where the site is located can add some permission settings to enhance security. It is recommended to make local or off-machine backup of important data such as the database of web space on a regular basis.

3. Right-click the website directory, such as wwwroot- attribute-Security, and remove the full control permissions of the corresponding user, leaving only read and run permissions.

4. For individual directories, such as data/session caches uploads databases and other directories that require write permissions, right-click separately in attribute Security to set to full control.

5.upload, images and other static files, picture files and other directories cancel the execution permission.

6. Program files that are not often updated, such as index.php, index.asp, etc., right-click the properties and check the read-only properties to prevent tampering.

7. The best directory permission is not to give write permission as long as it does not involve the directory or file to be written. For directories that need write permission, script and exe execution should be prohibited.

After reading the above, have you mastered how to configure the virtual host? If you want to learn more skills or want to know more about it, you are welcome to follow the industry information channel, thank you for reading!

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.