Shulou(Shulou.com)06/01 Report--

[introduction]

For the individual webmaster who runs the website, what worries most is how to manage his website effectively and safely, otherwise his hard-working website will be broken by uninvited visitors, or the site data will be stolen, and the entire site will be captured, resulting in inability to recover.

Disclaimer: I share this tutorial in the hope that you can learn about website management security and local area network security through this tutorial. I hope you can have a new awareness of network security in the future. I'm not teaching you how to be an unkind person. How to go to others, so I specially declare here that readers will not do some illegal things. Once you cross this bottom line and break the law, I am not responsible at all, please know!

Next, let's start to practice and get to the top of our lives! [hold your head]

"Video courses" or "more related technologies" can be found in the introduction course.

[operation]

This article mainly discusses from the following points:

1. Get a general idea of the composition of the website

2. The background blasting principle of the website.

3. Perform brute force cracking

4. Security precautions proposal

Get a general idea of the composition of the website

A website is usually composed of a variety of file directories and files. in the website service, the server program completes the user's request by calling all kinds of files reasonably / accurately. In the management of the website, administrators usually use two management interfaces, one is the login interface of the background management of the website (for example: the management interface of the router), different types of website interface will be different; and the other is the login interface of the management background database, commonly used phpmyadmin this software, usually the webmaster will hide for security (the hiding here can be to change the directory name) or abandon this directory.

The principle of cracking in the background of the website

After understanding the management background management interface of the website, let's explain the principle of blasting, which is mainly by intercepting all the data packets when the management machine (target host) logs in to the website, directly obtaining the password by analyzing the information in the data packet or obtaining the password through packet brute force cracking, so as to obtain the login ID and password of the website. ! []

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.