Shulou(Shulou.com)06/02 Report--

In this issue, the editor will bring you about how to achieve high security design of the system. The article is rich in content and analyzed and described from a professional point of view. I hope you can get something after reading this article.

High security design of the system

High security design:

Random password authentication is used for system verification, and a new random password is generated every time you log in or log out, which can be found irregularly.

The administrator password uses double md5 encryption mode to prevent password leakage from being violently cracked.

Login added authentication code function, which can only log in if the password and authentication code are correct at the same time. This function can prevent illegal users from knowing the password and not being able to log in.

Background authentication: database, COOKIE, file triple security authentication, more solid.

The number of logins is limited by double authentication of COOKIE+ database.

Background login supports login account password, authentication code, account security issues three login verification, more solid.

The question answer of login in the background is encrypted by double md5. Even if the database is stolen, the answer cannot be cracked.

Log log of login errors, make users check illegal login IP at the first time, and make timely illegal IP blockade.

Backstage login adds the last login time and login IP record, which is convenient for users to check whether there is an abnormal login.

COOKIE authentication code verification, adding a lock for identity authentication.

COOKIE authentication code verification is bound to IP. IP is incorrect and cannot pass authentication.

Log in to verify COOKIE variable prefix settings.

Background directory customization, if the other party knows the password can not find the login background.

Website Security Firewall function:

The sensitive characters submitted by the frontend can be blocked. All possible attack content or characters can be added to the blacklist (such as "select" in SQL). The firewall will block the content containing the blacklist.

The outer layer of the firewall background can be set to block illegal access. If it is opened, strangers can not directly access other program pages except the background landing page. A lock is added before the verification landing, which is more solid.

You can control which bound domain name can only log in to the background, and the login address is protected by double encryption (the first is the previous version of the renamed background directory).

You can limit what time and what day you can log in backstage to facilitate the setting of working units during working hours, making it easier to control the security and maintenance of the website.

Users can set online whether to turn on the firewall and related parameter configuration.

The above is the editor for you to share how to achieve high security design of the system, if you happen to have similar doubts, you might as well refer to the above analysis to understand. If you want to know more about it, you are welcome to follow the industry information channel.

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.