Shulou(Shulou.com)05/31 Report--

This article introduces you how to analyze UnisGuard tamper-proof products, the content is very detailed, interested friends can refer to, hope to be helpful to you.

1 UnisGuard adopts the protection technology based on file driver level-kernel event trigger protection mechanism to ensure that system resources are not wasted. Different from the Web event trigger mechanism of other tamper-proof software, the page tamper-proof module of UnisGuard adopts the underlying file driver-level protection technology of the operating system, which is closely integrated with the operating system. This completely eliminates a series of risks, such as the calculation check that may occur in the ordinary Web built-in tamper-proof software takes up too much system resources, the check value is calculated incorrectly, and can not be recovered after tampering.

2 dynamic web page script and anti-injection protection

Nowadays, more and more websites use dynamic technologies (such as ASP, JSP, PHP) to output web pages. The dynamic web page consists of web script and content: the web script exists on the Web server as a file, and the content of the web page is taken from the database.

UnisGuard tamper-proof system supports the detection of SQL injection * *, cross-site * *, overflow code * * and other construction network *, which can effectively prevent and protect. The monitoring end filters the blacklist to access the submitted data from the network layer, and completely blocks the requests containing * features, thus realizing the protection of the database and dynamic content.

3 continuous tampering protection

For large-scale continuous tampering, the UnisGuard tamper-proof system detects the first illegal operation and then blocks its subsequent tampering operations in real time. According to the source and operation behavior, the system terminates its subsequent tampering operation request in advance. The completion of these protective measures at the bottom of the system will not send these large-scale continuous tampering requests to the upper application, which greatly reduces the processing burden of the application and effectively improves the work efficiency.

Ordinary Web embedded event-triggered tamper-proof software needs to calculate check matching every time when large-scale continuous tampering occurs. Because it can not prevent tampering, these software need to repeatedly restore the original web page content, which takes up a lot of system resources and network resources, and may cause error pages to be displayed to visiting users.

4 Omni-directional compatible security automatic incremental release

UnisGuard integrates the function of automatically publishing pages. The server uses advanced algorithm to quickly publish the web page content under the trusted backup path to the corresponding folder, reduces manual intervention, and supports traditional FTP, network sharing and so on. The system supports the function of high-speed upload, as well as the function of web page backup to the designated folder, which is convenient for maintenance personnel to carry out daily maintenance of the website.

UnisGuard can be seamlessly integrated with all content management systems without any modification, making it much easier to manage and deploy with users.

5. Supervision of safe operation of servers

The UnisGuard system can monitor the current running status of the server and monitor its cpu, memory, network traffic and other performance. By setting the threshold to provide alarm information to the user in time, so that the user can respond to unexpected events in time, and by setting the blacklist and whitelist of the process to ensure that the server is implanted into the backdoor and other programs. Provide managers with remote maintenance and management and other functions. These include:

1) protect the configuration of the web server

2) Server cpu uses threshold alarm

3) alarm of server memory threshold

4) monitor the running status of the service, and provide linkage operations such as stop and restart after an exception occurs in the application service.

6 encrypted secure transmission

The secure transmission of legitimate web pages is an important part of system security. UnisGuard uses high security intensity encryption technology to ensure the integrity and privacy of information in the process of information transmission, and the user login authentication uses encrypted transmission, which effectively prevents the disclosure of user information in the process of transmission.

7 supports multiple virtual directories

UnisGuard can automatically and real-time monitor the contents of multiple subfolders, each subfolder contains multiple websites that can be monitored at the same time, supports multiple virtual directories, supports tens of thousands of web files, and has no impact on system performance.

8 supports multiple terminals

UnisGuard supports the maintenance of multiple web monitored server-side websites with the same server-side program. Users can expand and upgrade at any time, as long as they need to purchase the corresponding monitoring side and authorization.

9 Software self-security

The R & D staff of UnisGuard adopt the strategy that the monitoring process is invisible, do not generate system services, and the monitoring process can not be detected and killed, which is highly hidden and self-protective. Effectively prevent illegal personnel from evading Unisguard or misoperation of managers.

10 support log query

The system supports the query and audit function of website maintenance. In order to facilitate users to keep abreast of the daily maintenance work done by managers and operators. In addition to recording tampering events, UnisGuard also records the operation log, and it is convenient for users to query and count the log. Logs that can be queried include:

1) Log that adds, deletes, and modifies protected web page files and directories

2) Log of monitoring policy on and off

3) Login log of administrator

4) Log of changes to monitoring policy

5) add, delete and modify the operation log of the administrator

6) modify the parameters of the feature configuration.

11 does not affect the original network structure

The architecture of the Unisguard web page tamper-proof system adopts Cpact S mode, which is safe and reliable. Management Center and Management Client can be installed on any specified system, the management alarm client has no local storage data, and the log is exported to excel for query only when needed, which greatly reduces the user's investment.

12 easy to deploy and implement

Users with basic windows operating system skills can deploy a complete set of web page anti-tamper protection system according to the instructions in 10 minutes. After deployment, they can run with simple configuration. If there is a firewall or other access control devices between the system components, it is recommended to cooperate with the network management personnel to configure the corresponding rules on the firewall to achieve secure communication, and the corresponding ports can be set freely to avoid opening other ports on the Web server.

On how to carry out the analysis of UnisGuard tamper-proof products to share here, I hope that the above content can be of some help to you, can learn more knowledge. If you think the article is good, you can share it for more people to see.

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.