前幾日網(wǎng)站被黑,小編清理之余總結(jié)了一套安全防護(hù)的方法����。一個(gè)個(gè)文件清理黑鏈顯然不現(xiàn)實(shí)����,稍不留神就會(huì)漏掉一兩個(gè)清理不干凈���。下載了數(shù)據(jù)庫認(rèn)真檢查,幸好數(shù)據(jù)庫沒有問題���。于是,我就重新安裝了一個(gè)新的網(wǎng)站程序��,連接原來數(shù)據(jù)庫���,再慢慢一步步恢復(fù)網(wǎng)站原來的設(shè)置�。一共花了兩天時(shí)間��,才把三個(gè)網(wǎng)站恢復(fù)正常�����。而且我已經(jīng)把三個(gè)網(wǎng)站分別放在不同IP地址的空間上����,避免一旦網(wǎng)站被黑,連帶牽連其余受到破壞的情況�����。
Several days before the site is black, a small series of clean-up summary of a set of safety protection method. A file to clean the black chain is clearly unrealistic, a little bit of the one or two will not be careful to clean up. Download the database carefully check, fortunately, the database is not a problem. So, I have to re install a new site program, connect to the original database, and then slowly step by step to restore the original site settings. It took two days to recover the three sites. And I have three sites on different IP address space, to avoid once the site is black, and the rest of the damage to the rest of the situation.
下面小編總結(jié)了幾點(diǎn),如何做好對網(wǎng)站的安全防護(hù):
The following summary of a few points, how to do a good job on the site's security:
設(shè)置非默認(rèn)后臺(tái)登陸路徑����。盡量不要使用默認(rèn)的后臺(tái)登陸路徑,登陸密碼的組合盡量復(fù)雜�����,建議是大小寫字母加數(shù)字加標(biāo)點(diǎn)符號(hào)����,登陸最好需要填驗(yàn)證碼。
Set the default background landing path. As far as possible not to use the default background landing path, the combination of password, as far as possible, it is suggested that the size of the number of letters plus a number of punctuation, landing the best need to fill out the verification code.
做好網(wǎng)站的數(shù)據(jù)庫和程序備份一定要養(yǎng)成良好的習(xí)慣���。例如wordpress程序�����,可以安裝自動(dòng)備份插件�����,定時(shí)備份數(shù)據(jù)庫和整站程序發(fā)送到你設(shè)定的電子郵箱���。避免發(fā)生什么意外����,你也可以通過備份恢復(fù)網(wǎng)站�����。這一點(diǎn)對于新手來說尤其疏忽����,通常要經(jīng)歷一兩次被黑站才會(huì)重視���。
Do website database and program backup must develop good habits. For example, WordPress program, you can install the automatic backup plugin, timing backup database and ZhengZhan program to send to set your electronic mailbox. To avoid any accident, you can also restore the site through a backup. This is especially for the novice, it is usually going through one or two times to be black.
安裝過濾插件和驗(yàn)證碼插件過濾垃圾評(píng)論和惡意評(píng)論一些評(píng)論可能帶有惡意代碼�,一旦直接提交到后臺(tái)數(shù)據(jù)庫而沒有被過濾��,****程序直接進(jìn)入數(shù)據(jù)庫����,后果可想而知。
Installed filter plug-in and verification code plug-in filter spam and malicious comments on some of the comments may with malicious code, once submitted directly to the database and is not filtered, * * * * programs direct access to the database, the consequences can be imagined.
主機(jī)空間選擇原則上�,為了安全可靠問題。選擇最貴的主機(jī)作為自己網(wǎng)站空間�����,大家心里都知道,便宜沒好貨����,好貨不便宜。一個(gè)幾十塊錢一年的空間和一個(gè)幾十塊錢一個(gè)月的空間差別可是相差甚遠(yuǎn)��。無論是主機(jī)配置�、打開速度、安全防護(hù)�、客服反應(yīng)處理問題的速度、主機(jī)商的誠信度����,都直接體驗(yàn)在價(jià)格差異上。建議有能力的朋友選擇價(jià)格高的主機(jī)���。
Host space selection principle, in order to secure and reliable problem. Choose the most expensive host as their own web space, we know that the heart is not good, good goods are not cheap. A few dollars a year in space and a dozens of pieces of one month space but far difference. Whether the host configuration, open speed, security, customer service response processing speed, the host's integrity, are direct experience in price differences. Recommended by the ability of a friend to choose a high price of the host.
分散放置不同網(wǎng)站空間不要把所有網(wǎng)站都放在一個(gè)主機(jī)空間內(nèi)�,避免主機(jī)一旦被****入侵��,整個(gè)主機(jī)上的網(wǎng)站都會(huì)被黑�����。分散在不同IP地區(qū)的主機(jī)放網(wǎng)站會(huì)比較安全���,不要把所有雞蛋都放在一個(gè)籃子里���,這是保險(xiǎn)的做法���。
Scattered placed different website space don't put all sites within a host space, avoid once the host is * * * * intrusion. The host site will be black. Dispersed in different regions of the host IP site will be relatively safe, do not put all eggs in one basket, which is the practice of insurance.
域名解釋的管理后臺(tái)做好保密最好能有后臺(tái)登陸的短信或郵件提醒。發(fā)現(xiàn)不正常的登陸可以馬上制止避免域名被轉(zhuǎn)移或泛解釋��。
Domain name to explain the management of the background to do a good job security is best to have the background of the landing SMS or e-mail reminder. Found abnormal landing can be stopped immediately to avoid domain name is transferred or pan interpretation.
就寫上以上幾點(diǎn)吧��,其實(shí)對于網(wǎng)站安全防護(hù)來說遠(yuǎn)不止這些���。但上述也是站長們?nèi)菀鬃龅絽s又經(jīng)常被忽略的。切忌網(wǎng)站在發(fā)展上升高峰時(shí)����,被自己疏忽的安全意識(shí)而導(dǎo)致網(wǎng)站遭殃。
To write more than a few, in fact, for the site security is far more than these. But the above is also easy to do the webmaster, but often overlooked. All sites in the rising peak, is safety awareness of their own negligence caused the site.
魯公網(wǎng)安備 37010202002295號(hào) 版權(quán)所有 魯ICP備14024464號(hào)-4