Home | hacker invade | crack analyzes | hacker course | Exploit | encryption decipher | network management | System crack | the virus to be related | invades the examination | firewall
You are here: hacking technology > network management > Content
Hot Articles
The share network manage
The discovery discovers
SQL pours into the new t
The share network manage
The expert analyzes ten
The Windows 2003 termina
The computer password ex
Safeguard system clean n
Prevents the hacker to i
Chats in local area netw
Establishes a hypothesiz
The new military recruit
Teaches you to close the
Analysis honey jar techn
Under the Windows safe m
Recommend Articles
The expert analyzes ten
Safeguard system clean n
Graphic solution IE8 man
SQL pours into the new t
Why can't hundreds of th
Prevents the hacker to i
Teaches you to close the
The share network manage
Chats in local area netw
About the network connec
Let the network transmis
Explains in detail virtu
To hoodlum software and
Careful system initiatio
The common wooden horse
New Articles
Fights the WEB server se
VoIP security crack anal
VoIP security crack anal
Unix meat chicken scanni
Teaches you to distingui
The wireless network act
AES-IntelliNet Introduce
Enterasys Networks Deliv
Wick Hill launches minia
SFN Releases the First N
WLAN Market to Move Beyo
Is Your Network Public?
Plymouth City Council en
AEP Networks releases Go
JVC to Deliver Hybrid IP
Teaches you to distinguish the common Web crack to prevent the hacker to invade
  Add date: 10/30/2008   Publishing date: 10/30/2008   Hits: 2
Total 3 pages, Current page:1, Jump to page:
 
In the Internet popularity and Web technology rapid evolution's today, the challenge which the online security faces is day by day stern. Is following on-line information and the service usability promotion, as well as the base sub-Web attack and the destruction growth, the security risk has achieved the unprecedented altitude. Because the numerous trouble-free services concentrate above the network itself, the Web application procedure is forgotten nearly. Perhaps this is because the application procedure in the past was the stand-alone program which frequently moved on a computer, if this computer security, then the application procedure was safe. Now, the situation has been different, the Web application procedure moves on many kinds of different machines: Client side, Web server, database server and application server. Moreover, because they may let all person use generally, therefore these application procedure has become the numerous attack backstage bypass.
  Because the Web server will provide several different ways to request that the repeater for applied the server, and will have revised or the new homepage sending back for the end-user, this caused illegal to intrude the network becomes easier.
  Moreover, many programmers did not know how to develop the security the application procedure. Perhaps their experience is the development independent application procedure or Intranet the Web application procedure, these application procedure had not considered when the shortage of security is used possibly will present the disastrous consequence.
  The attack which next, many Web application procedure easy to receive through the server, the application procedure and the interior has developed the code which carries on. These attack adopted the peripheral firewall security measure directly, because of the port 80 or 443 (SSL, security sleeve joint character protocol layer) must open, with the aim of letting the application procedure normal operation. The Web application procedure attack including (refuses service) to application procedure's DoS to attack, the change homepage content as well as to steal the enterprise the key information or the user information and so on.
  In brief, the reason that the Web application attack is different with other attacks, is because they were discovered very difficultly, moreover possibly comes from any online user, even is undergoes the confirmation the user. Until now, this aspect not yet receives takes seriously, because the enterprise users mainly use the firewall and the invasion examination solution protect its network the security, but the firewall and the invasion examination solution could not discover the Web attack.
  Common Web application security crack
  Below will list the security crack which a series of will usually appear, and explained simply how these cracks will be produce.
  Known weakness and wrong disposition
  The known weakness including the Web application use's operating system and in the third party application procedure's all program error or may by the use crack. This question also involves to the wrong disposition, contains has the unsafe default setting or the manager has not carried on the safe disposition the application procedure. A very good example is your Web server is disposed may let any user's pass from system any directory path, will like this possibly cause the revelation to save on Web server's some sensitive information, like password, source code or customer information and so on.

 
Other pages: : 1 * 2 * 3 * Next>>
Prev:Avoids suffering attacks the skillful protection server security seven skills Next:How teaches you to guard against the hacker under the Linux system

Comment:

Category: Home > network management
Home