Application skills needed for safeguarding the WEB server security

WEB applications are now more and more enterprises, in particular it is gradually to other information technology applications in the imports. If I enterprises, the OA system, mail system are tied to the entrance of WEB server. WEB server, so security is a top priority in the work of many authors. Therefore, I need to know the application skills for safeguarding the WEB server security.

As the Web servers may be exposed to attack than the ERP system, office automation systems, and application servers over a high probability. Therefore, if you put these applications on the WEB application with a server, WEB server, then subjected to a weak attack, it is likely to spill over into the ERP and other critical applications. In enterprises, the OA system, the interface to bind the WEB server, but, OA system and WEB application is still in the different application servers. This is mainly for the convenience of employees from outside the enterprise to access OA system. This advantage is that when an attack on WEB service cannot be used, up to employees cannot access from outside the enterprise OA system; not affect normal access to internal employees.

I also support the same point that is discussed in the above reply. Hence, the first one I would like to remind everyone is that when the deployment server, do a good job so that WEB applications such as Internet-oriented services with other services for internal applications deployed on different servers. This is to protect the safety of WEB server, also other applications to improve enterprise security.

It will be a good practice is to change the WEB server, the default path for the log, and every three hours to conduct off-site backup of the transaction log. At the same time, combined with the incident audit function, when the log server to capture some unusual information, such as when a user has been trying to log WEB server management station, they will, as enterprise managers to submit information to this exception. Through the log, management can bring a number of security risks WEB servers, and timely informed to the management staff.

Enterprise Portal to emphasize is fast, stable and secure; and entertainment site emphasizes that the beautiful, beautiful special effects. In order to attract attention, improve click-through rate, entertainment sites tend to use more and more effects. To this end, they will use in the WEB services relatively large number of controls to achieve this effect. However, these controls tend to have security vulnerabilities, with the server's security runs counter to the WEB. Such as the FLASH control and so on. In response to this control, attack, the Internet may be on a daily basis. Might one day also fell on the head of the company? Therefore, the corporate Web site is only for stability, security, there is no need for excessive use of control to achieve special effects.