Academic Tutorials



English | French | Portugese | German | Italian
Home Advertise Payments Recommended Websites Interview Questions FAQs
News Source Codes E-Books Downloads Jobs Web Hosting
Chats

Web Building
Web Building Introduction
WebSite Design
Web Site Users
Web Standards
Web Page Validation
The World Wide Web Consortium
Web Security
Web Glossary
Web Search Engines
Website Awards

HTML Tutorials
HTML Tutorial
XHTML Tutorial
CSS Tutorial
TCP/IP Tutorial
CSS 1.0
CSS 2.0
HLML
XML Tutorials
XML Tutorial
XSL Tutorial
XSLT Tutorial
DTD Tutorial
Schema Tutorial
XForms Tutorial
XSL-FO Tutorial
XML DOM Tutorial
XLink Tutorial
XQuery Tutorial
XPath Tutorial
XPointer Tutorial
RDF Tutorial
SOAP Tutorial
WSDL Tutorial
RSS Tutorial
WAP Tutorial
Web Services Tutorial
Browser Scripting
JavaScript Tutorial
VBScript Tutorial
DHTML Tutorial
HTML DOM Tutorial
WMLScript Tutorial
E4X Tutorial
Server Scripting
ASP Tutorial
PERL Tutorial
SQL Tutorial
ADO Tutorial
CVS
Python
Apple Script
PL/SQL Tutorial
SQL Server
PHP
.NET (dotnet)
Microsoft.Net
ASP.Net
.Net Mobile
C# : C Sharp
ADO.NET
VB.NET
VC++
Multimedia
SVG Tutorial
Flash Tutorial
Media Tutorial
SMIL Tutorial
Photoshop Tutorial
Gimp Tutorial
Matlab
Gnuplot Programming
GIF Animation Tutorial
Scientific Visualization Tutorial
Graphics
Web Building
Web Browsers
Web Hosting
W3C Tutorial
Web Building
Web Quality
Web Semantic
Web Careers
Weblogic Tutorial
SEO
Web Site Hosting
Domain Name
Java Tutorials
Java Tutorial
JSP Tutorial
Servlets Tutorial
Struts Tutorial
EJB Tutorial
JMS Tutorial
JMX Tutorial
Eclipse
J2ME
JBOSS
Programming Langauges
C Tutorial
C++ Tutorial
Visual Basic Tutorial
Data Structures Using C
Cobol
Assembly Language
Mainframe
Forth Programming
Lisp Programming
Pascal
Delphi
Fortran
OOPs
Data Warehousing
CGI Programming
Emacs Tutorial
Gnome
ILU
Soft Skills
Communication Skills
Time Management
Project Management
Team Work
Leadership Skills
Corporate Communication
Negotiation Skills
Database Tutorials
Oracle
MySQL
Operating System
BSD
Symbian
Unix
Internet
IP-Masquerading
IPC
MIDI
Software Testing
Testing
Firewalls
SAP Module
ERP
ABAP
Business Warehousing
SAP Basis
Material Management
Sales & Distribution
Human Resource
Netweaver
Customer Relationship Management
Production and Planning
Networking Programming
Corba Tutorial
Networking Tutorial
Microsoft Office
Microsoft Word
Microsoft Outlook
Microsoft PowerPoint
Microsoft Publisher
Microsoft Excel
Microsoft Front Page
Microsoft InfoPath
Microsoft Access
Accounting
Financial Accounting
Managerial Accounting
Network Sites


Web Security

Previoushome Next




BEST PRACTICES IN MANAGING WORLD WIDE WEB SERVER SECURITY:

A D V E R T I S E M E N T


YOUR IP ADDRESS IS PUBLIC

Accessing to the Internet is a security risk.

1. Place your web server(s) in a DMZ. Set your firewall to drop connections to your web server on all ports but http (port 80) or https (port 443). 2. Remove all unneeded services from your web server, keeping FTP (but only if you need it) and a secure login capability such as secure shell. An unneeded service can become an avenue of attack. 3. Disallow all remote administration unless it is done using a one-time password or an encrypted link.




4. Limit the number of persons having administrator or root level access. 5. Log all user activity and maintain those logs either in an encrypted form on the web server or store them on a separate machine on your Intranet. 6. Monitor system logs regularly for any suspicious activity. Install some trap macros to watch for attacks on the server (such as the PHF attack). Create macros that run every hour or so that would check the integrity of passwd and other critical files. When the macros detect a change, they should send an e-mail to the system manager.

7. Remove ALL unnecessary files such as phf from the scripts directory /cgi-bin. 8. Remove the "default" document trees that are shipped with Web servers such as IIS and ExAir. 9. Apply all relevant security patches as soon as they are announced. 10. If you must use a GUI interface at the console, remove the commands that automatically start the window manager from the .RC startup directories and then create a startup command for the window manager. You can then use the window manager when you need to work on the system, but shut it down when you are done. Do not leave the window manager running for any extended length of time.



Your Network Shares

In large companies,personal computers are connected to large corporate networks. Personal computers in private homes often share a network between family members and computers in small companies are connected to a small local network. Personal computers are connected to a shared network.

To share resources like printers, files and disk storage,networks are used

Your shared resources can be accessed by the rest of the world,when you are connected to the Internet.




A Common Windows Security Problem

Many Microsoft Windows users are unaware of a common security leak in their corresponding network settings.

In Microsoft Windows,this is a common setup for network computers : 

  • At first,search the client for Microsoft Networks
  • Then File and Printer Sharing for Microsoft Networks
  • Then use the NetBEUI Protocol
  • After that use Internet Protocol TCP/IP to connect to the internet.

You have a security problem,if your setup allows NetBIOS over TCP/IP:

  • All over the Internet,your files can be shared
  • Your logon-name, workgroup-name, and computer-name are visible to others.

If your setup allows Printer and File Sharing over TCP/IP, you also have a problem:

  • At first,your files can be shared all over the Internet

Computers that are not connected to any network can also have dangerous network settings because when Internet was installed,the network settings were changed.




Solving the Problem

For the Windows 2000 users:

By disabling NetBIOS over TCP/IP,you can solve your security problem :

  • At first,open Windows Explorer
  • Then right-click on My Network Places
  • Then select: Properties
  • Then right-click on Local Area Network
  • After that select: Properties
  • Then select: Internet Protocol TCP/IP
  • Then click on Properties
  • Then click on Advanced
  • Then select the WINS tab
  • Then select Disable NetBIOS over TCP/IP
  • After that click OK

If you get the message: "This connection has an empty......", ignore the message and then click on YES to continue, and after that click OK to close the other setup windows.

After the changes,you should restart your computer.

For Windows ME,95 or 98 users:

By disabling NetBIOS over TCP/IP,you can solve your security problem :

  • At first,open Windows Explorer
  • Then right-click on My Network Places
  • Then select: Properties
  • Then right-click on Local Area Network
  • After that select: Properties
  • Then select: Internet Protocol TCP/IP
  • Then click on Properties
  • Then click on Advanced
  • Then select the WINS tab
  • Then select Disable NetBIOS over TCP/IP
  • After that click OK

For Microsoft Networks and File and Printer Sharing,you must also disable the TCP/IP Bindings to Client

  • At first,open Windows Explorer
  • Then right-click on My Network Places
  • Then select: Properties
  • Then select: Internet Protocol TCP/IP
  • Then click on Properties
  • Then select the Bindings tab
  • Then uncheck: Client for Microsoft Networks
  • Then uncheck: File and Printer Sharing
  • Then click OK

If you get a  message with something like: "You must select a driver.........", ignore the message and then click on YES to continue, and after that click OK to close the other setup windows.

You must use the NetBEUI protocol instead of the TCP/IP protocol,if you still want to share your Files and Printer over the network.Your local network,always make sure you have enabled it :

  • At first,open Windows Explorer
  • Then right-click on My Network Places
  • Then select: Properties
  • Then select: NetBEUI
  • Then click on Properties
  • Then select the Bindings tab
  • Then check: Client for Microsoft Networks
  • Then check: File and Printer Sharing
  • After that,click OK

After the changes,you should restart your computer .



Protect Your Server

iisPROTECT provides a complete range of authentication, password protection and user management solutions:

iisPROTECTasp: Protect areas of your web site and for this it requires username and password.Grant/deny any groups/users on a per resource basis. Extensive Web Interface for user/group admin, use any DB backend, store custom data, set user end/start dates, email users, audit logins.

iisPROTECT: Protect all web site files including images, html,databases,ASP etc. Protect entire directories, groups/users independent from Windows accounts, complete web administration, does not require cookies or any programming. Complete turn key solution.

iisPROTECTquota: All of the features of iisPROTECT plus: prevent concurrent password and logins cracking attempts, set quotas on hits, logins, kb per user.

Read more about iisPROTECT.



Be the first one to comment on this page.




  Web Building eBooks

No eBooks on Web Building could be found as of now.

 
 Web Building FAQs
More Links » »
 
 Web Building Interview Questions
More Links » »
 
 Web Building Articles

No Web Building Articles could be found as of now.

 
 Web Building News

No News on Web Building could be found as of now.

 
 Web Building Jobs

No Web Building Articles could be found as of now.


Share And Enjoy:These icons link to social bookmarking sites where readers can share and discover new web pages.
  • blinkbits
  • BlinkList
  • blogmarks
  • co.mments
  • connotea
  • del.icio.us
  • De.lirio.us
  • digg
  • Fark
  • feedmelinks
  • Furl
  • LinkaGoGo
  • Ma.gnolia
  • NewsVine
  • Netvouz
  • RawSugar
  • Reddit
  • scuttle
  • Shadows
  • Simpy
  • Smarking
  • Spurl
  • TailRank
  • Wists
  • YahooMyWeb

Previoushome Next

Keywords: java web security,web security tutorial,wireless web security,web application security,system web security,web vulnerability,web services security, web service security,symantec web security,social security web site,web server security,web site security,web vulnerability scanner

HTML Quizzes
HTML Quiz
XHTML Quiz
CSS Quiz
TCP/IP Quiz
CSS 1.0 Quiz
CSS 2.0 Quiz
HLML Quiz
XML Quizzes
XML Quiz
XSL Quiz
XSLT Quiz
DTD Quiz
Schema Quiz
XForms Quiz
XSL-FO Quiz
XML DOM Quiz
XLink Quiz
XQuery Quiz
XPath Quiz
XPointer Quiz
RDF Quiz
SOAP Quiz
WSDL Quiz
RSS Quiz
WAP Quiz
Web Services Quiz
Browser Scripting Quizzes
JavaScript Quiz
VBScript Quiz
DHTML Quiz
HTML DOM Quiz
WMLScript Quiz
E4X Quiz
Server Scripting Quizzes
ASP Quiz
PERL Quiz
SQL Quiz
ADO Quiz
CVS Quiz
Python Quiz
Apple Script Quiz
PL/SQL Quiz
SQL Server Quiz
PHP Quiz
.NET (dotnet) Quizzes
Microsoft.Net Quiz
ASP.Net Quiz
.Net Mobile Quiz
C# : C Sharp Quiz
ADO.NET Quiz
VB.NET Quiz
VC++ Quiz
Multimedia Quizzes
SVG Quiz
Flash Quiz
Media Quiz
SMIL Quiz
Photoshop Quiz
Gimp Quiz
Matlab Quiz
Gnuplot Programming Quiz
GIF Animation Quiz
Scientific Visualization Quiz
Graphics Quiz
Web Building Quizzes
Web Browsers Quiz
Web Hosting Quiz
W3C Quiz
Web Building Quiz
Web Quality Quiz
Web Semantic Quiz
Web Careers Quiz
Weblogic Quiz
SEO Quiz
Web Site Hosting Quiz
Domain Name Quiz
Java Quizzes
Java Quiz
JSP Quiz
Servlets Quiz
Struts Quiz
EJB Quiz
JMS Quiz
JMX Quiz
Eclipse Quiz
J2ME Quiz
JBOSS Quiz
Programming Langauges Quizzes
C Quiz
C++ Quiz
Visual Basic Quiz
Data Structures Using C Quiz
Cobol Quiz
Assembly Language Quiz
Mainframe Quiz
Forth Programming Quiz
Lisp Programming Quiz
Pascal Quiz
Delphi Quiz
Fortran Quiz
OOPs Quiz
Data Warehousing Quiz
CGI Programming Quiz
Emacs Quiz
Gnome Quiz
ILU Quiz
Soft Skills Quizzes
Communication Skills Quiz
Time Management Quiz
Project Management Quiz
Team Work Quiz
Leadership Skills Quiz
Corporate Communication Quiz
Negotiation Skills Quiz
Database Quizzes
Oracle Quiz
MySQL Quiz
Operating System Quizzes
BSD Quiz
Symbian Quiz
Unix Quiz
Internet Quiz
IP-Masquerading Quiz
IPC Quiz
MIDI Quiz
Software Testing Quizzes
Testing Quiz
Firewalls Quiz
SAP Module Quizzes
ERP Quiz
ABAP Quiz
Business Warehousing Quiz
SAP Basis Quiz
Material Management Quiz
Sales & Distribution Quiz
Human Resource Quiz
Netweaver Quiz
Customer Relationship Management Quiz
Production and Planning Quiz
Networking Programming Quizzes
Corba Quiz
Networking Quiz
Microsoft Office Quizzes
Microsoft Word Quiz
Microsoft Outlook Quiz
Microsoft PowerPoint Quiz
Microsoft Publisher Quiz
Microsoft Excel Quiz
Microsoft Front Page Quiz
Microsoft InfoPath Quiz
Microsoft Access Quiz
Accounting Quizzes
Financial Accounting Quiz
Managerial Accounting Quiz
Testimonials | Contact Us | Link to Us | Site Map
Copyright ? 2008. Academic Tutorials.com. All rights reserved Privacy Policies | About Us
Our Portals : Academic Tutorials | Best eBooksworld | Beyond Stats | City Details | Interview Questions | Discussions World | Excellent Mobiles | Free Bangalore | Give Me The Code | Gog Logo | Indian Free Ads | Jobs Assist | New Interview Questions | One Stop FAQs | One Stop GATE | One Stop GRE | One Stop IAS | One Stop MBA | One Stop SAP | One Stop Testing | Webhosting in India | Dedicated Server in India | Sirf Dosti | Source Codes World | Tasty Food | Tech Archive | Testing Interview Questions | Tests World | The Galz | Top Masala | Vyom | Vyom eBooks | Vyom International | Vyom Links | Vyoms | Vyom World | Important Websites
Copyright ? 2003-2024 Vyom Technosoft Pvt. Ltd., All Rights Reserved.