資源描述:
《asp安全英文文獻及翻譯》由會員上傳分享,免費在線閱讀,更多相關(guān)內(nèi)容在學(xué)術(shù)論文-天天文庫。
1、asp安全英文文獻及翻譯ASPsecurityenvironmentanalysisAbstract?ArticlefromtheoverallsituationoftheAspsystem,fromtheWebserver,databaseclient,AspProgrammingAspthreeareasofsecuritytechnologyfortheanalysisandconclusion,andpointedoutthatsecurityshouldbebasedonAspprevention.I.?IntroductionAspisaMicrosoftserv
2、er-sidescriptingenvironment,itisthescript,HTML,ActiveXcomponentscombinetoformadynamic,interactiveandefficientWebserverapplications.Atpresent,IIS+ASP+SQL(orAccess)programhasbecomethesmallandmedium-sizedenterprisestobuildtheirownonlineinformationsystemofchoicefortheprogram.AlthoughtheAsphasth
3、eabilitytoquicklydevelop,butthereareAspsecurityvulnerabilitiesthatcannotbeignored,thesesecurityissuesisAspdevelopersandmanagershavebeenworkingtoresolve.Thispaperattemptstoclientfromtheserver,databaseclient,AspProgrammingAspthreeareasofsecuritytechnologyfortheanalysis.II.?ASPanalysisofthesec
4、uritytechnology(A)Webserver-sidesecuritytechnology??1.Directoryfileprotection??(1)NTFSpermissions.?NTFSfilesystemprovidesmoresecuritythantheFat32filemanagement,fileaccesscontrolthroughatable(ACL)definestheuseraccesstofilesanddirectory-levelpermissions,iftheuserhaspermissionstoopenthefile,th
5、ecomputerallowstheusertoaccessfiles.Directoriesandfilesbysettingaccessrights,theprohibitionhasnothingtodousersofthedirectoryfilecopy,modify,delete,etc.operations,restricttheinvasionofthesystem.??(2)Virtualdirectoryanditsproperty.Virtualdirectoryhidethedirectorystructureonthesiteofimportanti
6、nformation,intheAspenvironment,asaferapproachistoAspseparatescriptsandHTMLfilesstoredindifferentdirectory,willbestoredasHTMLfilesread-onlyattributewillbestoredAspscriptdirectoryattributeissettoimplement.??(3)TopreventthedocumentviewAsp.?IISorCode.aspownShowcode.aspdocument,youcanviewthesour
7、cecodeofAspproceduresinordertostealinformation.Webservercandeleteordisableaccesstothedocumentsstoredinthefiles.?2.Restrictaccesstotechnology??(1)IPaddressrestrictions.IISwillauthorizeorrejectaspecificIPaddressoftheirvisit,byrefusingavisittoaspecificIPadd