37-Mavzu: Qidiruv tizimlari yordamida sayt zaifliklarini aniqlash. Reja: Web saytlarning xavfsizligi

O'zingizning dasturiy ta'minotingizni muntazam yangilab turing

Bu sahifa navigatsiya:

• 2. HTTPS-dan foydalaning
• 3. SQL inektsiyasini izlash

1. O'zingizning dasturiy ta'minotingizni muntazam yangilab turing Dasturiy ta'minotni yangilash aniq taklif kabi ko'rinishi mumkin, ammo bu sizning veb-saytingizni himoya qilishda juda muhimdir. Dastur owners routinely release software patches and security updates to protect systems against security vulnerabilities like malware and viruses . Yangilanishni talab qiladigan yangilanish xabarnomalarini olganingizdan so'ng, darhol bajarilishini ta'minlang. Masalan, agar siz CMS yoki forumdan foydalanayotgan bo'lsangiz, veb-saytingizni himoya qilish uchun har doim xavfsizlik yangilanishlari va yamoqlarini qo'llang. 2. HTTPS-dan foydalaning Maxfiy ma'lumotlarni berishdan oldin har doim brauzer panelida https va yashil blokirovka tasvirini qidiring. Ushbu ikkita belgi ma'lum bir veb-sahifa xavfsiz yoki yo'qligini bildirishga yordam beradi. SSL sertifikatlari help you to securely transfer sensitive information such as personal data, credit cards, and contact information between the server and the website. In 2018, Google Chrome deployed a security update that alerts website visitors whether a website have the SSL certificate installed or not. If your website is not secure, visitors will always bounce even if you are not collecting sensitive information. 3. SQL in'ektsiyasini izlash SQL Injection hujumlari xakerlar sizning ma'lumotlar bazangizda o'zgarishlar kiritish uchun URL parametridan foydalanganda ro'y beradi. Natijada, ular veb-saytingizga ruxsatsiz kirish huquqiga ega bo'lishadi. Using the standard Transact SQL exposes your website to SQL Injection attacks. This is because they make it easy to inject rogue codes into your website’s query. Bunday hujumlarning oldini olish uchun har doim parametrlashtirilgan so'rovlardan foydalaning, chunki ularni amalga oshirish juda oson. Aytishga hojat yo'q, parametrlashtirilgan so'rovlar ko'plab veb-tillarda keng qo'llaniladi. Download 264.81 Kb. Do'stlaringiz bilan baham: