| IIS日志在网站安全中的研究与应用 |
| |
| 引用本文: | 杨方,潘大丰.IIS日志在网站安全中的研究与应用[J].计算机与农业,2010(10):96-98. |
| |
| 作者姓名: | 杨方 潘大丰 |
| |
| 作者单位: | 山西省农业科学院农业科技信息研究所,太原030031 |
| |
| 基金项目: | 山西农村信息化技术综合服务与开发(2009年国家星火项目 编号2008GA630005); 农村信息化网络综合服务平台关键技术研究(2008年山西省攻关项目 编号20080311090-2) |
| |
| 摘 要: | 针对目前网站存在的安全威胁,结合山西农业科技信息网防黑客实战经验,深入剖析了网站挂马、SQL注入攻击行为特点,通过典型实例探讨了如何利用IIS日志检测恶意攻击行为,并提出相应解决措施。同时,指出IIS日志在监控攻击行为、检测网站漏洞、预防攻击等方面的技术策略,为网站管理人员提供了一种保护网站安全的思路。
|
| 关 键 词: | IIS日志 网站挂马 SQL注入 |
Research and Application of IIS Log in Website Security |
| |
| YANG Fang,PAN Dafeng.Research and Application of IIS Log in Website Security[J].Computer and Agriculture,2010(10):96-98. |
| |
| Authors: | YANG Fang PAN Dafeng |
| |
| Institution: | (Agricultural Sci-tech Information Institute Shanxi Academy of Agricultural Sciences,Taiyuan 030031) |
| |
| Abstract: | In order to tackle the current common threats from the website,in this paper,the feature of website imbedded trojan and SQL injection attack were analyze based on the practical anti-hacker experience of Shanxi Agriculture Science and Technology website and how to detect malicious attack were discussed using IIS Log and the corresponding solutions were proposed after a lot of practice,as well as the technical strategy of IIS Log in monitoring attack,testing website bug,taking precautions against attack,etc.,so as to offer a safe thinking method for website administrative staff. |
| |
| Keywords: | IIS Log website imbedded trojan SQL injection |
| 本文献已被 维普 等数据库收录! |
|
