Hi I am new

Discussion in 'Open Discussion' started by tomfo, Oct 16, 2012.

  1. Hi everyone,
    I am a forum newbie and want to get some inspiration on website creation. I do not mean the creative part - I mean the security part, and the technical "networking" part. I am not so well informed yet. Maybe some of you have some suggestions, thanks!
  2. martino

    martino DiscountASP.NET Staff

    To learn more about security for a web site. Its best to learn common things people do/use to compromise a web site.

    There are so many different ways to compromise a web site.

    SQL Injection

    Cross Site Scripting

    Compromised FTP User
    Compromised SQL User
    Compromised Email User
    Compromised Admin User for your web application.
    Compromised Control Panel Username and Password.

    To learn how to prevent SQL Injection please read this web page article here: http://www.codeproject.com/Articles/9378/SQL-Injection-Attacks-and-Some-Tips-on-How-to-Prev

    To learn how to prevent Cross Site Scripting please read these web page articles here: http://support.microsoft.com/kb/252985 & here: http://msdn.microsoft.com/en-us/library/ff649310.aspx

    The most common way the FTP user gets compromised is by having malware/viruses on your local computer. Once the FTP user gets compromised they will have full access to your web site files. From personal experience what hackers like to do is modify your default documents to put some kind of redirect on the main page to some malicious site to spread a virus around. They also like putting in iframes so what ever bad stuff they have just gets loaded on the web site visitor's computer with out really having to redirect people to different site. Then the compromised web site gets the bad reputation for distributing malware around.

    As for keeping your FTP, SQL, Email, Admin, and Control Panel user name secure. Best practice is keeping your systems up to date and doing virus scans on your local computer. Also, keeping the antivirus program update is important because if you do your virus scans with out updating your antivirus. (Then whats the point of even doing the virus scans with an outdated antivirus program)

    As for the networking part. The stuff you have control over is your DNS for your domain name. This best thing for you to do is learn more about DNS and how it works. I found this web page article here: http://www.howstuffworks.com/dns.htm

    I hope this information helps you and people out :D
  3. Hi, i am also new in this forum.I want to know more about the FTP and other related subjects.If you know anything please sahre for me.I read the FTP related article written by UK international relations thesis writing service but i want extra information about the topics.
  4. martino

    martino DiscountASP.NET Staff

  5. I'm also a novice here and don’t know what’s what.
  6. Takeshi Eto

    Takeshi Eto DiscountASP.NET Staff

    You can post questions in the forum or send in a ticket with your question to our technical support team using the helpdesk at https://support.discountasp.net (log in with your control panel login).
  7. When creating a website on any website builder, you will have standard data protection set by default. Usually it is enough.
    My site is made on a regular constructor, I never thought about additional protection. Everything works so great.
  8. I see no reason to overpay extra money.

Share This Page