Home > Article > Web Front-end > What does WAS mean in HTML5
WAS is a security service for web applications. It provides targeted security solutions based on the characteristics of the overall architecture of the application system and its personalized needs; it can ensure the security of web applications. Effectively reduce immeasurable losses caused by security issues to user units. The main contents of WAS: 1. Comprehensive code analysis of web programs to find script backdoors; 2. Black box testing/white box testing of web application codes to analyze security flaws in the code; 3. Change some applications on the service to increase system concealment and security.
The operating environment of this tutorial: Windows 7 system, CSS3&&HTML5 version, Dell G3 computer.
WAS in HTML5
WAS's full name is "Websphere Application Server". It is a security service for web applications and is based on application The characteristics of the overall system architecture and its personalized needs are used to provide targeted security solutions, and through the experience from the front line, it is turned into the security services needed by users, thereby ensuring the security of web applications and effectively reducing user units' security issues. caused immeasurable losses.
Main content
1. Comprehensive code analysis of web programs to find script backdoors.
2. Black box testing/white box testing of web application code to analyze security flaws in the code.
3. Develop reasonable and effective patching plans for existing script backdoors and security flaws and implement them.
4. Change the CAL permissions of the web application directory and reset server configurations such as IIS to improve security.
5. Based on the operating characteristics of Mssql, MYSQL and other databases, prevent the use of SQL to escalate privileges.
6. Change some applications on the service to increase system concealment and security.
7. Properly configure the network database server to prevent illegal acquisition of data content.
8. Check the system log to understand the previous operation of the system. Comprehensively check the system to prevent previous intrusions from leaving backdoors.
Specific embodiment
Code audit
Through black/white box testing of application code, locate program vulnerabilities The code is repaired based on the vulnerability, and malicious code is checked.
When the WEB application code undergoes normal operations such as functional changes, conduct security audits of the changed code in a timely manner to ensure the unified security of the overall code.
Server security configuration
The security configuration of the server includes the setting of access permissions and ACL rules, and the complete configuration of the database to delete unnecessary stored procedures.
Close unnecessary network protocols and default sharing. Set appropriate access permissions to the disk directory. Vulnerabilities in some third-party software.
Tamper-proof software installation
After ensuring system security and code security, install the AQPreventionTamper anti-tamper software to ensure the stable operation of the web system.
[Recommended courses: HTML5 video tutorial, web front-end]
The above is the detailed content of What does WAS mean in HTML5. For more information, please follow other related articles on the PHP Chinese website!