校园网内架设Windows2003Web服务器的安全实践

在架设基于校园网的Windows2003Web服务器时需要考虑到Windows2003、IIS6、数据库、FTP服务器的安全,任何一个环节出现漏洞都会危及整个系统。本文就如何使用Windows2003来架设Web服务器进行了安全实践探讨。     

一种有效的ISAPI服务器扩展调试方法

在分析了DLL的运行方式、ISAPI服务器的运行机制和断点中断处理后,给出了一个在Visual C＋＋中进行调试的有效方法,该方法操作简单,步骤清晰,版本无关,切实可用。     

C/S与B/S并用的高校教务管理系统研究与设计

分析高校教务管理系统采用 C/ S模式或 B/ S模式的优缺点 ,提出将两种模式交叉并用的教务管理系统的设计方案     

一种基于ASP.NET与ActiveX的安全的WebGIS实现方案

随着WebGIS快速发展和广泛应用,WebGIS的安全性问题也日益凸出。ASP.NET是新一代动态网页技术,具有强大的Web应用开发功能。ActiveX是应用于Internet的一种对象链接与嵌入技术,通过开发具有空间数据访问能力的ActiveX控件可实现对WebGIS地图数据的访问,同时利用IIS提供的安全性、ASP．NET提供的安全性,以及Oracle数据库管理系统提供的安全性,可构建安全的WebGIS。     

WindowsXP系统下完美解决IIS环境配置问题

用ASP、ASP.NET、JSP、PHP等技术开发Web应用程序,开发者通常应该具有相应的代码创作环境、一个Web服务器(如Internet信息服务)。本文以ASP技术为例(其它技术类似)总结分析了在WindowsXP系统下配置IIS环境可能碰到的问题,并提出了相应的解决问题的办法。     

A feasible intrusion detector for recognizing IIS attacks based on neural networks

Most activities on the Internet can be recorded as log files of websites and website administrators can inspect log files to locate problems after any network intrusion occurs. However, since log files usually contain a huge quantity of data, without effective methods, it is generally not feasible for administrators to determine the concealed meanings within log files. One method for dealing with this issue is to use neural networks; this is an effective means to distinguish and classify abnormal data in log files, thus alleviating the administrator's burden. This paper presents the results of a study on intrusion detection on IIS (Internet information services) utilizing a hybrid intrusion detection system (IDS). The feasibility of the hybrid IDS is validated based on the Internet scanner system (ISS). In the intrusion detection system proposed, we used four different training data sets: 200, 800, 1400, and 2000. The system is trained either by Taguchi's experimental design or full factorial experimental design under different training data sets; the former can save much more time than the latter. Under Taguchi's experimental design, the best results are obtained when the training data set is of size 1400; overall accuracy in this case is 97.5%. On the contrary, for the full factorial experimental design, the best results are reached when the training data set is of size 2000; overall accuracy is 97.6%. Our study indicates that when to retrain the detector and how much time to allow for this training fully depend on the downgrade percentage of the detection rate, which determines the size of the retraining data set. To reduce the void time for updating the detector, the downgrade percentage should be restricted.     

网上电力客户服务中心系统设计

根据计算机网络技术发展的趋势，以电力客户服务中心构建为基础，设计了一个基于B/S模式的网上电力客户服务系统，研究了基于B/S模式的网上电力客户服务系统的总体结构和实现方法。