| 浅谈网站注入式攻击以及应对措施 |
| |
| 引用本文: | 宗鹏.浅谈网站注入式攻击以及应对措施[J].信息技术,2009(4). |
| |
| 作者姓名: | 宗鹏 |
| |
| 作者单位: | 中信海洋直升机股份有限公司,深圳,518051 |
| |
| 摘 要: | SQL注入式攻击是Web服务器面临的最严重的威胁行为,该种类型攻击能给用户带来无法挽回的危害.介绍了SQL注入攻击的基本原理以及基于编码阶段和服务器运行阶段的防范措施,从而可以帮助用户检查自己的服务器的漏洞.在程序中恰当地运用编码安全技术无疑可以有效地提高数据库的安全性,而针对Web服务器进行的多种主动安全防御措施则是大势所趋.
|
| 关 键 词: | SQL注入式攻击 防范注入式攻击 SQL语句漏洞 服务器主动防御 |
The SQL injection attacks of Website and analytic solutions |
| |
| ZONG Peng.The SQL injection attacks of Website and analytic solutions[J].Information Technology,2009(4). |
| |
| Authors: | ZONG Peng |
| |
| Affiliation: | CITIC Offshore Helicopter Co.;Ltd.;Shenzhen 518051;China |
| |
| Abstract: | SQL injection attacks on Web server are the most serious threat behavior,this kind of attack can take irreparable harm to computer users.This paper introduces the basic principles of SQL injection attacks,as well as preventive measures for server which is based on the coding phase and the operational phase to help users to check their server vulnerability.The appropriate use of security code technology is no doubt can effectively improve the security of the database,and the multi-initiative defenses measure... |
| |
| Keywords: | SQL injection attacks avoid SQL injection attacks SQL query vulnerability server active defense |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
