当我公开网站时我应该担心什么?
如果我要将我的网站供公众使用,我应该担心哪些安全问题?
我知道 SQL 注入。 我还应该注意哪些其他黑客/注入?
If I was going to put my site for the public's use, what are some security issues that I should be worried about?
I know of SQL injections.
What other hacks/injections should I be aware of?
如果你对这篇内容有疑问,欢迎到本站社区发帖提问 参与讨论,获取更多帮助,或者扫码二维码加入 Web 技术交流群。
绑定邮箱获取回复消息
由于您还没有绑定你的真实邮箱,如果其他用户或者作者回复了您的评论,将不能在第一时间通知您!
发布评论
评论(2)
这在很大程度上取决于您要建立的网站类型。处理商业和支付系统的网站需要比详细介绍如何给猫洗澡的网站更安全。
从本质上讲,网站的个人用户交互越多,就越需要检查其安全漏洞。静态 html 网站可能不会有太多问题,而允许人们注册、购买商品、使用信用卡在线支付等的网站则需要更仔细地了解幕后的内容。
It depends heavily on what kind of site you're putting up. Sites that deal with commerce and payment systems need to be more secure then a site detailing how to wash your cat.
In essence the more personal user interaction a site has, the more it's going to need to be checked for security vulnerabilities. A static html site will probably not have many issues while a site that allows people to register, purchase items, pay with a credit card online, etc, is going to need a much closer look at things under the hood.
跨站脚本
跨站请求伪造
Cross-site scripting
Cross-site request forgery