Catching a Virus:

Most viruses spread through e-mail attachments because it’s the easiest way to do it. Although Macintosh, Unix, and Linux systems can catch viruses, hackers were primarily interested in utilizing the security weaknesses in anything Microsoft, particularly Microsoft Outlook and Outlook Express. Because of the popularity of this software, hackers get maximum bang for their money, and they may get satisfaction from Microsoft to keep reminding that to be great does not mean you’re perfect.

Solution 1: Anti-virus Software

Your first line of defense is to install anti-virus software. For extra safe, also install firewall software, which now included in some anti-virus package. This software can scan all your drives for viruses and neutralize them. Here are some features to consider when evaluating anti-virus software.

- Compatibility with your operating system – Make sure the software works with your system, especially if you use the old operating systems like Windows 98.

- Firewall software – Jika tidak termasuk, mencari tahu apakah yang tersedia. If you must, buy it from another vendor.

- Automatic background protection – This means your software will constantly scan behind the scenes for infections and neutralize them as they appear. This provides peace of mind.

A deadly computer virus. They often spread without contact and obviously can become a nuisance, or even worse, fatal to your computer. Individuals who create these viruses, estimated at only 10-15 days, is the electronic version of terrorists. Their purpose is to cause havoc and destruction to many people probably by disabling, stealing, damaging, or destroying computer and information sources. Often times, they do not have specific targets in mind, so that no one is safe. If you access the Internet, share files or your computer with others, or load anything from diskettes, CD, or DVD into your computer, you are vulnerable to viruses.

Fortunately, there are good people to work as hard as the hackers to develop a cure for the virus as soon as they send them off into cyberspace. And there are many things you can do to protect your computer from catching viruses in the first place.

Defining Viruses:

Viruses are small computer programs that can copy and spread itself from one computer to another, with or without help from the user. However, viruses typically do more than just be fruitful and multiply, which is bad enough in itself because the pig system resources. Anything else viruses are programmed to do, from displaying annoying messages to destroying files, is called their payload. Often times, they are not able to deliver content to an unsuspecting user to do something to make the virus execute programmed functions. This can be as simple as clicking on an innocent search for a file attachment. Exe (executable) extension.

Use MaxLength. Input in form fields can use the HTML maxlength attribute to limit the length of the input form. Use this to keep people from entering WAY too much data. This will stop most people. A hacker can cut, so you must protect against information overrun at the script level as well.

Hide Email If you use form-to-mail script, not including your email address in the form itself. It defeats the point and spam spiders can still find your email address.

Use Form Validation. I will not be a lesson here about the program, but any form of script that must be put to validate the input received. Make sure that the column is a field that is received as expected. Make sure that incoming data is reasonable and expected length and format of the right (in the case of email, phone, Zip code, etc.).

Avoid SQL Injection. Complete lesson on SQL injection can be for another article, but the basic form of input that can be directly inserted in a SQL query without validation and, thus, giving hackers the ability to perform your SQL query through the web form. To avoid this, always check the data type of incoming data (number, string, etc.), enough to run a validation on the form, and write requests in such a way that hackers can not insert anything into the form that will make a request to do something other than you.

Conclusion

Website security that is the subject and get involved LOT more technical than this. However, I have to give a basic primer on some of the things that you can easily do on your website to overcome the major threat to your website.

You reduce the error Reporting Level

Speaking mainly to PHP here because that’s what I work in, errors and warnings generated by PHP, by default, printed with the full information to the browser. The problem is that this error is usually a full path to the directory containing the script. Giving away too much information. To alleviate this, reduce the level of PHP error reporting. You can do this in two ways. One is to adjust the php.ini file. This is the main configuration for PHP on your server. Search for display_errors and error_reporting landing. However, if you do not have access to this file (on the shared hosting is not much), you can also reduce the level of error reports using the error_reporting () function of PHP. This is included in the global script file that you will be working across the board.

Secure your Forms

Form a wide hole to the server for hackers if you do not correct their code. Because the form is usually submitted to some script on your server, sometimes with access to your database, a form that does not provide protection can offer a hacker direct access to all things. Please note … just because you have the address field and the “Address” in front of it does not mean you can trust the people to enter their address in the field. Imagine you do not have the correct form and the code to put this script is not good. What’s to stop hackers from entering an SQL query or script code into the address field? With that in mind, here are some things to do and explore:

Delete Files Installation

If you install the software and the script for your website, many times they come with installation and / or upgrade scripts. Leaving this on your server opens up security issues that are very big because if somebody else is familiar with the software, they can find and run the install / upgrade scripts, so reset the entire database, config files, etc. well written software package will warn you to remove the items before this allows you to use the software. However, make sure that this has been done. Only delete files from your server.

Until the security guard Updates

The people who run software packages on their website must remain in touch with updates and security warnings that are associated with that software. Not doing so can make you very open to hackers. In fact, many times glaring security hole is found and reported and there is a lag before the software can release a patch for it. Anybody can find so that tends to run your site and take advantage of software vulnerabilities if you do not upgrade. I have been burned several times by this, after all this forum should be destroyed and restore from backup. It happens.

Type “htpasswd-c. Htpasswd myusername” where “myusername” is the user name you want. You will be prompted for a password. And confirmation that the file will be created. You can double check this via FTP. In addition, if the file in your web folder, you should be moved so that can not be accessed by the public. Now, you open or create. Htaccess file. In, including:

AuthUserFile / home / www / passwd /. Htpasswd
AuthGroupFile / dev / null
AuthName “Secure Folder”
AuthType Basic

require valid-user

In the first line, adjust the path to the directory where your. Htpasswd file. Once this is set up, you will get a popup dialog when the folder is on your website. You will be prompted to log in to view it.

Disable Directory Listing

By default, all directories on the Web site that does not have a recognized homepage file (index.htm, index.php, default.htm, etc.) will instead display a list of all files in that folder. You may not want people to see everything you have on there. The simplest way to protect against this is enough to create a blank file, the name of index.htm and then upload to that folder. Your second option is, again, use. Htaccess file to disable directory listing. To do so, including the line “Options-Indexes” in the file. Now, the user will get a 403 error rather than a list of files.

Most people on the internet is good, honest people. However, there are some people browsing the Internet comes from the fun poking around your site and find security holes. Some simple tips can help you secure your website in basic ways. Now, clearly, the subject of data security is a complex one and is described in this column. However, I will handle the very basics that must be done will alleviate many potential problems that may allow people to see things that should not.

Password protect directory

If you have a directory on your server that must remain private, does not depend on people who do not have the name of the directory. Better to password protect a folder on the server level. More than 50% of websites out there that is supported by the Apache server, so let’s see how to protect the password in the Apache directory.

Apache configuration through the command to take a file called. Htaccess which sits in the directory. Command in the. Htaccess have any effect on every folder and sub-folder, except for certain sub-folder features. Htaccess file in the. Password protection for folder, Apache also uses a file called. Htpasswd. This file contains the user name and password access. The password is encrypted, so you must use the htpasswd program to create a password. To access it, go to the command line of your server and type htpasswd. If you receive a “command not found” error then you need to contact your system admin. Also, remember that most web hosts provide a web-based way to secure a directory, so that they may have been set up for you to do things that way rather than your own. This restriction, let us continue.