[Typo3-UG Denmark] Beskytte Typo3 (jfr PostNuke)
PK
pk at no.spam
Sun Feb 20 19:48:57 CET 2005
Jag har noteret at PostNuke har et modul AntiCracker, der beskrives som:
"In essence, it detects attempts by malicious users to pass queries to the
database through input fields.
View Crack Attempts
This shows you every attempt there has been to exploit your website. It
gives the file, line, type of attack, time, userID and some set options.
This information allows you to take action should there be a need to as a
result of a crack attempt.
Crack Attempt E-mail
You can configure the pnAntiCracker to e-mail you whenever it detects a
crack attempt. This can be instead of, or in addition to the logging to the
database. You can edit the content of this e-mail in the summary content
field, and the more detailed content in the Additional Content field. If you
check the box for a summary e-mail when logging to the database, only the
first, summary content text will be sent to the administrator's e-mail
account.
HTTP Variable Cleansing, Denial of Service, and Encryption
Allows configuration of the security options PostNuke uses, and provides
limited protection against methods of malicious attack."
---
- Har TYPO3 nogle tilsvarande funktioner?
- Er der nogen samlet dokumentation hvordan man gör sin TYPO3-site mere
"sikker"?
Mvh
/Poul
More information about the TYPO3-UG-denmark
mailing list