Features of the Empire website management system: system high security design

The following tutorial column from Empire cms secondary development will introduce to you the system high security design of the characteristics of the Imperial website management system. I hope it will be helpful to friends in need!

##System high security design

High security design:

·System verification uses random password authentication. Each time you log in or log out, a new random password will be generated, which is irregular;

·The administrator password uses double md5 encryption mode to prevent The password was leaked and cracked by brute force;

·The new authentication code function is added to the login. Only the password and the authentication code must be correct at the same time before logging in. This function can prevent illegal users from being able to log in even if they know the password;

·Backend authentication adopts: triple security authentication of database, COOKIE, and file, which is more solid.

·The number of logins is limited using COOKIE database double verification;

·Backend login supports three login verifications: login account password, authentication code, and account security questions, making it more secure.

·Backend login questions and answers are double md5 encrypted, so even if the database is stolen, the answer content cannot be deciphered.

·Login error log record allows users to check illegal login IP immediately and make timely illegal IP blockade;

·Background login adds the last login time and login IP record, It is convenient for users to check whether there is any abnormal login.

·COOKIE authentication code verification, adding another lock to identity authentication.

·COOKIE authentication code verification is bound to the IP. If the IP is incorrect, the authentication cannot be passed.

·Login verification COOKIE variable prefix setting.

·The backend directory is customized. If the other party knows the password, it cannot find the login backend.

Website security firewall functions:

·Supports shielding sensitive characters submitted by the front desk, and can add all possible attack content or characters to the blacklist (such as in SQL "select"), the firewall will block content that contains the blacklist.

·The outer layer of the firewall can be set up to intercept illegal access. If it is turned on, in addition to the background login page, strangers will not be able to directly access other program pages. A lock is added before the verification login, which is more secure.

·You can control which bound domain name can only log in to the backend, and the login address is protected by double encryption (the first level is the renamed backend directory of the previous version).

·You can limit the time and day of the week to log in to the backend, which facilitates the setting of work units during working hours and makes website security maintenance easier to control.

·Users can set whether to enable the firewall and configure related parameters online.

Recommended tutorial: "

Empirecms"

The above is the detailed content of Features of the Empire website management system: system high security design. For more information, please follow other related articles on the PHP Chinese website!