Where are the security settings of Empire CMS set?

The security settings of Empire CMS are located in the control panel, including: prohibit registration, enable verification code, set background password complexity, limit background IP login, set background directory access rights, set automatic exit time, set error attempts, limit uploaded files Type Set the maximum size of files that are prohibited from being uploaded. Enable anti-cross-site scripting attacks. Enable prohibit SQL injection. Enable security logging, and you can choose to record login, registration, comment and other operation information.

Security settings of Empire CMS

Setting location: Control Panel → System → Security Option

Detailed setting instructions:

1. Prohibit registration:Select "Yes" to prohibit user registration.
2. Enable verification code: Select "Yes" to enable verification code to prevent malicious registration and spam comments.
3. Backend password complexity: Set the complexity requirements for the backend management password, including the minimum length and must contain uppercase letters, lowercase letters, numbers, etc.
4. Whether to allow backend IP cross-domain login: Select "No" to restrict backend management to only allow login from the specified IP address.
5. Backend directory access permissions: Set the access permissions for the backend management directory. You can choose "Only allow authorized IP access" or "Fully open".
6. Automatic exit time: Set the time for automatic exit when the background management page is not operated, in minutes.
7. Limit on the number of incorrect attempts: Set the upper limit of the number of consecutive incorrect login attempts on the backend management page. If you exceed this number, you will be banned from logging in for a certain period of time.
8. File types that are prohibited from uploading: Set the file types that are prohibited from uploading to prevent malicious file uploads.
9. Maximum size of files prohibited from uploading: Set the maximum allowed size of uploaded files, in KB.
10. Anti-cross-site scripting attacks: Enable or disable the anti-cross-site scripting attack function to prevent the injection of malicious scripts.
11. Disable SQL injection: Enable or disable the SQL injection protection function to prevent the execution of malicious SQL statements.
12. Enable logging: Select "Yes" to enable security logging to facilitate tracking and analysis of security events.
13. Log records contain information: Select the type of security log information to be recorded, including login, registration, comments, etc.

The above is the detailed content of Where are the security settings of Empire CMS set?. For more information, please follow other related articles on the PHP Chinese website!