关于ASP网站设计安全性探讨

Discussion on Design Security of ASP Website

网络上的动态网站以SP1注入为多数,学校的网站也是SP1注入的。学校网站的制作和维护人员,与SP1注入攻击的各种现象斗争了多次,也对网站进行了一次次的修补,根据工作经验,就SP1注入网站设计常见安全漏洞及其防范进行一些探讨。结合SP1注入动态网站开发经验,对SP1注入程序设计存在的信息安全隐患进行分析,讨论了SP1注入程序常见的安全漏洞,从程序设计角度对WEB信息安全及防范提供了参考。

In the network, most of dynamic website is with SP1 injection, our school website is also with SP1 injection. The designer and attendants of school website, with fighting against all phenomena of SP1 injection attack for many times, have carried on patching to the websitel They have discussed the security holes and prevention measures in design of SP1 injection website according to their work experiences. Combining with the experiences of SP1 injection dynamic website, this paper analyzes information security hidden troubles in design of SP1 injection program, discusses usual security holes of SP1 injection program and provides reference for WEB information security and prevention from program design.