517324 Secure osCommerce MS 2.2 Site

Secure osCommerce MS2 2.2

Develop and test all Contributions on development server prior to moving to production.

Security Pro

[url removed, login to view]

Patches the osC vulnerability in the querystring ($_GET/$HTTP_GET_VARS)

Monitor any Unauthorized Changes with Site Monitor

[url removed, login to view]

Monitors unauthorized changes to files, creates a record of (changes to files: added or deleted, or the size, timestamp or permissions were changed, site admin is notified via email)

Secure IP Trap

[url removed, login to view]

Sets up a trap in a folder where bad robots or hackers (using [url removed, login to view], trying to find sensitive files on the server) & sends a message that they are blocked with the writing of their IP address.

HTACCESS Protection

[url removed, login to view]

URL redirection protection

Filter protection for common exploits

Spam Bot Ban

Image hotlinking protection

Banning of IP's from Turkey

Protect against Cross Site Scripting attacks with Anti XSS

[url removed, login to view]

Cross-site scripting carried out on websites were roughly 80% of all security vulnerabilities documented by Symantec as of 2007 (Wikipedia) (Symantec)

Protects against injection of client side scripts into web pages which could be viewed by other users, an exploited cross-site scripting vulnerability can be used by attackers to bypass access controls and inject malicious code.

Check Permissions 1.0

[url removed, login to view]

Internally Developed

This checks file and folder permissions of all files and folders on the site.

Permissions on folders should be no higher than 755

Administration Security

[url removed, login to view]

Internally Developed

Renames the admin directory from /admin/ to /~cpanelaccess/

Adds .HTACCESS protection


Symantec. (n.d.). "Symantec Internet Security Threat Report: Trends for July-December 2007 (Executive Summary)".

Wikipedia. (n.d.). Cross-site scripting. Retrieved from [url removed, login to view]

Beceriler: Her şey Kabul, Makale Yeniden Yazım, e-Ticaret, MySQL, OSCommerce, PHP, Web Güvenliği, Web Sitesi Yönetimi, WIKI

Daha fazlasını gör: writing secure code, writing folders, writing bad checks, writing an executive summary, writing a bad check, wiki websites, wikipedia websites, trends on web development, oscommerce 2.2, ms access web development, ms access administration, find wikipedia, find pro com, executive on the web, client side scripts, client side and server side scripting, report 2 web, client side scripting, internet &web site development, find executive, wikipedia admin, vulnerabilities, security vulnerability, security patches, secure

İşveren Hakkında:
( 12 değerlendirme ) Ottawa, Canada

Proje NO: #2263257


%selectedBids___i_period_sub_7% gün içinde 250%project_currencyDetails_sign_sub_9% %project_currencyDetails_code_sub_10%
(304 Değerlendirme)