Web site security features

This 'web site security features' article is supplied by Web Site Security, where you can find more information about web site security features.

Web Site Security Issues - An Overview



An unfortunate fact is that there are several ways in which website security can be jeopardized. For example, security dangers lurk insidiously that have an effect on Web servers and LANs (local area networks) where Web sites reside, even by the natural use of a Web browser.

Web Masters are in the front line when coping with the most serious threats. As soon as a Web server is installed at a site, a window appears in the local area network through which anyone who is on the Internet can peek. Naturally, on the whole website visitors look at only what they're supposed to see, but a minority attempt to unearth parts of the site which aren't meant to be visible to all and sundry. Pernicious visitors want to do other than merely look; they endeavour to undo the window and steal through it. The harm they could cause might be sheer vandalism, for example substituting the website's home page with one of theirs which might say or show anything, or else it could be robbery, like stealing a customers or sales database.

It's hard to elude the likelihood that complex software has bugs. No matter how thoroughly it's tested, there is typically some combination of events or user actions, even though it might happen once in a blue moon, which leads to a fault. Software bugs give rise to gaps in system security. A Web server is involved software which can quite possibly include a security defect.

It is not only the intricacy of a Web server that may instigate a problem, but also its open architecture. Think about a CGI script as an illustration. A CGI script can be run at the server in answer to a remote call from a client. This could be a request from a program or even the click of a button in a browser. If the CGI script contains a bug, there may be a possibility of a security violation.

Network Administrators also have to confront problems from Web servers as a consequence of the threat they pose to the security of the local area network. Although there should be no unauthorised intrusions, right of entry has to be granted to website visitors. This means that access to the network must be controlled. The Administrator therefore must perform a delicate balancing act. Even the most sturdy firewall may be breached if the Web server is configured badly. Bearing that in mind, normal use of the website can be unachievable if the firewall is configured poorly. Finding an ideal resolution is even more tricky if an intranet exists as a constituent of the system. Typically, the Web server then has to be configured to distinguish and verify domains and user groups, which are apt to have differing permission levels and access rights.

Suggestion: For ideas regarding a special aspect of web site security, for example "web site security features", look for the full phrase on the Web.

The majority of people using a browser to surf the Internet believe that they are doing so secretly and securely. It is not correct. Web browsers may run autonomous software programs on the user's computer that are resident on a website. Current browsers display a warning and ask authorisation to run those programs. Described generally as "active content", e.g., ActiveX controls or Java applets, these programs, if malicious, might easily leave a virus or other hazardous software on the browser user's computer. When it is in the system it can wreak all kinds of catastrophe and can be very awkward to delete.

This is also a worry for Network Administrators. Web browsers supply a route for possibly malicious software to seep through the local area network's firewall. Once it is in the system, the damage it may cause can go from secretly gaining possession of sensitive information to motiveless demolition.

Besides the problems in re active content, simply surfing the Web records a trail of the user's activities in the browser's history. This might be utilised by websites and installed software to ascertain an exact report of the user's behavior and interests. While this may be considered an invasion of privacy by some people, it can be useful by displaying applicable subject matter directly, so relieving the user of the task of trying to find it.

Secrecy is a problem that concerns not just browser users but also Web Masters and Network Administrators for the duration of the actual transmission of data via the Net. TCP/IP (Transmission Control Protocol/Internet Protocol) is the basic language of communication for the Net. When it was formed, security wasn't the most critical feature of its blueprint. Both network and Internet transmissions should therefore not be thought of as as automatically private. Every time the browser on a local PC downloads a confidential file from the remote Web server, or the browser user completes a form with personal data and clicks the 'Submit' button, the transmitted information can be intercepted without consent.

To find out more about 'web site security features', visit website-security.biz.