Web site security rating

This 'web site security rating' article is supplied by Web Site Security, where you can find more information about web site security rating.

Web Site Security Considerations - An Overview



An unfortunate fact is that there are several ways in which website security can be circumvented. Security risks lurk insidiously that might impinge on Web servers and LANs (local area networks) where Websites are located, even by the routine use of a Web browser.

Web Masters bear the brunt when coping with the major threats. As soon as a Web server is installed at a site, a window is made in the local area network through which anyone who's on the Internet can peep. Of course, as a rule web site visitors look at only what they are meant to see, but a few try to find areas of the site which are not meant to be visible to the world. Unscrupulous visitors aspire to go further than simply look; they endeavor to undo the window and creep inside. The damage intruders could cause might be mere vandalism, such as changing the website's home page with one of theirs which could say or put on view absolutely anything, or else it might be theft, such as appropriating a customers or sales database.

It is hard to avoid the probability that complex computer software has bugs. Regardless of how methodically it is tested, there exists usually a particular pattern of events or user actions, even though it might happen seldom, that brings about a failure. Computer software bugs create breaches in system security. A Web server is complex software that can very likely contain a security flaw.

It's not merely the intricacy of a Web server which may instigate a glitch, but also its open architecture. Think about a CGI script as an illustration. A CGI script can be executed at the server in answer to a remote request from a client. This might be a request from an application or even the click of a button in a browser. If the CGI script has a bug, there could be a possibility of a security breach.

Network Administrators also have to deal with problems from Web servers because of the threat they pose to the security of the local area network. Although there must be no unauthorized intrusions, admittance has to be granted to website visitors. This means that access to the network should be regulated. The Administrator therefore needs to perform a delicate balancing act. Even the most robust firewall can be undermined if the Web server is configured poorly. Concomitant with this constraint, normal use of the web site can be impossible if the firewall is configured poorly. Attaining a perfect solution is still more complicated if an intranet is part of the system. Normally, the Web server then needs to be configured to identify and verify domains and user groups, which are liable to have differing permission levels and access privileges.

Suggestion: For advice in relation to a special feature of web site security, for instance "web site security rating", search for the complete expression on the Net.

Nearly everybody using a browser to surf the Web trust that they are doing so secretly and safely. This is not the case. Web browsers can process autonomous software on the user's computer which are located on a website. Modern browsers show a notice and request permission to run those programs. Well-known commonly as "active content", e.g., ActiveX controls or Java applets, these programs, if malicious, could easily install a virus or other hazardous software on the browser user's computer. When it's in the system it can wreak all kinds of havoc and can be exceedingly awkward to eradicate.

This is also a worry for Network Administrators. Web browsers offer a route for possibly malicious software to permeate all the way through the local area network's firewall. When it is in the network, the damage it might inflict can range from clandestinely gaining possession of private data to motiveless destruction.

Besides the concerns to do with active content, merely browsing the Web leaves a trail of the user's activities in the browser's history. This might be utilized by websites and installed programs to create an exact report of the user's behavior and interests. Whereas this might be unacceptable as an invasion of privacy by some people, it can be advantageous by supplying relevant subject matter at once, so exonerating the user of the chore of looking for it.

Secrecy is a question that worries not only browser users but also Web Masters and Network Administrators during the actual transmission of data via the Internet. TCP/IP (Transmission Control Protocol/Internet Protocol) is the basic language of communication for the Internet. When it was created, security wasn't the most significant aspect of its blueprint. Both network and Internet transmissions should therefore not be thought of as as essentially confidential. When the browser on a local PC downloads a private file from the remote Web server, or the browser user fills in a form with confidential data and clicks the 'Submit' button, the transmitted information could be intercepted without consent.

To find out more about 'web site security rating', visit website-security.biz.