One: Do not use acquiescence in the background and database addresses. The best place to change clutter.
Two: No matter if the background password is still FTP and other passwords are messy, such as website background passwords are now mostly encrypted with MD5, as long as your password is messy, even if there are gaps such as SQL writing, the password is encrypted, it is not easy to crack .
Three: Unnecessary functions and files are best deleted and cleaned. If you use a certain management system, member functions are not used. It is best to delete and clean, and no files are left. Every day on the Internet, there are gaps in each system. One file that is not used and one less risk. It is best to pay attention to the gaps in the system you use. Well, even if the gap is repaired!
Four: If you have used an open source website management system, it is best to find out if there are any gaps in the system before use. If there are gaps, fill in the gaps first. When downloading, it is best to go to the official download of the latest version.
Five: The webmaster knows robots.txt. Robots.txt cannot be underestimated. If it is not set well, even if your website background is messy, if the background address is entered. People can still find it when they search for Gu Ge. Maybe you have set robots.txt, but have you really used it?You talk about how cluttered your website's background is, if someone enters it: http://www.XXX.com/robots.txt
Although the search was stopped, the background address was also exposed. So robots.txt needs to be set!
Six: We all know about SQL writing, and we have also implemented anti-write. But this is not enough. Many brothers use the general SQL anti-write program on the Internet. If the setting is not good, it is not good. of. ACCESS's suggestion is to separate the background account password database from other databases, and the database tables are also changed to be cluttered. In this case, don't be afraid to write.Seven: Website permissions should be set, such as picture directories, configuration file directories, databases and database backup directories, and other directories that do not need to perform scripts, must be set to not allow script execution!