How does dedecms configure security?
To do a good job in DEDECMS security, there are the following ten steps. In fact, there are only nine steps, and the last one is left for everyone to discuss and think about.
Recommended learning: 梦Weavercms
1. Keep DEDE updated and patch it in time.
2. Delete the install folder immediately after installing DEDE
3. Rename the management directory, preferably to MD5 format, preferably longer
4 , DedeCms universal security protection code http://bbs.dedecms.com/read.php?tid=15538
5. If you use HTML, you can put the corresponding file under plus and index.php in the root directory Delete it (delete all the unused ones, you can also delete the unused tables in the database)
6. If you don’t need the guestbook, you can delete the guestbook under plus
7. If you don’t need the membership, you can delete it.
8. Backend file management (file_manage_xxx.php in the management directory). If you don’t need it, you can delete it. This is not very safe. At least it is very convenient to upload ponies in the background.
9. Download and publish function (soft__xxx_xxx.php in the management directory), you can disable it if you don’t need it. This is also easier to upload Xiaoma
10. Let’s continue the discussion
The above is the detailed content of How to configure security in dedecms. For more information, please follow other related articles on the PHP Chinese website!