Little security for your WebSites

[BlackEye]

Hi RZ users!

I will post how to litlle secure your web site!
How we all know,menny people use account "sa" in websites,bt it's not safe,account "sa" hawe all previlegios and hackers just hawe to easy brake your server!

Ok.Lets start!

First we need to create new account!
Go to:

"Start" -> "Programs" -> "Microsoft SQL Server" -> "Enterprise Manager".


Now open "Security" folder and right click with mous on "Logins" tab and select "New Login".

Now register new user:

"Name" -> Name of account (ex. WebSite)
"Password" -> Password of account

Now select created "Account" right click on muse and select "Properties".

Now select "Database Access" tab and select this 2 databases "MuOnline" and "Ranking".

Now select "Server Roles" tab and select this 2 rules "System Administrators" and "Security Administrators"

Press "OK" And close your "Enterprise Manager".

And now you cant replace in website config login "sa" with your created login and password!

Here is example:

// Enter the IP or DSN of the database server to connect to              
$dbhost = "127.0.0.1";                                                   -> Your IP

// Enter the username to connect to the db, default is sa                
$dbuser = "WebSite"; -> Login what we just now created

// Enter the password for your SQL Server                               
$dbpasswd = "123456"; ->                                                  Pasword to our created login

// Enter the Database name for your SQL Server
$database = 'MuOnline'; -> Database name

// Host. IP If working remotely, usually 127.0.0.1 works                 
$host = "127.0.0.1"; -> Again your IP

Thats all! Now your website is litlle secured!
Thanks!

(BlackTeam)


Credits By MuForum.Info

 

[rolex inc.]

Re: [Guide] Little secue for WebSite

very good info thanks! 10/10

 

[Sarkons]

Re: [Guide] Little secue for WebSite

Great, Thanks.

 

[AleXaNdeR-GM]

Re: [Guide] Little secue for WebSite

Perfect Guide Nice 10/10!

 

[MemmeR]

Re: [Guide] Little secue for WebSite

Cool guide and nice with images

Added to my little "Guide section" in my tabs in Firefox

10/10

 

[MuForum.Info]

Re: [Guide] Little secue for WebSite

#1, BlackEye - Review you not accustom leave credits...

P.S. -> Original Thread:

To view the content, you need to sign in or register

+ This old Guide, and if on that has gone, that advises to honour here is this subjects:

To view the content, you need to sign in or register

 

[MuForum.Info]

Re: [Guide] Little secue for WebSite

#1, BlackEye - Review you not accustom leave credits...

P.S. -> Original Thread:

To view the content, you need to sign in or register

+ This old Guide, and if on that has gone, that advises to honour here is this subjects:

To view the content, you need to sign in or register

----------

if you wont to security your WebSite, need to create two users in MSSQL.
1 - For Read Information from Tables. (Permit in DataBases rule: "DB_denydatawriter")
2 - For Write Informaton in Table(Registration) (Permit in DataBases rule: "DB_DataWriter")


P.S. -> Sorry my bad English.

 

[BlackEye]

Re: [Guide] Little secue for WebSite

Sorry забыл!
Просто делал ночью сонный!

 

[oleg35]

Re: [Guide] Little secue for WebSite

All credits i think goes to BoR Team Русские сила

 

[BlackEye]

Re: [Guide] Little secue for WebSite

This is taken from MuInfo.Forum!

 

[yanquiel]

Re: [Guide] Little secue for WebSite

nice thnx for the tip, question tho cant we admins do the same thing abt sa? instead of having sa as a login for the server database change it to w.e we want?? wouldnt that make the server a lil more secure?