Website Security

In the Yandex help for webmasters, they laid out an excellent structured article on protecting sites from various types of attacks and vulnerabilities. There and protection from sql-injection, and a good php code, server settings, cookies, authorization, and many other interesting things. For the guru, of course, zilch, but who of the gurus was once a newcomer? Yes, and refresh your brains - never hurts =)

Good day!

To help webmasters secure their websites, we offer a translation of an article from Sophos: help.yandex.ru/webmaster/?id=1071330
')
The article was written at the end of 2007, but all methods described in it are actively used until now. The article discusses ways to compromise web servers and methods to counter them. Following the above recommendations can significantly reduce the risk of a successful attack on a web server. This will allow you to avoid infecting visitors to your site, falling traffic from search engines and possible problems with indexing (for example, when hackers place hidden text with many links on the site's pages).

Of course, within the framework of one article it is impossible to cover all hacking methods and ways to counter them, but we hope that this will allow webmasters to take a fresh look at the problem and prevent the appearance of malicious code on the site.

Sincerely yours, the Yandex.Webmaster service team.