Follow The Intruction

Securing PHP when using apache

Student’s Name

Institution

Date

Introduction

Security of web servers or data is essential for any e-commerce company. And therefore, creating a website using PHP and apache The PHP should take advantage of internal security internal security to build its mechanism to ensure security of the system. The basic way to secure PHP is the application of dynamic web page to improve security of apache CITATION Mic14 \l 1033 (Cox, 2014). Apache is built in a secure platform, but it become more secure based on how the person who installed it secures it. Therefore, the server where apache and PHP are used should be configured to a minimal possible.

In order to secure PHP script, the PHP scripts is required to be executed in a chrooted environment. Apache server must be configured to reject the entire request from POST and GET, which has got HTML tags. It is because, the possibility of cross site scripting attack, which originates from HTML files. It is important to configure the website to monitor such entries for any possible attack. The configuration should be done in such a way that no PHP warming or error message is indicated to the regular users of the web applications CITATION Das15 \l 1033 (Das, 2015). The php and apache files make it possible for the storage of incoming POST and GET request in the form of a text file. This makes it possible to utilize much host-based intruder detection (HIDS) such as swatch. It is important to disable server token to prevent any kind of pop, which appears as the result of when PHP is used. And therefore, the configuration of Apache should be done in such a way that it does not display its version from the server. This can be achieved by editing the below file the apache files secure from any access and editing by a third party CITATION Rüe18 \l 1033 (Rüegg, et al., 2018). It is important to ensure that the access by IP is very restricted and this is done configuring the website to filter any entry. Finally, the website or web server can be secured by ensuring that DoS attack is also prevented by configuring wait malicious on the system to minimize any attack CITATION Pet12 \l 1033 (Patterson, 2012).

The screenshot PHP indicates the procedure of configuring PHP security to ensure that web site is secure. PHP is mostly used by developers to develop a website and therefore, it is generally used on the window’s server. The below screen short is an output command issued and it is used in by PHP developers.

echo "";echo "";echo "";for ( $counter = 10; $counter <= 100; $counter += 10) { echo ""; }echo "

Part Number

Price

";echo $counter;echo "

";echo $book price * $counter; echo "

"; ?

Echo in PHP used as a command text for output which is used in web browser. It is therefore, used to give a specific command and mostly applied at the beginning of the command when using PHP. The $counter is also a command for arrays and usually applied for specific mode. It can used by web site developers to give a give a website a better look and secure it from any access.

References

BIBLIOGRAPHY Chung, K. S., & Paredes, C. W. (2015). Towards a Social Networks Model for Online Learning & Performance. International Forum of Educational Technology & Society , 2-35.

Cox, M. (2014). Understanding large social-ecological systems: introducing the SESMAD project. International Journal of the Commons , 265-276 .

Das, K. (2015). Python for you and me, Release 0.3.alpha1. New York: Pearson.

Laher, R. R., Surace, J., Grillmair, C. J., Ofek, E. O., & Levitan, D. (2014). IPAC Image Processing and Data Archiving for the Palomar Transient Factory. Publications of the Astronomical Society of the Pacific , 2-35.

Patterson, P. (2012). Introduction to Advantages of Array: Advantages Of Array. https://www.educba.com/advantages-of-array/ , 2-31.

Rüegg, J., Gries, C., Bond-Lamberty, B., Bowen, G. J., Felzer, B. S., McIntyre, N. E., et al. (2018). Completing the data life cycle: using information management in macrosystems ecology research. JOURNAL ARTICLE , 2-35.