WebSuite incorporates a number of security features including firewall, hacker detection, password protection, realm support, user lockout, real-time monitoring and tracking, as well as sandbox security for Active Pages and standalone applications. The built-in FIREWALL prevents user from accessing unauthorized resources on your server. By default, the edge of the firewall is the \sdweb directory. Files below this location are accessible to the user through the browser (provided other security implementations are not in place). Files above the directory and elsewhere are inaccessible through the browser unless otherwise provided through Active Page or programmatic access. WebSuite's HACKER DETECTION monitors users attempts to randomly access resources on your server. Users are automatically locked out of the system if they attempt to randomly access more than a half dozen files that are not present on the server. Likewise, multiple attempts to enter random passwords will automatically lock them out. Locked users can be released only by the administrator's use of the mini-console. Realm-based PASSWORD PROTECTION is an industry standard security methodology and can be applied to any web page by saving the file as an Active Page and adding the following instructions to the top of the file:
Then, edit the SDWEBSEC.DAT file located in your windows directory and add the name of the realm and authorized users and detailed in the data file. Optionally, you can add an entry to the _master_ realm to provide user access to all realms. REALM SUPPORT allows you to define virtual groups of secure files for users. Once authenticated into a specific realm, users gain access to all secured files within that realm for the length of the current user session. Exiting the browser or changing browser user profiles will reset the realm access. USER LOCKOUT can occur automatically as previously mentioned or manually by accessing the current user record from the mini-console. Locked users are prevented further access to the server until the server is reset or the administrator releases the lock. Advanced administration through programmatic support can prevent any user or specific IP address from accessing the server at specific days and times. IP lockout can likewise be implemented. REALTIME MONITORING AND TRACKING through the use of the mini-console lets administrators monitor user access and activity in real time. Support for industry standard log files is also provided. Log files are stored beyond the firewall in the \sdweb directory out of the reach of users and can be accessed through the server log area of the default web site. The SANDBOX SECURITY incorporated in the WebSuite and FGL environment prevents unauthorized Active Pages and applications from accessing resources on your system. Active Pages must be granted access to low-level resources through the use of the _apGenerate( ) function, and applications must use the TRUSTED option of the FGL compiler. (c) 2001 by West Coast Web Adventures, Inc., All Rights Reserved |
