使一个对象在初始化被标记为安全,或标记为脚本安全。
IObjectSafetyImpl Allows an object to be marked as safe for initialization or safe for scripting.
各种入侵思路与技术和漏洞利用交流、让你成为脚本安全攻防高手。
A variety of invasive techniques and exploit ideas and exchanges, so that you become a master script security attack and defense.
为了保证你的脚本安全上没问题,你必须从基本的地方开始:过滤输入,转义输出。
To make sure the security in your PHP scripts are okay, you have to start with the basics: filter input, and escape output.
通常,这是一种很好的行为,因为它防止了在访问网页时跨站点脚本安全性隐患的发生。
Normally, this is a very good behavior because it prevents cross-site scripting security vulnerabilities from occurring when you access pages on the Web.
另外,如果希望开发生成账户的脚本,就需要一个可靠的随机安全密码来源。
Moreover, if you want to develop scripts to generate accounts, you want a reliable source of random, secure passwords.
这包括若干安全增强,例如关闭脚本漏洞和欺骗保护。而且,大部分增强不会影响您的工作,除非您正打算编写恶意代码。
Several security enhancements are included, from closing script vulnerabilities to phishing protection, but most of them won't affect your work unless you happen to be writing malicious code.
这个安全限制是为了避免跨站点脚本攻击(XSS)。
This security restriction is to avoid cross-site scripting attacks (XSS).
这个脚本创建用户和组表,您将使用这些表设置基于数据库的安全域。
This script creates user and group tables that you'll use to set up a database-based security realm.
这样可以通过禁用浏览器脚本和IE底安全等级的设置,保护浏览器免受通过已知漏洞发起的攻击。
This should protect against all known exploits of this vulnerability by disabling scripting and disabling less secure features in IE.
它还确保脚本可以安全执行,并提供一个沙箱来控制DOM的访问和修改。
It also ensures that scripts are safe to execute and provides a sandbox to control access and modification of the DOM.
如果服务器脚本不检查数据,要么数据库抛出异常,要么数据库安全会受到影响。
If the server script does not check the data, either the database will throw an exception or the database will be compromised.
自动化脚本的另一个问题是,确保脚本的安全性,特别是确保脚本不会由于配置不正确而失败。
Another issue with automated scripts is ensuring the security of the script and, in particular, ensuring that script does not fail because of bad configuration.
因为在脚本中并不真正需要初始化这些变量,所以很容易编写出带有安全漏洞的脚本。
These variables don't really require initialization in your scripts, so it's easy to write scripts with gaping security holes.
尽管硬件平均故障时间没有改变,做足备份和脚本工作可确保数据是安全的,您可以根据需要快速重建环境。
Even though the mean time between failures of the hardware hasn't changed, the backups and scripts put in place mean that the data is safe and that you can quickly rebuild the environment, if needed.
为了保护脚本执行,并确保未使用不安全数据,您需要识别信息并去除污染,以便可以安全使用数据。
To protect both your script execution and ensure that you are not using insecure data, you need to be able to identify and then de-taint the information so that it is safe to use.
从调整WebSphere安全设置,到将应用安装到新创建的环境中,脚本包几乎可以完成任何事情。
Script packages can do just about anything, from tuning WebSphere security settings to installing applications in the newly created environment.
在下一篇文章中,我将向您展示如何将本文的代码打包为一个Firefow扩展,并对脚本进行更新以利用更低级别的安全限制。
In the next article I'll show you how to package the pieces from this one into a Firefox extension, with updates to the script to take advantage of the lowered security barriers.
即使是在纯文本的环境中,Linux同样拥有非常先进的网络、脚本和安全能力。
Linux has very sophisticated networking, scripting, and security capabilities that are active even in a text-only environment.
出于安全目的,您可向脚本中增加一些行,来从parameters . xml中清除密码值。
For security purposes, you can add some lines to the script to erase the password value from the parameters.xml.
按需脚本可能包含打算攻击XXS等安全漏洞的恶意代码。
On-demand scripts can include malicious code aimed at exploiting security vulnerabilities such as XSS.
随后的编号序列在菜单树中向下导航,以到达可调用WebSphereApplicationServer安全收集脚本的位置。
The sequence of Numbers following it navigates down through the menu tree, to reach the point where it can invoke the WebSphere Application Server security collection script.
另外,针对基于Web的云控制界面的跨站脚本攻击会对整个云安全产生严重的影响。
Additionally, Cross Site Scripting attacks against Web-based cloud control interfaces have severe repercussions for the overall cloud security.
那段脚本由于来自该站点,并在Web浏览器内部运行,所以可以访问安全信息,例如用户cookie。
That script, since it is running inside the Web browser from the site, has access to secure information, such as the user's cookies.
InfoQ:过去的几年里,将脚本语言移植到JVM中并以利用它丰富的监控,安全等功能已经成为了一种趋势。
InfoQ: the last few years there has been a trend for porting scripting languages to the JVM in order to take advantage of its rich features for monitoring, security, etc.
servlet与用JSP编写的脚本类似;但是,因为它是预编译的,所以更安全。
A servlet is similar to a script written in JSP; however, because it's precompiled, it's more secure.
会有恼人的脚本小子(script kiddy)和真正的破解高手攻击我们的系统:安全是多么重要啊!
Annoying script kiddies and real, honest-to-goodness crackers that attack our systems: Security matters!
完成该脚本后,将需要重启DeploymentManager以使安全更改生效。
After this script has completed, you'll need to restart the Deployment Manager for security changes to take effect.
这个是更受推荐的,因为它强迫你创建更安全的脚本。
This is generally to be welcomed, because it forces you to create scripts that are more secure. However, you need to be aware of the following differences.
为了关闭安全特性或者检查是否关闭,执行位于代理控制器安装目录下的bin 目录的SetConfig脚本。
To disable it or verify that it is disabled, execute the SetConfig script located in the bin directory of the Agent Controller installation.
为了关闭安全特性或者检查是否关闭,执行位于代理控制器安装目录下的bin 目录的SetConfig脚本。
To disable it or verify that it is disabled, execute the SetConfig script located in the bin directory of the Agent Controller installation.
应用推荐