- Use strong authentication
- Do not store secrets (for example, passwords) in plain text and don't write down passwords in easily accessible places
- Do not pass credentials in plain text over the wire.
- Protect authentication cookies with Secure Sockets Layer (SSL)
It is possible to block obviously spoofed packets. This can be done by filtering incoming packets that appear to come from an internal IP address within your perimeter and outgoing packets that appear to originate from an invalid local IP address.
Done by Xiu Qi
No comments:
Post a Comment