CN102546654A - Security management system for server - Google Patents
Security management system for server Download PDFInfo
- Publication number
- CN102546654A CN102546654A CN2012100256254A CN201210025625A CN102546654A CN 102546654 A CN102546654 A CN 102546654A CN 2012100256254 A CN2012100256254 A CN 2012100256254A CN 201210025625 A CN201210025625 A CN 201210025625A CN 102546654 A CN102546654 A CN 102546654A
- Authority
- CN
- China
- Prior art keywords
- database
- server
- data
- backup
- management system
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Landscapes
- Information Retrieval, Db Structures And Fs Structures Therefor (AREA)
Abstract
The invention relates to a security management system for a server. The security management system is connected with the Internet and comprises an application server, at least one local area network (LAN) server and a firewall, wherein the LAN server can automatically update the application server in a timed manner so as to improve the defense capability against the latest viruses, and the application server comprises a database, a file management module, a database backup module and a database recovery module. With the adoption of the security management system for the server, the secure and automatic upgradation of an operating system of the server can be achieved, and the backup and the recovery of the database and the security management of files can be stably and rapidly achieved, so that the security management system for the server has better safety performance.
Description
Technical field
The present invention relates to a kind of server admin mechanism, particularly relate to a kind of server safety management system.
Background technology
Along with popularizing of computer application; Enterprise is increasing to the dependence of computer; Especially the data in the computer are very important to the normal operation of enterprise, and losing of data might cause enterprise to lose important chance and loss income. and successful enterprise requires can the accurate information of zero access.No longer is a kind of selection with comprehensive safe storage strategy as the part of enterprise's basic facilities, becomes inexorable trend.Guarantee system stability, safe operation; Ensure that the Computer Data Security storage of enterprise becomes the subject matter of corporate information technology. in general; Data information centralized stores in the enterprise is in an application server; It has comprised the information of each side such as customer data, the means of production and design research and development data, and amount of information is big and disposal ability is very strong.But; Application server often is in the intersection of external network and inner each server zone; Directly being put into if this application server does not add any safety prevention measure provides external service on the public network; Will be faced with the attack of " hacker " variety of way, level of security is extremely low. for the level of security that improves application server to guarantee its storage inside safety of data, two kinds of methods often using are: a kind of is between application server and wide area network, fire compartment wall to be installed; Another kind method is that database is backed up. when after between central server and the wide area network fire compartment wall being installed; The request of all-access server all will be passed through the detailed detection of firewall security rule; After having only the request of access server to meet the firewall security rule; Could pass through fire compartment wall and arrive the internal application server. therefore, the external world can only touch the special services on the fire compartment wall, thereby has resisted the attack of most extraneous unsafe factors to server.
But the safety that fire compartment wall can not assurance database safe against all possibilities is installed; Existing server admin commonly used can not upgraded operating system usually automatically; Cause the defence capability of most current virus very low, thereby can cause the database in the application server to be affected.General when being deployed with database in the network, to consider that also Database Backup is to accomplish the backup of all data.Data backup is the prevention disaster, the necessary means that guarantees data security.Along with increase day by day more and more stronger to the dependence of network application and the network data amount, enterprise is also improving constantly the requirement that data back up.Database often provides uninterrupted service; Database file is in the state of opening always; Simple file backup method is obviously inapplicable, thus need a kind ofly can realize online, nondestructive database protection, can be under the situation that does not hinder daily database activity; Increase the possibility of data repair, and loss of data is dropped to minimum level.
In view of above content, be necessary to provide a kind of server safety management system, it is the safe auto-update of feasible system both, but the carrying out safety backup of fulfillment database and recovery again.
Summary of the invention
The invention provides a kind of server safety management system, it both can realize the safety of server OS is upgraded automatically, can realize again the database in the information system is carried out carrying out safety backup and recovery and to the safety management of file.
The server safety management system that preferred embodiment of the present invention provides links to each other with Internet; Comprise an application server, at least one LAN server and a fire compartment wall; This LAN server is connected between application server and the fire compartment wall; Both can realize the automatic renewal of application server, can prevent the influence that application server possibly cause when fire compartment wall is invaded by unsafe factors such as viruses again.
Above-mentioned application server comprises a database, a document management module, a database backup module and a database recovery module. database is used to store several data; Document management module can be shared setting, Disk Quotas management and authority setting to file; The database backup module storage inside has the DB Backup program, move this DB Backup program can be regularly with the data backup in the database in a backup server; The database recovery inside modules stores the database automatic recovery program, move this database recovery program automatically restore data to the above-mentioned database.
Wherein, move described database automated back-up program timing the data backup in the database is comprised following step in backup server: open system; The time of judging the automatically backup data storehouse is to denying; If the time is less than then waiting for and repeat above-mentioned determining step; Time is up as if the automatically backup data storehouse, then in disc operating system (Disk Operating System, DOS) automatic runtime database automated back-up program on the platform; The backup database that generates is stored in the backup server.
Wherein, move the automatic restore data of described database automatic recovery program and comprise a following youngster step to the above-mentioned data preface: (a) open system; (b) receive the user and input the password login; (c) judges can be in authority accessing database; (d) if the user can not be in authority accessing database, then whether the judgment data storehouse occurs unusually; (e) occur unusually as if database, then log-on data storehouse automatic recovery program; (f) restore data is to database; (g) reading of data. in step (c), if the user can be in authority during accessing database, then, the disconnected data of .'J have or not loses; If data do not have and lose, direct reading of data; If data have and lose, log-on data storehouse recovery routine then, restore data to database, reading of data again.In step (d), when the user can not be in authority visit data, and judge it is not because database when occurring causing unusually, is checked then whether application server occurs unusually, and carried out handled.
Server safety management system provided by the present invention can either be realized the safe auto-update of system; But timing automatic backup database and restore database again in case of necessity; Realize stablizing fast data library backup and recovery, to prevent trouble before it happens, security performance is better.
Description of drawings
Fig. 1 is the hardware structure figure of server safety management system preferred embodiment of the present invention.
Fig. 2 is the functional block diagram of the application server of server safety management system preferred embodiment of the present invention.
Fig. 3 is the data flow figure of server safety management system preferred embodiment of the present invention.
Fig. 4 is the method flow diagram of automatically backup data in the data flow shown in Figure 3.
Fig. 5 is the method flow diagram of automatic restore data in the data flow shown in Figure 3.
Embodiment
Showing like Fig. 1, be the hardware structure figure of server safety management system preferred embodiment of the present invention. this system links to each other with Internet 4, comprises an application server 1, at least one LAN server 2 and a fire compartment wall 3.Connect application server 1 and fire compartment wall 3 through LAN server 2; Application server 1 its objective is in order directly to be connected with Internet 4 through fire compartment wall 3; But do connection by LAN server 2; And, cause application server 1 to be affected because in a single day fire compartment wall 3 is invaded by unsafe factors such as viruses to avoid through the LAN server 2 automatic application servers 1 that upgrade.In order to describe the present invention better, following preferred embodiments is that example describes with manufacturing enterprise's server safety management system.
As shown in Figure 2; Be the functional block diagram of application server in the server safety management system preferred embodiment of the present invention. this application server I comprises the data of having compiled all departments of enterprise in a database 20, a document management module 30, a database backup module 40 and a database recovery module 50. databases 20; It has comprised the information of each side such as customer data, the means of production and design research and development data. document management module 30 can be shared setting, Disk Quotas management and authority setting to file; It can be provided with different authorities to various users as required; For example can be provided with and control fully to give all keepers cura generalis authority to this Shared Folders to " keeper " user group; For being provided with, " customers " user reads authority; Make anonymous can download the file in this document folder, delete simultaneously original " arbitrary user " this, shield every other user right. store database automated back-up program in the database backup module 40; It can be according to the time interval timing that is provided with in advance in the system at disc operating system (DiskOperating System; DOS) move automatically on the platform, and the backup database that produces is stored in the backup server 60 shown in Figure 3, this backup server 60 is not in application server 1; It can be arranged in a magnetic tape station that links to each other with application server 1; Also can be installed among the device I of enterprise, it can be arranged in a magnetic tape station that links to each other with application server 1, also can be installed in any relatively safer server in the enterprises lan.Store the database automatic recovery program in the database recovery module 50, but start in this automatic recovery program restore data to database 20.
As shown in Figure 3, be the preferable data flow figure that executes instance of server safety management system of the present invention.All departments of enterprise data 10 deposits database 20 in behind sorting and file; Application server 1 is understood the time interval timing automatic runtime database automated back-up program on the DOS system platform according to set automatically backup data storehouse, inside then, and the backup database that produces is stored in the backup server 60.When the user can not be in authority accessing database; And database when occurring causing unusually or when the user can open its authority in but data that discovery is visited have when losing for database; Just can start in automatic recovery program restore data to the database 20. because of in LAN server 2, having set the automatically updating function of application server 1 in advance; LAN server 2 timing automatic are downloaded and the install software patch; And in the very first time, upgrading operating system, the patch system leak guarantees system safety.Therefore, database 20 is realized software security upgrading, patch, deep layer vulnerability scanning and reparation automatically on the server admin platform of safety.
As shown in Figure 4, be the method flow diagram in automatically backup data storehouse in the data flow shown in Figure 3. at first, open system (step S200); The time of judging the automatically backup data storehouse is to denying (step S201); If arriving, then do not wait for and repeating step S201 (step S202) time; Time is up as if the automatically backup data storehouse, then automatic runtime database automated back-up program (step S203) on the DOS system platform; The store backup data storehouse is (step S204) in backup server 60.
As shown in Figure 5, be the method flow diagram of automatic restore database in the data flow shown in Figure 3.At first, open system (step S 100); Receive the user and input password login (step S101); Judges can be in authority accessing database (step S102); If the user can not be in authority accessing database, then whether the judgment data storehouse (step S103) unusually occur; If then log-on data storehouse automatic recovery program (step S106) appears unusually in database; In restore data to the database 20 (step S107); User's reading of data (step S108). in step S102, if the user can be in authority accessing database, then judgment data has or not and loses (step S104) again; If data have and lose, then turn to step S 106; If having, data do not lose then directly reading of data. in step S103,, check then whether application server 1 occurs unusually, and carry out handled (step S105) if judge it is not that database occurs causing unusually the user can not be in authority during visit data.
Claims (4)
1. server safety management system; It links to each other with Internet; Comprise an application server, at least one LAN server and a fire compartment wall, this LAN server is connected between application server and the fire compartment wall, is used for timing automatic and upgrades application server; It is characterized in that said application server comprises:
One database is used to store several data;
One document management module is used for file is shared setting, Disk Quotas management and authority setting;
One database backup module, its storage inside have database automated back-up program, move this database automated back-up program can be regularly with the data backup in the database in a backup server;
One database recovery module, its storage inside has the database automatic recovery program, and moving this database automatic recovery program can return to the data in the backup server in the above-mentioned database automatically.
2. add right and require 1 described server safety management system, it is characterized in that, wherein move described database automated back-up program the data backup in the database is comprised following step in backup server:
Open system;
The time of judging the automatically backup data storehouse is to denying;
If the time is to then waiting for and repeat above-mentioned determining step;
Time is up as if the automatically backup data storehouse, then automatic runtime database automated back-up program on the disc operating system platform;
Store backup data is in backup server.
3. server safety management system as claimed in claim 1 is characterized in that, wherein moves described database automatic recovery program and automatically the data in the backup server is returned to and comprise following step in the above-mentioned database:
Open system;
Receive the user and input password;
Judges can be in authority accessing database;
If the user can not be in authority accessing database, then whether the judgment data storehouse occurs unusually;
If database occurs unusual, then log-on data storehouse automatic recovery program;
In restore data to the above-mentioned database;
Reading of data.
4. server safety management system as claimed in claim 3 is characterized in that, wherein moves described database automatic recovery program and automatically the data in the backup server is returned to and also comprise following step in the above-mentioned database:
If the user can be in authority accessing database, then judgment data has or not and loses;
If data have and lose, log-on data storehouse automatic recovery program then is in restore data to the above-mentioned database;
Reading of data.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2012100256254A CN102546654A (en) | 2012-02-07 | 2012-02-07 | Security management system for server |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2012100256254A CN102546654A (en) | 2012-02-07 | 2012-02-07 | Security management system for server |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN102546654A true CN102546654A (en) | 2012-07-04 |
Family
ID=46352612
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN2012100256254A Pending CN102546654A (en) | 2012-02-07 | 2012-02-07 | Security management system for server |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN102546654A (en) |
Cited By (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104767806A (en) * | 2015-03-31 | 2015-07-08 | 重庆大学 | Method, device and system for backup of cloud data central task |
| CN106227624A (en) * | 2016-08-29 | 2016-12-14 | 四川格锐乾图科技有限公司 | A kind of bitcom identification system of automatic storage and Backup Data |
| CN106326748A (en) * | 2016-08-29 | 2017-01-11 | 四川格锐乾图科技有限公司 | Software detection system capable of intelligently storing and preventing viruses |
| CN106339059A (en) * | 2016-08-29 | 2017-01-18 | 四川格锐乾图科技有限公司 | Application (APP) upgrade system capable of saving data during sudden power failure |
| CN106355067A (en) * | 2016-08-29 | 2017-01-25 | 四川格锐乾图科技有限公司 | Software-based leak-proof communication system effectively preventing data loss |
| CN107562579A (en) * | 2017-10-20 | 2018-01-09 | 郑州云海信息技术有限公司 | A kind of method and device of automatically backup data storehouse data |
| CN109408283A (en) * | 2018-09-04 | 2019-03-01 | 深圳市宝德计算机系统有限公司 | A kind of method of server data protection, equipment and storage medium |
| CN112380048A (en) * | 2020-10-09 | 2021-02-19 | 中国一冶集团有限公司 | Backup method and system for server data |
Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US7020697B1 (en) * | 1999-10-01 | 2006-03-28 | Accenture Llp | Architectures for netcentric computing systems |
| CN1889451A (en) * | 2005-07-02 | 2007-01-03 | 鸿富锦精密工业(深圳)有限公司 | Server safety management system |
-
2012
- 2012-02-07 CN CN2012100256254A patent/CN102546654A/en active Pending
Patent Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US7020697B1 (en) * | 1999-10-01 | 2006-03-28 | Accenture Llp | Architectures for netcentric computing systems |
| CN1889451A (en) * | 2005-07-02 | 2007-01-03 | 鸿富锦精密工业(深圳)有限公司 | Server safety management system |
Cited By (9)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104767806A (en) * | 2015-03-31 | 2015-07-08 | 重庆大学 | Method, device and system for backup of cloud data central task |
| CN104767806B (en) * | 2015-03-31 | 2018-09-25 | 重庆大学 | A kind of methods, devices and systems of cloud data center task backup |
| CN106227624A (en) * | 2016-08-29 | 2016-12-14 | 四川格锐乾图科技有限公司 | A kind of bitcom identification system of automatic storage and Backup Data |
| CN106326748A (en) * | 2016-08-29 | 2017-01-11 | 四川格锐乾图科技有限公司 | Software detection system capable of intelligently storing and preventing viruses |
| CN106339059A (en) * | 2016-08-29 | 2017-01-18 | 四川格锐乾图科技有限公司 | Application (APP) upgrade system capable of saving data during sudden power failure |
| CN106355067A (en) * | 2016-08-29 | 2017-01-25 | 四川格锐乾图科技有限公司 | Software-based leak-proof communication system effectively preventing data loss |
| CN107562579A (en) * | 2017-10-20 | 2018-01-09 | 郑州云海信息技术有限公司 | A kind of method and device of automatically backup data storehouse data |
| CN109408283A (en) * | 2018-09-04 | 2019-03-01 | 深圳市宝德计算机系统有限公司 | A kind of method of server data protection, equipment and storage medium |
| CN112380048A (en) * | 2020-10-09 | 2021-02-19 | 中国一冶集团有限公司 | Backup method and system for server data |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN102546654A (en) | Security management system for server | |
| CN101494651B (en) | Method for active backup of data | |
| US9602515B2 (en) | Enforcing alignment of approved changes and deployed changes in the software change life-cycle | |
| CN1773417B (en) | System and method of aggregating the knowledge base of antivirus software applications | |
| CN102902909B (en) | A kind of system and method preventing file to be tampered | |
| US7046995B2 (en) | Mobile application peer-to-peer security system and method | |
| CN101777062B (en) | Context-aware real-time computer-protection systems and methods | |
| CN103984891A (en) | Network security systems and methods | |
| US20070198610A1 (en) | System and method for backing up a database | |
| CN101894225A (en) | The system and method for assembling the knowledge base of antivirus software applications | |
| CN103853595A (en) | Method and system for REPLACING VIRTUAL MACHINE DISKS | |
| Bass et al. | Eliciting operations requirements for applications | |
| US9880757B1 (en) | Copy data management with data security | |
| CN1889451A (en) | Server safety management system | |
| EP3964990A1 (en) | Method and system for deciding on the need for an automated response to an incident | |
| US9176974B1 (en) | Low priority, multi-pass, server file discovery and management | |
| CN101968765A (en) | Software version detection method of large sized weaponry informatization system | |
| CN105978908A (en) | Non-real-time information website security protection method and apparatus | |
| CN114745203A (en) | Method and device for monitoring full life cycle of user account | |
| JP6658301B2 (en) | Application support program, application support device, and application support method | |
| CN112187787B (en) | Digital marketing advertisement page tamper-proof method, device and equipment based on knowledge graph | |
| US7269845B1 (en) | Mobile application security system and method | |
| Thejendra | Disaster Recovery and Business Continuity: A quick guide for small organisations and busy executives | |
| CN106934706A (en) | A kind of method and system of synchronous sales invoice | |
| CN114442947B (en) | Cross-domain bucket deleting method, system, terminal and storage medium |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C02 | Deemed withdrawal of patent application after publication (patent law 2001) | ||
| WD01 | Invention patent application deemed withdrawn after publication |
Application publication date: 20120704 |