CN104579735A - Router security management method - Google Patents
Router security management method Download PDFInfo
- Publication number
- CN104579735A CN104579735A CN201310520494.1A CN201310520494A CN104579735A CN 104579735 A CN104579735 A CN 104579735A CN 201310520494 A CN201310520494 A CN 201310520494A CN 104579735 A CN104579735 A CN 104579735A
- Authority
- CN
- China
- Prior art keywords
- router
- account
- web page
- user
- state variable
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Landscapes
- Data Exchanges In Wide-Area Networks (AREA)
- Small-Scale Networks (AREA)
Abstract
The invention provides a router security management method. The method comprises the steps that legal IP addresses, accounts and passwords are preset in an internal memory of a router; only by adopting the legal IP address and the current account and passwords can a router management web page be accessed for operation; in addition, in order to prevent multi-position login, the invention further configures a use state variable for each account; when the current account is used and the use state variable value is true, login is limited; when the current account is not used and the use state variable value is false, login is permitted. When a user login a router manage web page, if the router does not receive any operation data from the router management web page for more than 2 to 5 minutes, logout of the current account is limited, the router management web page automatically returns a user login authentication page again. The method is provided with multiple authentication, prevents illegal operation on the router, and protects network security.
Description
Technical field
The present invention relates to network communications industry, particularly relate to a kind of method for managing security of router.
Background technology
At present, a lot of unsafe factor of existence of the way to manage of router administration web page, such as: disabled user enters and carries out illegal operation; User forgets and exits, and non-user carries out illegal operation; Input code error, landing time time-out etc.
Summary of the invention
The technical problem that the present invention need solve is to provide a kind of prevention illegal operation, the Router Security management method of protecting network safety.
For solving above-mentioned technical problem, the present invention devises a kind of Router Security management method, and it comprises the following steps: step1: at the pre-configured legal connection IP address of the built-in storage of router and account and password; For each account configures a using state variable, if current account in use, the value of using state variable is true, if when current account does not use, the value of using state variable is false; Step2: when user's request access connection route management web page, router parses request access connects, and whether the IP address of authentication of users is legal connection IP address, if, the current request access connection of user is passed through, and enters the user login validation page; If not, then back page, prompting illegal request connects; Step3: when user enters user login validation page input account and password, router intercepts account and password, verify whether the account that is truncated to and password are account pre-configured in built-in storage and password, if so, then verify the value of using state variable of current account; If not, then back page, prompting account or code error information; Step4: when the value of the using state variable of the current account of checking is true, then back page, point out the information that current account has used; When the value of the using state variable of the current account of checking is false, then allow user to enter router administration web page and carry out associative operation.
Improve further as the present invention, be also configured with Safe withdrawing module at router administration web page, preserve for the current all new configuration datas router administration web page.
Improve further as the present invention, in step3, while prompting account or code error information, also record the number of times of account and password authentification, if number of times is more than three times, then back page, limits in a time period and access and point out input error 3 times, the information tried again after a time.
Improve further as the present invention, when user enters after router administration web page carries out associative operation, if router exceedes a period of time (t), do not receive any operating data of router administration web page, then limit user account to exit, automatically return to the user login validation page.Described t is 2-5 minute, section at this moment, if router does not receive any operating data of router administration web page, then user account exits, thus prevents non-user illegal operation.
The present invention logins before router administration web page operates user, arranges multiple-authentication process, prevents illegal operation, protecting network safety.
Accompanying drawing explanation
Fig. 1 is the flow chart of embodiment of the present invention Router Security management method.
Embodiment
Technical scheme of the present invention is understood better in order to make relevant technical staff in the field, below in conjunction with the accompanying drawing of embodiment of the present invention, technical scheme in embodiment of the present invention is clearly and completely described, obviously, described execution mode is only the present invention's part execution mode, instead of whole execution modes.
The invention provides a kind of Router Security management method, arrange multiple-authentication, it comprises IP address validation, account and password authentification, and login-timeout is verified, many places login authentication, thus prevents routers from carrying out illegal operation, protecting network safety.
To IP address, and the checking of account and password, need at the pre-configured legal connection IP address of the built-in storage of router and account and password.Only have legal IP address and correct account and password, just can login router administration web page; Further, for preventing many places from logging in, the present invention also configures a using state variable for each account, if current account in use, the value of using state variable is true, and restriction is logined; If when current account does not use, the value of using state variable is false, allows to login.After user has logined router administration web page, if router exceedes a period of time t, do not receive any operating data of router administration web page, then limit current account and exit, automatically return to the user login validation page.Like this, make, in order to after preventing from user from forgetting exiting or leaving, to prevent non-user illegal operation.The scope of t of the present invention is 2-5 minute.In the present embodiment, t is 2 minutes.
As shown in Figure 1, when user's request access connection route management web page, the request access that first router resolves this user connects, whether the IP address of authentication of users is legal connection IP address, if so, the current request access connection of user is passed through, and enters the user login validation page; If not, then back page, prompting illegal request connects.Described legal connection IP address is kept in the built-in storage of router.
When IP address validation passes through, user enters the user login validation page, input account and password, router intercepts account and password, verify whether the account that is truncated to and password are account pre-configured in built-in storage and password, if so, then verify the value of using state variable of current account; If not, then back page prompting account or code error information, meanwhile, also records the number of times of account and password authentification, if number of times is more than three times, then back page, limit a time period interiorly accesses and point out input error 3 times, the information tried again after a time.
When account and password are correct, then the value of using state variable when the current account of checking, when the value of using state variable is true, then back page, point out the information that current account has used; When the value of using state variable is false, then allow user to enter router administration web page and carry out associative operation.
Associative operation is carried out as user has entered router administration web page, login-timeout, namely in 2 minutes, router does not receive any operating data of router administration web page, then user account exits, and router administration web page automatically returns to the user login validation page again.Like this, after user forgets and exits or leave, non-user illegal operation can be prevented.
After the related configuration data of user's routers managing web page has reconfigured, do not preserve to prevent from omitting wherein partial data and directly exit, cause the Missing data reconfigured, or data are matching error etc. situation not, the present invention is also configured with Safe withdrawing module at router administration web page, Safe withdrawing module is used for current all new configuration datas of router administration web page to preserve, when user has a mind to exit, select Safe withdrawing module, namely account exits router administration web page.
Below only have expressed one embodiment of the present invention, it describes comparatively concrete and detailed, but therefore can not be interpreted as the restriction to the scope of the claims of the present invention.It should be pointed out that for the person of ordinary skill of the art, without departing from the inventive concept of the premise, can also make some distortion and improvement, these all belong to protection scope of the present invention.Therefore, the protection range of patent of the present invention should be as the criterion with claims.
Claims (5)
1. a Router Security management method, is characterized in that, comprises the following steps:
Step1: at the pre-configured legal connection IP address of the built-in storage of router and account and password; For each account configures a using state variable, if current account in use, the value of using state variable is true, if when current account does not use, the value of using state variable is false;
Step2: when user's request access connection route management web page, router parses request access connects, and whether the IP address of authentication of users is legal connection IP address, if, the current request access connection of user is passed through, and enters the user login validation page; If not, then back page, prompting illegal request connects;
Step3: when user enters user login validation page input account and password, router intercepts account and password, verify whether the account that is truncated to and password are account pre-configured in built-in storage and password, if so, then verify the value of using state variable of current account; If not, then back page, prompting account or code error information;
Step4: when the value of the using state variable of the current account of checking is true, then back page, point out the information that current account has used; When the value of the using state variable of the current account of checking is false, then allow user to enter router administration web page and carry out associative operation.
2. Router Security management method according to claim 1, is characterized in that: be also configured with Safe withdrawing module at router administration web page, preserves for the current all new configuration datas router administration web page.
3. Router Security management method according to claim 1, it is characterized in that: in step3, while prompting account or code error information, also record the number of times of account and password authentification, if number of times is more than three times, then back page, limits in a time period and accesses and point out input error 3 times, the information tried again after a time.
4. Router Security management method according to claim 1, it is characterized in that: when user enters after router administration web page carries out associative operation, if router exceedes a period of time (t), do not receive any operating data of router administration web page, then limit user account to exit, automatically return to the user login validation page.
5. Router Security management method according to claim 4, is characterized in that: a period of time (t) is 2-5 minute.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310520494.1A CN104579735B (en) | 2013-10-29 | 2013-10-29 | router security management method |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310520494.1A CN104579735B (en) | 2013-10-29 | 2013-10-29 | router security management method |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN104579735A true CN104579735A (en) | 2015-04-29 |
| CN104579735B CN104579735B (en) | 2018-06-05 |
Family
ID=53095004
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201310520494.1A Active CN104579735B (en) | 2013-10-29 | 2013-10-29 | router security management method |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN104579735B (en) |
Cited By (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105357122A (en) * | 2015-11-30 | 2016-02-24 | 上海斐讯数据通信技术有限公司 | Router management method, device and router |
| CN106330866A (en) * | 2016-08-12 | 2017-01-11 | 浪潮(北京)电子信息产业有限公司 | Centralized router authentication system and method |
| CN107276802A (en) * | 2017-06-15 | 2017-10-20 | 郑州云海信息技术有限公司 | A kind of initiated configuration method of storage system, apparatus and system |
| CN107395571A (en) * | 2017-06-28 | 2017-11-24 | 上海斐讯数据通信技术有限公司 | A kind of router login management method and system based on MAC Address |
| CN111314322A (en) * | 2020-01-21 | 2020-06-19 | 南方电网能源发展研究院有限责任公司 | Account encryption method and account authentication method |
Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1780206A (en) * | 2004-11-23 | 2006-05-31 | 华为技术有限公司 | Internet identity authentication and system |
| CN101079903A (en) * | 2007-06-21 | 2007-11-28 | 中国工商银行股份有限公司 | Method and system based on remote login of user terminal |
| CN102611597A (en) * | 2012-04-10 | 2012-07-25 | 中山爱科数字家庭产业孵化基地有限公司 | Method for accessing internet through broadband in free of inputting account and password in different family environments |
| CN102685135A (en) * | 2012-05-17 | 2012-09-19 | 江苏中科梦兰电子科技有限公司 | Software authority verification method based on C/S (Client/Server) framework |
| CN102801717A (en) * | 2012-08-03 | 2012-11-28 | 苏州迈科网络安全技术股份有限公司 | Login verifying method and system |
| CN102984149A (en) * | 2012-11-23 | 2013-03-20 | 广东欧珀移动通信有限公司 | Method and device for synchronous login of mobile terminal and a personal computer (PC) terminal |
| CN103036883A (en) * | 2012-12-14 | 2013-04-10 | 公安部第一研究所 | Secure communication method and system of secure server |
-
2013
- 2013-10-29 CN CN201310520494.1A patent/CN104579735B/en active Active
Patent Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1780206A (en) * | 2004-11-23 | 2006-05-31 | 华为技术有限公司 | Internet identity authentication and system |
| CN101079903A (en) * | 2007-06-21 | 2007-11-28 | 中国工商银行股份有限公司 | Method and system based on remote login of user terminal |
| CN102611597A (en) * | 2012-04-10 | 2012-07-25 | 中山爱科数字家庭产业孵化基地有限公司 | Method for accessing internet through broadband in free of inputting account and password in different family environments |
| CN102685135A (en) * | 2012-05-17 | 2012-09-19 | 江苏中科梦兰电子科技有限公司 | Software authority verification method based on C/S (Client/Server) framework |
| CN102801717A (en) * | 2012-08-03 | 2012-11-28 | 苏州迈科网络安全技术股份有限公司 | Login verifying method and system |
| CN102984149A (en) * | 2012-11-23 | 2013-03-20 | 广东欧珀移动通信有限公司 | Method and device for synchronous login of mobile terminal and a personal computer (PC) terminal |
| CN103036883A (en) * | 2012-12-14 | 2013-04-10 | 公安部第一研究所 | Secure communication method and system of secure server |
Cited By (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105357122A (en) * | 2015-11-30 | 2016-02-24 | 上海斐讯数据通信技术有限公司 | Router management method, device and router |
| CN105357122B (en) * | 2015-11-30 | 2018-09-28 | 上海斐讯数据通信技术有限公司 | A kind of router administration method, apparatus and a kind of router |
| CN106330866A (en) * | 2016-08-12 | 2017-01-11 | 浪潮(北京)电子信息产业有限公司 | Centralized router authentication system and method |
| CN107276802A (en) * | 2017-06-15 | 2017-10-20 | 郑州云海信息技术有限公司 | A kind of initiated configuration method of storage system, apparatus and system |
| CN107395571A (en) * | 2017-06-28 | 2017-11-24 | 上海斐讯数据通信技术有限公司 | A kind of router login management method and system based on MAC Address |
| CN111314322A (en) * | 2020-01-21 | 2020-06-19 | 南方电网能源发展研究院有限责任公司 | Account encryption method and account authentication method |
Also Published As
| Publication number | Publication date |
|---|---|
| CN104579735B (en) | 2018-06-05 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN107209659B (en) | Mobile authentication in mobile virtual networks | |
| US9467475B2 (en) | Secure mobile framework | |
| US8839354B2 (en) | Mobile enterprise server and client device interaction | |
| US8516604B2 (en) | Method and apparatus for managing a user | |
| US9256723B2 (en) | Security key using multi-OTP, security service apparatus, security system | |
| CN104935572B (en) | Multi-layer right management method and device | |
| JP2017510013A (en) | Techniques for providing network security with just-in-time provisioned accounts | |
| CN104579735A (en) | Router security management method | |
| CN102571873B (en) | Bidirectional security audit method and device in distributed system | |
| CN104185181A (en) | WiFi user access control method based on iptables | |
| CN101986598B (en) | Authentication method, server and system | |
| CN108881218B (en) | Data security enhancement method and system based on cloud storage management platform | |
| US20140122716A1 (en) | Virtual private network access control | |
| CN104469736B (en) | A kind of data processing method, server and terminal | |
| CN106506491B (en) | Network safety system | |
| US10104060B2 (en) | Authenticating applications to a network service | |
| US20150373030A1 (en) | Mobile Device Storage Volume Encryption with Geography Correlated Key Management and Mount Operations | |
| CN110598388A (en) | Method for controlling login access of authority system | |
| US9473936B2 (en) | Method and device for protecting privacy information | |
| Suraj et al. | A robust security model for cloud computing applications | |
| US11184354B2 (en) | Network-based authorization for disconnected devices | |
| KR101133210B1 (en) | Mobile Authentication System and Central Control System | |
| EP2947593B1 (en) | Security apparatus session sharing | |
| CN105451225A (en) | An access authentication method and an access authentication device | |
| CN103716366A (en) | Cloud computing server access system and access method |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| EXSB | Decision made by sipo to initiate substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant | ||
| TR01 | Transfer of patent right | ||
| TR01 | Transfer of patent right |
Effective date of registration: 20201119 Address after: 221700 4-1-110-shop, Nanyuan new town, Fengxian County, Xuzhou City, Jiangsu Province Patentee after: Song Yixiao Address before: 201616 Shanghai city Songjiang District Guangfulin Road No. 4855 Building No. 90 big industry territory Patentee before: Phicomm (Shanghai) Co.,Ltd. |