User Web site is hacked, is your server secure? _ Extraterrestrial Virtual Host
Source: Internet
Author: User
The following articles are all rights reserved for extraterrestrial technology,
A small number of users as soon as the site was hacked, immediately considered to be caused by an extraterrestrial platform. This is a misconception.
Because if the customer's website code has problems, the platform outside the star can not be solved, who can not help this user. This is because hackers use the user's site vulnerabilities, using legitimate code to modify the user's Web page, causing the page to be inserted code, No one can prevent this. Because Trojans are too many varieties, many are legally operated. Just as you gave the key to someone else to open your own door is the same. For example, a hole in the network is a legitimate code intrusion, a situation that no one can prevent, but the platform is guaranteed to affect only a single Web site, does not affect the entire server.
Is your server secure? Please learn from the following:
First, if your server is set strictly according to the safety guidelines outside the satellite, we can ensure that your server is secure.
Second, you need to identify the following separately:
First, if all the sites on the server are added virus code, and this virus code can be found in the original file on the server, indicating that the security settings on your server are not set according to the requirements of the outside of the star, resulting in the original file on the server is rewritten, caused your user site to be hacked. You may need to reset the server security, in general, we recommend that users reinstall the system to completely prevent the hackers left behind the back door.
Second, if all the sites on the server have been added virus code, but the original file on the server did not find the virus code, you need to check the server in IIS global Web site filters have been added to the virus plug-ins? If you have a virus plugin, you have a problem with your server security settings. hacked into the server. If the original file did not find the virus code, IIS also did not find a virus plug-in, which is not related to your server, the reason is likely: Your server in the room of the virus caused by ARP, if this problem, you can only contact the computer room to find the source of the ARP virus, Isolate it before you can solve, you are unable to handle, you can only find room to solve.
Third, if there is a small number of servers or only one site has been added virus code, or be hacked, it is possible that your user's site has its own vulnerabilities. This problem is not the responsibility of the host, but also with the platform outside the star has no connection. Because, each virtual host user has FSO permission, That is, if your user has been uploaded by the ASP program, then the hacker use the legitimate FSO permissions to the user's website to do whatever the file can do. For example, some unsafe hole network forum, is uploaded can carry out the ASP program, can delete light This website user's own content. Therefore, this is not related to the security of the extraterrestrial platform, nor is it a problem for the host business. However, we can be sure, if your server is in the satellite Platform for security protection settings, even if the user was uploaded ASP content, the hacker can only operate on their own space, but not the other user's space, more control of the host server.
So you don't have to worry about server security.
In this case: the host can not replace their own users to design the program, you may do is: only in the virtual host management, the use of extraterrestrial platform to lock the upload function, or the use of the platform does not perform permissions functions, Will improve the security of user space. At the same time, you can use first-class information monitoring and interception system software to solve the common problem of ASP Trojans.
The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion;
products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the
content of the page makes you feel confusing, please write us an email, we will handle the problem
within 5 days after receiving your email.
If you find any instances of plagiarism from the community, please send an email to:
info-contact@alibabacloud.com
and provide relevant evidence. A staff member will contact you within 5 working days.