Below Article All rights reserved for exclusive technologies,
When a small number of users encounter website hacking, they immediately think it is caused by an off-star platform. This is a misunderstanding.
Because if it is a customer's websiteCodeIf there is a problem, the off-star platform cannot be solved, and no one can help this user. this is because hackers exploit the vulnerability of a user's website and use valid code to modify the user's webpage. This causes the webpage to be inserted with code, which cannot be prevented by anyone. because there are too many Trojan variants, many of them use legal operations. just as you give the key to someone else to open your own door. for example, the vulnerabilities in the cave network use legitimate code intrusion, which cannot be prevented by anyone. However, the platform can ensure that only a single website is affected and the entire server is not affected.
Is your server secure? Please learn from the following:
First, if your server is strictly set according to the out-of-the-stars security guidelines, we can ensure that your server is safe.
Second, you must identify the following situations separately:
First, if virus code is added to all websites on the server, and the virus code can be found in the original file on the server, it indicates that the security settings on your server are not set according to the requirements of the outside world, resulting in the modification of the original file on the server, resulting in the intrusion of your user website. you may need to reset the server security. In general, we recommend that you reinstall the system to completely prevent the backdoor left by hackers.
Second, if virus code is added to all websites on the server, but no virus code is found in the original file on the server, check whether the global website filter in IIS has been added with a virus plug-in on the server? If there is a virus plug-in, it indicates that your server security settings are incorrect and hackers intrude into the server. if no virus code is found in the original file and no virus plug-in is found in IIS, the problem is irrelevant to your server, probably because: ARP and other viruses are in the IDC where your server is located. If this problem occurs, you can only contact the IDC to find out the source of the ARP virus and isolate it to solve the problem. You cannot handle it yourself, you can only find the data center.
Third, if a few or only one website is infected with virus code or hacked on the server, it is very likely that your website has its own vulnerability. this issue is not the responsibility of the host provider, and it has no connection with the platform outside the stars. because each VM user has the FSO permission, that is, if your user is uploaded to ASPProgramThe hacker uses the valid FSO permission to do anything on any file on the user's website. For example, in some insecure tunnel forums, ASP programs that can be executed can be uploaded to delete the content of users on this website. therefore, this is not related to the security of the off-star platform, nor is it a problem of the host service provider. However, we can be certain that if your server is set under the security protection measures of the off-star platform, even if this user is uploaded with ASP content ,, this hacker can only operate on his own space, but cannot operate on the space of other users, and cannot control the server of the host provider.
Therefore, you do not need to worry about server security.
In this case, it is impossible for the host provider to design a program instead of its own users. What you can do is: you can only use the off-star platform to lock the upload function in the VM management, or you can use the platform's function of not executing permissions to improve the security of your space. at the same time, you can also use the first-class information monitoring interception system software to solve common ASP Trojan problems.