Shulou(Shulou.com)06/01 Report--

Why are your access behavior and private data suddenly "stolen"? Why did you lose the domain name correctly, but ended up on a phishing website? What if security incidents such as user data leakage, traffic hijacking, page tampering and so on occur frequently? This is because your domain name has been hijacked, which causes the site to jump. So what should be done after the domain name is robbed? how can we prevent the domain name from being robbed?

First learn to check the problem, in the operation of IIS7 website monitoring can be found in advance whether the site has been hijacked, once found the first time, to remedy it is much more convenient.

How to prevent domain name hijacking?

1. Set complex passwords for domain name registrars and registration mailboxes and change them frequently. Using a separate DNS service, you also need to set the password as described above. At the same time, be careful not to use the same user name and password in multiple important registrations.

2. Check the domain name account information and domain name whois information regularly, check the event manager, and clean up the suspicious files in the Web network. Every day the site website checks to see if there are any unexpected pages. Detailed inspection of the website index and chain information must be checked clearly if there are any anomalies.

3. Configure Web site folder and file operation permissions. In Windows network operating system, Super Admin permission is used to configure permissions for Web site files and folders. Most of them are set to read permission, and write permission is carefully used. If Super Admin permission cannot be obtained, the * program cannot take root, and the possibility of website domain name hijacking can be greatly reduced.

4. Set the domain name update to the locked status, and it is not allowed to modify the record through the website of the DNS service provider. After using this method, the domain name resolution needs to be done through the service provider, which is not timely.

5. Delete unnecessary services running on the DNS server, such as FTP.

6. Strengthen the anti-SQL injection function of the website. SQL injection is a method to write content to the database by making use of the characteristics of SQL statements, so as to obtain permissions.

7. Use transaction signature to digitally sign regional transmission and regional update.

8. Use firewall services on the periphery of the network and on DNS servers. Restrict access to those ports / services that are required for DNS functionality.

The domain name is an important URL of a corporate website. if the domain name is robbed, your website will also be affected to a certain extent, which may affect the normal experience of the user, and the user will be led to a fake website and then unable to browse the web properly. After the domain name of the website with a large number of users is hijacked, the bad influence will continue to expand, and users may be lured to fake websites to log in and other operations leading to the disclosure of private data. Therefore, we must do a good job in domain name robbery measures, so as not to take remedial measures after domain name robbery, which is time-consuming and laborious.

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.