Shulou(Shulou.com)06/02 Report--

This article shows you how to solve the virtual host attack, the content is concise and easy to understand, it can definitely brighten your eyes. I hope you can get something through the detailed introduction of this article.

Once the virtual host is attacked, the first thing is to ensure the security of the server data, and it is the safest way to shut down the server temporarily.

Both leased servers, cloud hosts and virtual hosts are at risk of being attacked by hackers. When a host is attacked by a hacker, the website will certainly be affected. A quick solution can reduce losses, but the most important thing is to start from the source and take preventive measures in advance, which can fundamentally reduce the chance of being attacked by hackers. So how should we deal with the hacker attack on the virtual host? What are the reasons for the attack? How can we prevent it?

1. When the operation and maintenance personnel find that the virtual host is attacked, they should immediately shut down all website services for no less than 3 hours.

Because many e-commerce enterprises or some enterprises that mainly get business through online channels, they are afraid of the loss caused by shutting down the website. But if the site is not closed, once it is completely invaded by the virus, the loss will be more than just a few hours of shutdown. If you are worried about the impact of shutting down the site on the user experience, and want to minimize the loss, you can specify a page, make relevant tips, and then jump to this page as a whole.

2. Download the server log and conduct a comprehensive investigation of the virtual host file.

Check to see if the server log has been deleted, and if not, download the server log immediately and troubleshoot it. Although this process takes a long time, we must ensure that the virtual host is not installed by the hacker, and analyze the system log to see which website the hacker uses (usually there are loopholes in the website that is linked to the horse). Which loophole intruded into the server. Find and identify the source of the attack, and save the URL of the hacker and the screenshot of the tampered black page, as well as the personal IP or agent IP address that the hacker may leave.

3. Install the latest system patch.

Download and install the latest system patches for the virtual host system and management software, which are generally the most vulnerable targets. For example, the use of WordPress system to build a website, although the construction site is very convenient, but also easy to be attacked, to update the version of the system in time to ensure the security of the website.

4. Reconfigure permissions.

Whether it is file management rights, or user rights, are reconfigured to include password information.

5. Install security software if necessary

If the cost allows, you can consider installing security software to protect the server security in real time.

6. Contact the cloud service provider

In fact, this point should be put in the first place, here to the sixth, in the hope that the webmaster friends can first simply deal with server attacks, so as to reduce the losses caused by server attacks. Because it always takes some time to contact a cloud service provider, we can do something to reduce the risk of data loss while contacting.

In addition to these responses, what else can we do in advance to prevent virtual hosts from being attacked?

First: after installing the operating system, it is necessary to update some loopholes in the operating system to prevent hackers from having holes to find out.

Second: after installing the system and updating, the permissions of C disk and all data disks should be set. Generally, the server requires NTFS format, so the permission setting can effectively prevent file upload.

Third: use common software to monitor each disk of the server to prevent hackers from writing files in the corresponding format.

Fourth: use security software to prevent hackers from injecting through SQL.

Fifth: check your website to prevent all unsafe factors, and find that uploaded Trojans should be isolated and deleted immediately.

Sixth: FTP and remote password should be set longer, not easy to crack, conditional can be changed in the remote port and FTP port, FTP can be turned off on the server when not in use. (for CVM and other hosts, remote ports)

Seventh: do not install unsafe software casually, let alone install files that have nothing to do with the server. Here, we should pay special attention to the website using WordPress system, need to use a lot of plug-ins, we must pay attention to the security of plug-ins.

The above content is how to solve the virtual host attack, have you learned the knowledge or skills? If you want to learn more skills or enrich your knowledge reserve, you are welcome to follow the industry information channel.

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.