The following articles are copyrighted by Star Ai Technology.
A small number of users immediately think that the website is caused by an extra-star platform when they encounter a hacker. This is a misunderstanding.
Because if there is a problem with the customer's website code, the foreign platform cannot solve it, and no one can help the user. This is because hackers use vulnerabilities in the user's website and use legal code to modify the user's web page, causing the web page to be inserted into the code. No one can prevent this situation. Because there are too many * variants, many of them are legally operated. Just as it is the same for you to give the key to others to open your own door. For example, the vulnerability of Dongwang uses legal code intrusion, which is impossible for anyone to prevent, but the platform can guarantee that it only affects a single website and does not affect the entire server.
Is your server safe? Please learn from the following aspects:
First of all, if your server is strictly set up according to the security guidelines from outside the star, we can ensure that your server is safe and has no problems.
Secondly, you need to identify the following situations separately:
First, if all websites on the server have added virus codes, and this virus code can be found in the original files on the server, indicating that the security settings on your server are not set according to the requirements of the outside world, resulting in the original files on the server being rewritten and your user website being invaded. You may need to reset the security of the server. Generally speaking, we recommend that users reinstall the system to completely prevent the backdoor left by hackers.
Second, if all websites on the server have added virus codes, but no virus code is found in the original file on the server, you need to check on the server whether there are virus plug-ins added in the global website filter in IIS? If there is a virus plug-in, it means that there is a problem with your server's security settings and the server has been hacked. If the original file does not find the virus code and no virus plug-in is found in IIS, then this problem has nothing to do with your server. The reason is most likely: the computer room where your server is located is caused by ARP and other viruses. If this is the problem, you can only contact the computer room to find the source of the ARP virus and can only solve it after isolating it. You cannot handle it yourself, so you can only find the computer room to solve it.
Third, if there are a few or only one website on the server with virus code or hacked, then it is very likely that your user's website has a vulnerability. This problem is not the responsibility of the hosting provider, and it has no contact with foreign platforms. Because, every virtual host user has FSO permissions, that is, if your user has been uploaded by someone, then the hacker can do whatever he wants to do to any file on the user's website using the legal FSO permissions. For example, some unsafe Dongwang forums have been uploaded to execute ASP programs, and the content of the website users can be deleted. Therefore, this has nothing to do with the security of the extra-star platform and is not a problem for the hosting provider. However, we can be sure that if your server is set under the security protection measures of the foreign-star platform, even if the user is uploaded ASP content, the hacker can only operate on his own space, and cannot operate the space of other users, nor can he control the server of the host provider.
Therefore, you don’t have to worry about the security of the server.
In this case: the hosting provider cannot design programs on behalf of its own users. What you can do is: only in virtual host management, use the off-site platform to lock the upload function, or use the platform's non-executing permission function, which will improve the security of the user space. At the same time, you can also use first-class information monitoring and interception system software to solve common ASP * problems.
A small number of users immediately think that the website is caused by an extra-star platform when they encounter a hacker. This is a misunderstanding.
Because if there is a problem with the customer's website code, the foreign platform cannot solve it, and no one can help the user. This is because hackers use vulnerabilities in the user's website and use legal code to modify the user's web page, causing the web page to be inserted into the code. No one can prevent this situation. Because there are too many * variants, many of them are legally operated. Just as it is the same for you to give the key to others to open your own door. For example, the vulnerability of Dongwang uses legal code intrusion, which is impossible for anyone to prevent, but the platform can guarantee that it only affects a single website and does not affect the entire server.
Is your server safe? Please learn from the following aspects:
First of all, if your server is strictly set up according to the security guidelines from outside the star, we can ensure that your server is safe and has no problems.
Secondly, you need to identify the following situations separately:
First, if all websites on the server have added virus codes, and this virus code can be found in the original files on the server, indicating that the security settings on your server are not set according to the requirements of the outside world, resulting in the original files on the server being rewritten and your user website being invaded. You may need to reset the security of the server. Generally speaking, we recommend that users reinstall the system to completely prevent the backdoor left by hackers.
Second, if all websites on the server have added virus codes, but no virus code is found in the original file on the server, you need to check on the server whether there are virus plug-ins added in the global website filter in IIS? If there is a virus plug-in, it means that there is a problem with your server's security settings and the server has been hacked. If the original file does not find the virus code and no virus plug-in is found in IIS, then this problem has nothing to do with your server. The reason is most likely: the computer room where your server is located is caused by ARP and other viruses. If this is the problem, you can only contact the computer room to find the source of the ARP virus and can only solve it after isolating it. You cannot handle it yourself, so you can only find the computer room to solve it.
Third, if there are a few or only one website on the server with virus code or hacked, then it is very likely that your user's website has a vulnerability. This problem is not the responsibility of the hosting provider, and it has no contact with foreign platforms. Because, every virtual host user has FSO permissions, that is, if your user has been uploaded by someone, then the hacker can do whatever he wants to do to any file on the user's website using the legal FSO permissions. For example, some unsafe Dongwang forums have been uploaded to execute ASP programs, and the content of the website users can be deleted. Therefore, this has nothing to do with the security of the extra-star platform and is not a problem for the hosting provider. However, we can be sure that if your server is set under the security protection measures of the foreign-star platform, even if the user is uploaded ASP content, the hacker can only operate on his own space, and cannot operate the space of other users, nor can he control the server of the host provider.
Therefore, you don’t have to worry about the security of the server.
In this case: the hosting provider cannot design programs on behalf of its own users. What you can do is: only in virtual host management, use the off-site platform to lock the upload function, or use the platform's non-executing permission function, which will improve the security of the user space. At the same time, you can also use first-class information monitoring and interception system software to solve common ASP * problems.