|
|
刚才邮箱收到2封英文邮件,好像是我的主机除了什么问题,英文不好,用翻译软件看了一下,也没看太明白,请高人指点。
Dear Sir/Madam,
Regarding your server vtx.co.in:
It has come to our attention that your dedicated server has become compromised.
Although PROFtpd has been updated since the compromise, it appears that the server was running a vulnerable version of PROFtpd which the attacker used to obtain root access on November 10, 2010. Tracks covering code has been run since that time.
On November 16 and November 22, 2010, the attacker uploaded malicious files which were observed running malicious processes on November 23, 2010. Our investigation revealed that an attack scanning tool was actively scanning external IP addresses.
At this time, we have removed the malicious content, but can no longer guarantee the integrity of the server. We require that you perform a full server re-provision within 48 hours. A re-provision will erase all data on the server, so we urge you to make any backups prior to re-provisioning.
You can re-provision your server using the Dedicated Hosting Manager.
1. Log in to your Account Manager.
2. In the My Products section, select Dedicated/Virtual Dedicated Servers.
3. Click Launch Manager next to the dedicated or virtual dedicated server you want to upgrade. The Dedicated Hosting Manager opens.
4. In the Account Summary section, click Re-provision Server. The Re-provision Server page opens.
5. If you choose to, enter a new hostname and username. These values are defaulted to the current hostname and username for this account.
6. Enter and confirm a new password and then click Submit.
You will receive a confirmation notice once you server is re-provisioned and ready to go.
NOTE:Typically, your server will be ready in less than five hours. However, if you have a RAID card or hardware firewall, it may take up to 24 hours before your server is ready.
After reprovisioning, you will need to:
limit types of files that can be uploaded, (i.e. not .htaccess, .exe, .asp, .php etc.) and verify the file types
scan for viruses with current anti-virus software
limit access to trusted users, and to authenticate FTP & web users using strong password practices
install the current secure versions of software in use
Also, during our investigation it was noted that the server seems to be under constant SSH, FTP & Plesk attacks. You should consider runnning a tool that scans log files and bans IP's that issue too many inaccurate passwords responses (e.g. Fail2ban, see http:fail2ban.org).
第二封:
Discussion Notes
Support Staff Response
Dear Sir/Madam,
Regarding your hosting account 94feizhuliu.com:
It has come to our attention that your 94feizhuliu.com hosting account currently has an improper directory structure. More specifically, the following directories have greater than 1,024 files:
141832, xihaonline/html/tao/Apicache/taobao.item.get
4252, xihaonline/html/tao/Apicache/taobao.itemcats.get
98503, xihaonline/html/tao/Apicache/taobao.shop.get
31884, xihaonline/html/tao/Apicache/taobao.taobaoke.items.convert
150153, xihaonline/html/tao/Apicache/taobao.taobaoke.items.get
109660, xihaonline/html/tao/Apicache/taobao.taobaoke.shops.convert
56707, xihaonline/html/tao/Apicache/taobao.user.get
183521, xihaonline/html/tao/Apicache/taobao.users.get
The amount of files in this directory is causing an issue with backing up your account, as well as maintenance operations on the shared server. Each directory should have a maximum of 1,024 files. Any more than this can cause file system latency and slowness when accessing FTP and hosting from the Web.
We respectfully request that by December 7, 2010 you reduce your directories to have no more than 1024 files.
If this is not completed by then, we will have to bring the directories into compliance on your behalf. Additionally, we ask that any scripts that automatically create these files be optimized to not create more than this amount. Please note, further excessive directory structures could be subject to an account suspension.
高手帮忙看下,多谢! |
|
GoDaddy
1352 人阅读
|
3 人回复
狗仔卡
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
显身卡
