[Cross-post]网站被黑 [英] [Cross-post] website got hacked

问题描述

亲爱的所有人，

我有一个专用服务器，用于发布在asp.net中开发的项目.

有人从服务器删除所有源代码.我无法在IIS日志或FTP日志中找到它们的任何信息.

任何人都可以帮助我，我该如何发现谁在做这个地狱.
我对这样的活动感到非常失望.

谢谢
Rohit

解决方案

好，所以现在您已经在2个论坛和这里都提出了这个问题.

请不要在多个论坛上发表相同的问题.这被认为是不礼貌的.您需要坚持一个论坛.
其他帖子:
ASP.NET论坛 [第二次ASP.NET论坛 [网络开发论坛 [ 解决方案

Okay, so now you''ve asked this in 2 forums as well as here. That is a big no-no!

Please don''t post the same question at multiple forums. It''s considered rude. You need to stick to one forum.
Other posts:
ASP.NET Forum[^]
ASP.NET Forum 2nd Time[^]
Web Development Forum[^]

Hi,

There are a few ways it can happen.

SQL injection holes if SQL is on the same box and user is SA.
If debug action is enabled in IIS in can open up holes for code injection.
Weak security policies on the box
Rouge anti-virus software

My suggestion would be to get a security specialist to perform regular scans.

We have to maintain a PCIDSS compliant site and use McAfee to do weekly scans. At £200-300 per year it''s a bargain.

http://www.mcafeesecure.com/

这篇关于[Cross-post]网站被黑的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！