Security_Checklist_6_-_Site_Recovery

Security Checklist 6 - 网站恢复

网站恢复

寻找正确的求助方法

If you believe your Web site was attacked, do not create yet another oh-so-boring post in the Joomla! forums with the title, "Help! I've been hacked." This tells us nothing of importance. The vast majority of compromised sites were not setup correctly or were using obsolete versions of Joomla! or third-party extensions. This is what you need to investigate.

If you discover a real vulnerability, publishing the information could put other Web sites at risk. Instead, report possible security vulnerabilities to the Joomla! Security Task Force.

执行合理且严格的恢复过程

Know the important steps to follow when your site has been compromised. Once you've gotten to this point, there are few shortcuts. (FAQ)

重新设置管理员密码

Many attackers take pleasure in locking you out of your site. They do this by 'changing the key', or changing your administrator password. If you are locked out, don't panic! There is a simple procedure for resetting your administrator password. (FAQ)

使用 *NIX shell寻找网站漏洞

Know how to check for suspicious and/or modified files. Know how to check the raw Apache logs for suspicious activity on your site. (FAQ)

Your Turn...

If you discover a bug in Joomla! core files, report it here.

Choose A Checklist

1. Getting Started
2. Hosting and Server Setup
3. Testing and Development
4. Joomla Setup
5. Site Administration
6. Site Recovery