|
| WD-20 Protection From Hacking |
| Iniciado por guest, 18,oct. 2016 14:26 - 4 respuestas |
| |
| | | |
|
| |
| Publicado el 18,octubre 2016 - 14:26 |
Hi All,
Currently one of my customer Server is hacked and all files are encrypted. How can we protect our windev application and database from hacking. Is there any solution for this??
Please post your suggestions
Thank You
$$P |
| |
| |
| | | |
|
| | |
| |
| Publicado el 18,octubre 2016 - 14:50 |
SSP
Besides the obvious suggestion regarding proper AV security etc. there is another option which is to change the extension of the database files e.g. instead of FIC, NDX, MMO you could use another variation like FIC2, NDX2, and MMO2 for example. The ransomware program would not recognize those file extensions and would leave them alone. |
| |
| |
| | | |
|
| | |
| |
| Publicado el 18,octubre 2016 - 20:30 |
Hi.
Well, a very secure scenario example is:
1 - The data files are accesed via HFSQL C/S in a dedicated server. The Classic mode is more insecure since all users have direct read/write access to them. So if one workstation get infected, it could encrypt the data files.
2 - The only person who can logon to the server with and administrator group account. Also no one knows the password.
3 - The only opened port of the server is the ones of HFSQL.
In this scenario, i would not install any AV, nor would enable the automatic updates. Since all ports are closed, there is no way that a virus could do anything.
If you can't trust users, then protect bios with a password so no one can boot from a pendrive or live cd.
If you trust user, and some ones need to do things on the server you can create a normal account for them. Within normal user group, which of course will not have write access to the data files).
Regards,
José Antonio. |
| |
| |
| | | |
|
| | |
| |
| Publicado el 18,octubre 2016 - 21:26 |
How about to hide the directory + fic/ndx/mmo?
I guess the best to line up hfSqlServer in Linux as a server only thus no desktop user
to logon server but with client thru native hf/odbc thus enhance a better security indeed.
HTH
King |
| |
| |
| | | |
|
| | |
| |
| Publicado el 19,octubre 2016 - 00:44 |
From my live experience on ransomware,
don't trust AV. by the time AV recognize the ransomware, a new version already installed in your machine. format the infected machine.
don't be surprise if top 10 AVs unable to detect the ransomware |
| |
| |
| | | |
|
| | | | |
| | |
|