Results 1 to 10 of 10
  1. #1

    Malware and customers

    I'm curious about best practices that ISP and hosting providers follow to getting rid of malwares and spam-spewing scripts on customers servers and accounts.
    You follow a policy to prevent and fight issues like this or rely just on abuse reports?

  2. #2
    Join Date
    May 2002
    For accounts (shared hosting or VPS) you could check files by antivirus or malware finder. For servers it is more complex as usually you have not direct access to customer servers but you could use many third party services to detect and isolate suspicious clients before receiving huge amount of abuses. Usually such services scan your ip's to find suspicious files etc.
    Rustelekom LLC Dedicated server since 2002, RIPE NCC member, LIR, AS51168

  3. #3
    Join Date
    Nov 2010

  4. #4
    Join Date
    Oct 2009
    There is also Linux Malware Detect
    HostXNow - cPanel Web Hosting | Since 2009
    Fast, Secure & Reliable Managed Pure SSD Hosting
    Helpful and friendly 24x7 Support via Chat & Helpdesk
    Reseller Hosting | VPS Hosting | Backup Hosting

  5. #5
    Yes I know about this tools and we currently use this for protect our customers.Question is : according to some reports made by StopBadware many providers host customers that are heavily infected and no one shut down this accounts.Abuse reports are ignored?And what about prevention?
    Thanks for answers.

  6. #6
    Join Date
    Apr 2002
    Ideally something would be done to better educate end-users about the consequences of using scripts.

    I have seen where customers order a webhosting account, install Joomla!, set it up for their needs, and they think they are done. Any script, any component or extension or plugin, has to be kept up to date. Installing a CMS or any script, is not the end, it is the beginning in terms of account security.

    I do give props to Wordpress for recognizing this, and making it very easy for users to keep their Wordpress scripts up to date.

  7. #7
    Hello SPaReK,
    you're right, a good update policy is a great way to ensure website security.

  8. #8
    Join Date
    May 2008
    I'd use a combination of the aforementioned ClamAV and Linux Malware Detect malware scanners. While they won't be able to detect each and every piece of malware that a user uploads or that ends up on the server as a result of a successful file injection, in many cases they will, and these tools can help you identify accounts that are abused or have been compromised.
    CoderJosh | Web Application Developer and Linux Server Admin
    █ Web & Mobile App Coding | Troubleshooting | Tuning | Hardening | SysAdmin Services

  9. #9
    Join Date
    Feb 2010


    Some hosting companies actually provide daily malware monitoring, alert their clients the moment malware is uploaded or intalled and help their clients resolve the situation free of charge, before the situation gets out of control.

  10. #10
    @CoderJosh in fact Clamav help to discover many malicious php scripts and shellbot.Maldetect lack,generally speaking is too slow.

Similar Threads

  1. Malware Warning
    By 0senjed0 in forum Hosting Security and Technology
    Replies: 6
    Last Post: 08-21-2009, 11:10 AM
  2. Malware link on a site
    By martymart in forum Web Hosting Lounge
    Replies: 10
    Last Post: 05-04-2007, 02:43 PM
  3. Google Malware...
    By Sanma in forum Web Hosting Lounge
    Replies: 0
    Last Post: 05-04-2007, 01:05 PM
  4. So much malware
    By MikeWalczak in forum Computers and Peripherals
    Replies: 9
    Last Post: 10-16-2006, 07:54 PM
  5. trace malware
    By NoAgendas in forum Hosting Security and Technology
    Replies: 2
    Last Post: 08-02-2006, 12:21 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts