Dns domain name hijacking prevention and resolution

　　How to do after the domain name was hijacked?
　　By iis7 website monitoring, enter your domain name, you can immediately see your site is not being hijacked, and query results in real time, and can better optimize our site using the query results.
　　1, immediately modify mailbox password and domain name service provider, using the high complexity of passwords and frequent replacement;
　　2, deleting does not belong to your DNS resolution, restore the DNS settings;
　　3, pan closed domain name resolution, enter the domain name management background you can click on our domain find domain names with an asterisk resolution, delete it;
　　4, if you use a third-party DNS service, you should immediately amend the third-party DNS server account password locked account information, account open class mail message reminders;
　　5, to see whether the site as a whole code has been tampered with. This is after resolving domain name hijacking issue to your site to conduct a comprehensive investigation in order to achieve the perfect garbage page, ensure the safety of the site;
　　6, collecting all been illegally added 404 pages and settings, use Baidu platform Webmaster Tools to submit dead links. Because of those sites is our garbage dead links page, so we put these broken links are resolved. We report on the content of the website is to write malicious *** on it in the page;
　　7, if the service provider under the domain name hijacking occurs frequently, consider replacing a more secure and stable service providers. The site has the ability to be self-built DNS service independent operation.
　　How to prevent domain hijacking?
　　1, set up a complex password for domain name registrars and registries using the email and changed frequently. Use a separate DNS services, but also need the password these settings. Taking care not to use the same user name and password in a number of important registration;
　　2, the domain name is set to update the lock state is not allowed to modify the record by the DNS service's website, after you use this method, you need to go through to do domain name resolution service provider done, poor aging;
　　3, regularly check your account information domain name, the domain name whois information, see the event manager, cleaning up suspicious files Web outlets exist. Website site every day to check whether there is expected outside the page. Detailed examination of the site indexes and foreign chain information, abnormal sure to check clear;
　　4, to strengthen anti-SQL site of injection functions, SQL injection is a feature of the use of SQL statements to write content to the database, so as to acquire methods authority;
　　5, configure the Web site folder permissions and file operations. Windows network Caozuoxitong, use the super administrator privileges to the Web site files and folders permissions configuration, the majority is set to read permission, write permission be used with caution, if you can not get super administrator privileges, such programs *** can not take root, domain hijacked possible will be able to reduce a lot;
　　6, use transaction signatures for zone transfers and regional digital signature updates;
　　7, remove unnecessary services running on the DNS server, such as the FTP;
　　8, at the network perimeter and DNS server the use of firewall services. Restrict access to those ports / DNS services required functions.