Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
E
E
Evgeny Zhurov2018-02-01 13:17:22
Backup
Evgeny Zhurov, 2018-02-01 13:17:22

Is it worth making a site mirror for the following purposes?

Good afternoon, there is a site that was hacked and everything on it was deleted. Restored from a backup, which took some time. The authorities want to make a mirror of the site and redirect to it if the main site is unavailable/broken/empty for some reason. How reasonable is such a decision? The fact is that the site is updated almost every day, and accordingly, you will have to manually update this mirror as well. Hypothetically, you can make the mirror automatically update from backups of the main site, but then there is a risk that at some point a backup with a broken site will be created and uploaded to the mirror, as a result, both sites will still not work. That is why, it seems to me, updating the mirror is only possible manually. And since it involves the human factor, then this is a bad idea, because. may, for example, forget to update this spare site. And over time, completely forget about it, because. Affairs usually and so on throat.
The site is flooded with advertising in Yandex and Google, about 1000 visitors a day, and it is extremely important that the site works stably. It seems to me that there are some other ways to ensure its safety and reliability, and I will once again share, at least in general terms, which way to look and what steps to take to secure the site?

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

1 answer(s)
Report
M
Mikhail Yesenin, 2019-01-17
@mirzok

The solution is not entirely reasonable, because both the main site and the mirror can potentially be hacked. Firstly, it would be good to figure out how the site was hacked, what is the reason and what can be learned from it.
If the problem is in web security due to self-written code: do an audit, fix holes, scan (acunetix/metascan/detectify). Install WAF if there are no resources to fix it.
If they penetrated through something else (for example, forgotten ports on a VPS), then close them from everyone using a CDN. As a last resort, move to another hosting.
And if you raise a copy, then it is so that the redirect to it occurs imperceptibly for the user, through the balancer. For example, this scheme:
Cloudflare -> Balancer -> Site 1, Site 2
At the same time, it is better not to store anything sensitive on the balancer, including access to sites and backups. It is better to do them on a separate server.

Similar questions
D
Drawn2020-11-11 05:29:49
How long does it take to backup Windows server 2016 files? 1Reply
M
maniac_by2019-02-08 11:21:24
How to copy files via console to different directories? 1Reply
Z
ZaraMc2016-09-15 15:38:53
How to change the password on the server for backups to another server? 1Reply
T
Toster2342019-02-15 09:47:25
How to implement backup of certain folders with deletion of old archives? 2Reply
A
anatoly_arapov2014-09-11 14:53:20
How to organize backup from web hosting to cloud storage for Linux without GUI? 1Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question