单客户的静态文件CDN部署规划

应一个客户的需求
做个规划 将于近期开始协助部署
单客户的静态文件CDN部署规划

服务器需求 最低2+
Master主控 数据源
Node+N 访问节点

主控部署
Linux NGINX FTP MYSQL
被控部署+N
Linux NGINX FTP

考虑DNS稳定性 一般建议使用DNSPOD
如果客户未决定 投入2+高稳定与安全的硬件设备作为DNS专用服务器
不推荐自建 否则因DNS稳定性以及安全性,可能会影响主机软件的品牌服务质量与口碑

技术规划
1. 主控作为数据源 需保证高稳定性
建议客户使用我们的新加坡数据中心作为主源 备用使用我们美国洛杉矶数据中心
主要用于客户使用FTP 上传数据 比如图片 CSS JS等文件
考虑扩容以及后续的升级成本
FTP软件使用MYSQL存储数据 包括用户名以及访问日志等等记录 便于管理
使用FTP同步解决文件权限和安全隐患等问题
虽然sync也可以 但是考虑客户后续维护与管理成本 还是建议使用FTP方式
为保证安全性 主控不提供外部WEB访问

2. 被控端
考虑扩容 被控端使用集群方式管理
即主控端输入IP 信息 自动采集SSHKEY
自动部署 同步安装软件 自动安装 自动编译
部署完成后 获得KEY 主控端输入 即被控添加完成
当主控端有文件更新时 自动同步至所有被控的数据源节点
增加脚本客户可手工推送 cronjob定时建议是每5分钟检查同步

考虑客户后续如果升级为动态CDN 反向代理等的成本 多用户等等
采用FTP方式会好些

技术方面会涉及很多 只能慢慢调优和做好压力测试

相关:

  • stonefru

WHMCS 官方网站 被黑

WHMCS 官方网站 被黑

刚收到的通知 现在时间是北京时间 5月22号 早上4点30分
他们自己联合托管的公司在排查
4小时才恢复

目前仍然无法访问客户中心
截至早上5点
访问官方客户中心 会跳转到SSL 并且无法访问

已知的问题
===================================
官方网站和文件全部被清除
WHMCS官方数据库被访问过 也可能被下载了
信用卡购买的信息可能被泄露 我估计应该是100%泄露了 一般只有冲这个去的才会这么干
最近17个小时内的订购信息 全部丢失
最近17个小时的工单和技术支持请求 全部丢失

建议
1. 马上更改WHMCS官方的密码信息
2. 如果有请求官方的技术支持 并且提交过FTP等信息 包含密码的 立马更改

官方公告
http://forum.whmcs.com/showthread.php?p=223398#post223398
WHMCS Site Downtime
As many of you will have noticed by now, we have today become the unfortunate victims of a severe and malicious hack.

We are currently working to restore normal operations as quickly as possible and will post updates here as they become available here.

Initial indications are that the database of our ticketing system may have been compromised, and thus we would recommend that if you have recently sent us a ticket containing your WHMCS or FTP login details, and have not yet changed them again following that, that you do so as soon as possible. As soon as we know more about what happened we’ll provide updates.

In terms of licensing, providing you have a valid local license key then at this time you should not be experiencing any interuptions in service. If you are doing a new installation or moving your license and thus require a license refresh, these will not be available until the site is back online. Or alternatively if your local key was not valid prior to this downtime, then you may also be experiencing issues validating currently, and once back online do get in touch with us so any local key issues with your installation can be resolved.

We would like to offer our sincere apologies for any inconvenience caused. We ask you to stick with us – now more than ever – in a challenging time. We promise to get everything back to normal soon.

UPDATE 18:09 The license checking server is now back online and providing valid license responses. So if you were experiencing licensing errors before, these should now be resolved. Our website and ticket desk should be back online within the next 30-60 minutes.

UPDATE 19:20 The main site is now being restored. Those with invalid local keys may experience intermittent license validation issues again.

UPDATE 19:55 The main site and ticket system are now back online.

UPDATE 20:50 Now our systems have been restored, a status update has been posted here: http://forum.whmcs.com/showthread.php?t=47650. Any further notifications will also be made there.

http://forum.whmcs.com/showthread.php?t=47650
Dear All,

It may be a little early for this post since at this time, our web hosting provider are still investigating and looking into exactly what happened, and why, and are yet to report back to us. But here is what we know at this point in time.

A little over 4 hours ago our main server was compromised. This server hosts our main website and WHMCS installation.

What we know for sure

1. Our server was compromised by a malicious user that proceeded to delete all files
2. We have lost new orders placed within the previous 17 hours
3. We have lost any tickets or replies submitted within the previous 17 hours

What may be at risk

1. The database appears to have been accessed
2. WHMCS.com client area passwords are stored in a hash format (as with all WHMCS installations by default) and so are safe
3. Credit card information although encrypted in the database may be at risk
4. Any support ticket content may be at risk – so if you’ve recently submitted any login details in tickets to us, and have not yet changed them again following resolution of the ticket, we recommend changing them now.

At this time there is still no evidence to suggest that this compromise actually originated through the WHMCS software itself. This was not merely a WHMCS system access, and since we do not provide hosting ourselves, our WHMCS is not hooked up in any way to our server.

We would like to offer our sincere apologies for any inconvenience caused. We appreciate your support, now more than ever in this challenging time.

Once again, we strongly urge all users to cycle all their passwords, not just for WHMCS, but for any associated services that may have been provided to us at any point in time.

As soon as we know more, we will post further updates.

相关:

  • новости челябинск мир 74
  • angle7nd
  • LTRE
  • whmcs 工单无法打开

WHMCS 5.1 Beta版本的语言包翻译完毕

WHMCS 5.1 Beta版本的语言包翻译完毕

每次正式版本的语言包还是会少量修改的
这次翻译只是解决下次正式发布的速度
暂时不提供下载

这次更新基本没什么意思
需要的功能没 最近2个版本都是修改后台
意思不是特别大

不过话说回来,这个系统基本都具备了
功能都差不多了
其他的系统如果不是特别需要的话
基本都没必要

下一步意思好像是增加代理功能和处理流程

相关:

  • WHMCS5 1 2

联合WHMCS官方 推出WHMCS正版验证服务

联合WHMCS官方 推出WHMCS正版验证服务

不管是不是我们这边购买的
均可以查询出是否为正版软件

直接获取官方API数据,免输验证码
http://www.idcsoft.net/public/verify/WHMCS_License/

如果正版 会显示 授权状态为正常
如果不是 则会显示 您可能是盗版软件的受害者

不放心的 可以直接官方查询 对比数据
http://www.whmcs.com/members/verifydomain.php

如果显示 This domain is authorized to be using WHMCS. 代表正版
如果显示 This domain is not authorized to be using WHMCS.
Please report the url to the installation to us here
代表为盗版

相关:

  • This domain is not authorized to be using WHMCS
  • WHMCS商业版
  • whmcs正版验证
  • DWO1
  • dollveu
  • young7mc
  • blewz54
  • baseedd
  • balancedl3
  • alikej5o

Posts navigation

1 2 3 20 21 22 23 24 25 26 31 32 33
Scroll to top