{"id":40096,"date":"2026-03-12T16:00:34","date_gmt":"2026-03-12T09:00:34","guid":{"rendered":"https:\/\/interdata.vn\/blog\/?p=40096"},"modified":"2026-03-14T09:06:51","modified_gmt":"2026-03-14T02:06:51","slug":"bao-mat-hosting-cpanel","status":"publish","type":"post","link":"https:\/\/interdata.vn\/blog\/bao-mat-hosting-cpanel\/","title":{"rendered":"B\u1ea3o M\u1eadt Hosting cPanel: Checklist To\u00e0n Di\u1ec7n Cho Qu\u1ea3n Tr\u1ecb Vi\u00ean"},"content":{"rendered":"<div id=\"ez-toc-container\" class=\"ez-toc-v2_0_85 counter-hierarchy ez-toc-counter ez-toc-white ez-toc-container-direction\">\n<div class=\"ez-toc-title-container\">\n<p class=\"ez-toc-title\" style=\"cursor:inherit\">N\u1ed8I DUNG<\/p>\n<span class=\"ez-toc-title-toggle\"><a href=\"#\" class=\"ez-toc-pull-right ez-toc-btn ez-toc-btn-xs ez-toc-btn-default ez-toc-toggle\" aria-label=\"Toggle Table of Content\"><span class=\"ez-toc-js-icon-con\"><span class=\"\"><span class=\"eztoc-hide\" style=\"display:none;\">Toggle<\/span><span class=\"ez-toc-icon-toggle-span\"><svg style=\"fill: #999;color:#999\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" class=\"list-377408\" width=\"20px\" height=\"20px\" viewBox=\"0 0 24 24\" fill=\"none\"><path d=\"M6 6H4v2h2V6zm14 0H8v2h12V6zM4 11h2v2H4v-2zm16 0H8v2h12v-2zM4 16h2v2H4v-2zm16 0H8v2h12v-2z\" fill=\"currentColor\"><\/path><\/svg><svg style=\"fill: #999;color:#999\" class=\"arrow-unsorted-368013\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"10px\" height=\"10px\" viewBox=\"0 0 24 24\" version=\"1.2\" baseProfile=\"tiny\"><path d=\"M18.2 9.3l-6.2-6.3-6.2 6.3c-.2.2-.3.4-.3.7s.1.5.3.7c.2.2.4.3.7.3h11c.3 0 .5-.1.7-.3.2-.2.3-.5.3-.7s-.1-.5-.3-.7zM5.8 14.7l6.2 6.3 6.2-6.3c.2-.2.3-.5.3-.7s-.1-.5-.3-.7c-.2-.2-.4-.3-.7-.3h-11c-.3 0-.5.1-.7.3-.2.2-.3.5-.3.7s.1.5.3.7z\"\/><\/svg><\/span><\/span><\/span><\/a><\/span><\/div>\n<nav><ul class='ez-toc-list ez-toc-list-level-1 eztoc-toggle-hide-by-default' ><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-1\" href=\"https:\/\/interdata.vn\/blog\/bao-mat-hosting-cpanel\/#Tai-sao-Hosting-cPanel-la-muc-tieu-tan-cong-pho-bien\" >T\u1ea1i sao Hosting cPanel l\u00e0 m\u1ee5c ti\u00eau t\u1ea5n c\u00f4ng ph\u1ed5 bi\u1ebfn?<\/a><ul class='ez-toc-list-level-3' ><li class='ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-2\" href=\"https:\/\/interdata.vn\/blog\/bao-mat-hosting-cpanel\/#Shared-Hosting-co-rui-ro-gi-khac-so-voi-VPS\" >Shared Hosting c\u00f3 r\u1ee7i ro g\u00ec kh\u00e1c so v\u1edbi VPS?<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-3\" href=\"https:\/\/interdata.vn\/blog\/bao-mat-hosting-cpanel\/#Ai-thuong-bi-nham-muc-tieu-nhat\" >Ai th\u01b0\u1eddng b\u1ecb nh\u1eafm m\u1ee5c ti\u00eau nh\u1ea5t?<\/a><\/li><\/ul><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-4\" href=\"https:\/\/interdata.vn\/blog\/bao-mat-hosting-cpanel\/#Cac-moi-de-doa-thuong-gap-tren-Hosting-cPanel\" >C\u00e1c m\u1ed1i \u0111e d\u1ecda th\u01b0\u1eddng g\u1eb7p tr\u00ean Hosting cPanel<\/a><ul class='ez-toc-list-level-3' ><li class='ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-5\" href=\"https:\/\/interdata.vn\/blog\/bao-mat-hosting-cpanel\/#Brute-Force-dang-nhap-cPanel\" >Brute-Force \u0111\u0103ng nh\u1eadp cPanel<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-6\" href=\"https:\/\/interdata.vn\/blog\/bao-mat-hosting-cpanel\/#Ma-doc-va-Backdoor-trong-File-Website\" >M\u00e3 \u0111\u1ed9c v\u00e0 Backdoor trong File Website<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-7\" href=\"https:\/\/interdata.vn\/blog\/bao-mat-hosting-cpanel\/#Tan-cong-qua-Email-Hosting\" >T\u1ea5n c\u00f4ng qua Email Hosting<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-8\" href=\"https:\/\/interdata.vn\/blog\/bao-mat-hosting-cpanel\/#Khai-thac-lo-hong-CMS-va-Plugin\" >Khai th\u00e1c l\u1ed7 h\u1ed5ng CMS v\u00e0 Plugin<\/a><\/li><\/ul><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-9\" href=\"https:\/\/interdata.vn\/blog\/bao-mat-hosting-cpanel\/#Cong-cu-bao-mat-tich-hop-tren-Hosting-cPanel\" >C\u00f4ng c\u1ee5 b\u1ea3o m\u1eadt t\u00edch h\u1ee3p tr\u00ean Hosting cPanel<\/a><ul class='ez-toc-list-level-3' ><li class='ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-10\" href=\"https:\/\/interdata.vn\/blog\/bao-mat-hosting-cpanel\/#Imunify360\" >Imunify360<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-11\" href=\"https:\/\/interdata.vn\/blog\/bao-mat-hosting-cpanel\/#SSLTLS-Status-va-AutoSSL\" >SSL\/TLS Status v\u00e0 AutoSSL<\/a><\/li><\/ul><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-12\" href=\"https:\/\/interdata.vn\/blog\/bao-mat-hosting-cpanel\/#Sao-luu-du-lieu\" >Sao l\u01b0u d\u1eef li\u1ec7u<\/a><ul class='ez-toc-list-level-3' ><li class='ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-13\" href=\"https:\/\/interdata.vn\/blog\/bao-mat-hosting-cpanel\/#Phuc-hoi-sau-su-co-bao-mat\" >Ph\u1ee5c h\u1ed3i sau s\u1ef1 c\u1ed1 b\u1ea3o m\u1eadt<\/a><\/li><\/ul><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-14\" href=\"https:\/\/interdata.vn\/blog\/bao-mat-hosting-cpanel\/#Checklist-bao-mat-Hosting-cPanel-dinh-ky\" >Checklist b\u1ea3o m\u1eadt Hosting cPanel \u0111\u1ecbnh k\u1ef3<\/a><ul class='ez-toc-list-level-3' ><li class='ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-15\" href=\"https:\/\/interdata.vn\/blog\/bao-mat-hosting-cpanel\/#CHECKLIST-hang-tuan\" >CHECKLIST h\u00e0ng tu\u1ea7n<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-16\" href=\"https:\/\/interdata.vn\/blog\/bao-mat-hosting-cpanel\/#CHECKLIST-hang-thang\" >CHECKLIST h\u00e0ng th\u00e1ng<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-17\" href=\"https:\/\/interdata.vn\/blog\/bao-mat-hosting-cpanel\/#CHECKLIST-hang-quy\" >CHECKLIST h\u00e0ng qu\u00fd<\/a><\/li><\/ul><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-18\" href=\"https:\/\/interdata.vn\/blog\/bao-mat-hosting-cpanel\/#Cac-cach-bao-mat-hosting-cPanel-hieu-qua-hien-nay\" >C\u00e1c c\u00e1ch b\u1ea3o m\u1eadt hosting cPanel hi\u1ec7u qu\u1ea3 hi\u1ec7n nay<\/a><ul class='ez-toc-list-level-3' ><li class='ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-19\" href=\"https:\/\/interdata.vn\/blog\/bao-mat-hosting-cpanel\/#1-Doi-mat-khau-manh-va-bat-xac-thuc-hai-buoc\" >1. \u0110\u1ed5i m\u1eadt kh\u1ea9u m\u1ea1nh v\u00e0 b\u1eadt x\u00e1c th\u1ef1c hai b\u01b0\u1edbc<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-20\" href=\"https:\/\/interdata.vn\/blog\/bao-mat-hosting-cpanel\/#2-Gioi-han-dia-chi-IP-duoc-phep-dang-nhap-cPanel\" >2. Gi\u1edbi h\u1ea1n \u0111\u1ecba ch\u1ec9 IP \u0111\u01b0\u1ee3c ph\u00e9p \u0111\u0103ng nh\u1eadp cPanel<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-21\" href=\"https:\/\/interdata.vn\/blog\/bao-mat-hosting-cpanel\/#3-Bao-mat-ket-noi-va-giao-thuc-SSL-FTP\" >3. B\u1ea3o m\u1eadt k\u1ebft n\u1ed1i v\u00e0 giao th\u1ee9c (SSL &amp; FTP)<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-22\" href=\"https:\/\/interdata.vn\/blog\/bao-mat-hosting-cpanel\/#5-Phan-quyen-tep-va-thu-muc-dung-chuan\" >5. Ph\u00e2n quy\u1ec1n t\u1ec7p v\u00e0 th\u01b0 m\u1ee5c \u0111\u00fang chu\u1ea9n<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-23\" href=\"https:\/\/interdata.vn\/blog\/bao-mat-hosting-cpanel\/#6-Tat-cac-module-PHP-va-chuc-nang-nguy-hiem\" >6. T\u1eaft c\u00e1c module PHP v\u00e0 ch\u1ee9c n\u0103ng nguy hi\u1ec3m<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-24\" href=\"https:\/\/interdata.vn\/blog\/bao-mat-hosting-cpanel\/#7-Bat-tuong-lua-va-ModSecurity\" >7. B\u1eadt t\u01b0\u1eddng l\u1eeda v\u00e0 ModSecurity<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-25\" href=\"https:\/\/interdata.vn\/blog\/bao-mat-hosting-cpanel\/#8-Bao-ve-thu-muc-quan-tri-bang-mat-khau-Directory-Privacy\" >8. B\u1ea3o v\u1ec7 th\u01b0 m\u1ee5c qu\u1ea3n tr\u1ecb b\u1eb1ng m\u1eadt kh\u1ea9u (Directory Privacy)<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-26\" href=\"https:\/\/interdata.vn\/blog\/bao-mat-hosting-cpanel\/#9-Thiet-lap-hotlink-protection-va-Leech-Protection\" >9. Thi\u1ebft l\u1eadp hotlink protection v\u00e0 Leech Protection<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-27\" href=\"https:\/\/interdata.vn\/blog\/bao-mat-hosting-cpanel\/#10-Vo-hieu-hoa-trinh-soan-thao-file-trong-WordPress-qua-cPanel\" >10. V\u00f4 hi\u1ec7u h\u00f3a tr\u00ecnh so\u1ea1n th\u1ea3o file trong WordPress qua cPanel<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-28\" href=\"https:\/\/interdata.vn\/blog\/bao-mat-hosting-cpanel\/#11-Theo-doi-log-truy-cap-va-bat-canh-bao-bat-thuong\" >11. Theo d\u00f5i log truy c\u1eadp v\u00e0 b\u1eadt c\u1ea3nh b\u00e1o b\u1ea5t th\u01b0\u1eddng<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-29\" href=\"https:\/\/interdata.vn\/blog\/bao-mat-hosting-cpanel\/#12-Sao-luu-du-lieu-dinh-ky-va-kiem-tra-khoi-phuc\" >12. Sao l\u01b0u d\u1eef li\u1ec7u \u0111\u1ecbnh k\u1ef3 v\u00e0 ki\u1ec3m tra kh\u00f4i ph\u1ee5c<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-30\" href=\"https:\/\/interdata.vn\/blog\/bao-mat-hosting-cpanel\/#13-Cap-nhat-phan-mem-va-xoa-ung-dung-khong-dung\" >13. C\u1eadp nh\u1eadt ph\u1ea7n m\u1ec1m v\u00e0 x\u00f3a \u1ee9ng d\u1ee5ng kh\u00f4ng d\u00f9ng<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-31\" href=\"https:\/\/interdata.vn\/blog\/bao-mat-hosting-cpanel\/#14-Cau-hinh-email-authentication-SPF-DKIM-va-DMARC\" >14. C\u1ea5u h\u00ecnh email authentication: SPF, DKIM v\u00e0 DMARC<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-32\" href=\"https:\/\/interdata.vn\/blog\/bao-mat-hosting-cpanel\/#15-Gioi-han-quyen-truy-cap-cho-tung-tai-khoan-con\" >15. Gi\u1edbi h\u1ea1n quy\u1ec1n truy c\u1eadp cho t\u1eebng t\u00e0i kho\u1ea3n con<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-33\" href=\"https:\/\/interdata.vn\/blog\/bao-mat-hosting-cpanel\/#16-Scan-malware-dinh-ky-voi-cong-cu-tich-hop\" >16. Scan malware \u0111\u1ecbnh k\u1ef3 v\u1edbi c\u00f4ng c\u1ee5 t\u00edch h\u1ee3p<\/a><\/li><\/ul><\/li><\/ul><\/nav><\/div>\n<div class=\"summary\">\n<p><strong>T\u1ed4NG QUAN NHANH<\/strong><\/p>\n<p><strong>B\u1ea3o m\u1eadt hosting cPanel<\/strong> l\u00e0 t\u1eadp h\u1ee3p c\u00e1c bi\u1ec7n ph\u00e1p k\u1ef9 thu\u1eadt \u0111\u01b0\u1ee3c c\u1ea5u h\u00ecnh trong m\u00f4i tr\u01b0\u1eddng cPanel\/WHM nh\u1eb1m ng\u0103n ch\u1eb7n truy c\u1eadp tr\u00e1i ph\u00e9p, m\u00e3 \u0111\u1ed9c, t\u1ea5n c\u00f4ng brute-force v\u00e0 r\u00f2 r\u1ec9 d\u1eef li\u1ec7u website. B\u00e0i vi\u1ebft n\u00e0y cung c\u1ea5p checklist k\u1ef9 thu\u1eadt th\u1ef1c chi\u1ebfn \u2014 \u00e1p d\u1ee5ng \u0111\u01b0\u1ee3c ngay t\u1eeb giao di\u1ec7n cPanel l\u1eabn c\u1ea5p qu\u1ea3n tr\u1ecb WHM.<\/p>\n<p><strong>N\u1ed9i dung ch\u00ednh b\u00e0i vi\u1ebft:<\/strong><\/p>\n<ul>\n<li>T\u1ea1i sao hosting cPanel tr\u1edf th\u00e0nh m\u1ee5c ti\u00eau t\u1ea5n c\u00f4ng ph\u1ed5 bi\u1ebfn v\u00e0 \u0111\u1eb7c th\u00f9 r\u1ee7i ro c\u1ee7a shared hosting<\/li>\n<li>Ph\u00e2n lo\u1ea1i c\u00e1c m\u1ed1i \u0111e d\u1ecda th\u01b0\u1eddng g\u1eb7p: brute-force, m\u00e3 \u0111\u1ed9c, t\u1ea5n c\u00f4ng qua CMS v\u00e0 email<\/li>\n<li>C\u1ea5u h\u00ecnh b\u1ea3o m\u1eadt c\u01a1 b\u1ea3n t\u1ea1i c\u1ea5p \u0111\u1ed9 cPanel \u2014 ch\u1ee7 website t\u1ef1 th\u1ef1c hi\u1ec7n \u0111\u01b0\u1ee3c<\/li>\n<li>Hardening n\u00e2ng cao \u1edf c\u1ea5p WHM: cPHulk, CSF Firewall, ModSecurity<\/li>\n<li>C\u00f4ng c\u1ee5 b\u1ea3o m\u1eadt t\u00edch h\u1ee3p: Imunify360, Virus Scanner, AutoSSL<\/li>\n<li>Checklist ki\u1ec3m tra b\u1ea3o m\u1eadt \u0111\u1ecbnh k\u1ef3 theo tu\u1ea7n \u2014 th\u00e1ng \u2014 qu\u00fd<\/li>\n<\/ul>\n<\/div>\n<p><strong>B\u1ea3o m\u1eadt hosting cPanel l\u00e0 g\u00ec<\/strong> \u2014 c\u00e2u h\u1ecfi nhi\u1ec1u ch\u1ee7 website \u0111\u1eb7t ra sau l\u1ea7n \u0111\u1ea7u nh\u1eadn email c\u1ea3nh b\u00e1o t\u1eeb Google ho\u1eb7c nh\u00e0 cung c\u1ea5p hosting. InterData ghi nh\u1eadn ph\u1ea7n l\u1edbn s\u1ef1 c\u1ed1 b\u1ea3o m\u1eadt tr\u00ean shared hosting kh\u00f4ng xu\u1ea5t ph\u00e1t t\u1eeb l\u1ed7 h\u1ed5ng zero-day ph\u1ee9c t\u1ea1p, m\u00e0 t\u1eeb nh\u1eefng sai s\u00f3t c\u1ea5u h\u00ecnh ho\u00e0n to\u00e0n c\u00f3 th\u1ec3 ph\u00f2ng tr\u00e1nh: m\u1eadt kh\u1ea9u y\u1ebfu, plugin l\u1ed7i th\u1eddi, ph\u00e2n quy\u1ec1n file sai, thi\u1ebfu SSL. B\u00e0i vi\u1ebft n\u00e0y ph\u00e2n t\u00edch t\u1eebng l\u1edbp b\u1ea3o v\u1ec7 theo th\u1ee9 t\u1ef1 \u01b0u ti\u00ean \u2014 t\u1eeb nh\u1eefng b\u01b0\u1edbc c\u01a1 b\u1ea3n ch\u1ee7 website t\u1ef1 l\u00e0m \u0111\u01b0\u1ee3c cho \u0111\u1ebfn c\u1ea5u h\u00ecnh n\u00e2ng cao \u1edf c\u1ea5p qu\u1ea3n tr\u1ecb WHM \u2014 gi\u00fap b\u1ea1n \u0111\u00e1nh gi\u00e1 \u0111\u00fang tr\u1ea1ng th\u00e1i b\u1ea3o m\u1eadt hi\u1ec7n t\u1ea1i v\u00e0 bi\u1ebft ch\u00ednh x\u00e1c c\u1ea7n l\u00e0m g\u00ec ti\u1ebfp theo.<\/p>\n<h2><span class=\"ez-toc-section\" id=\"Tai-sao-Hosting-cPanel-la-muc-tieu-tan-cong-pho-bien\"><\/span>T\u1ea1i sao Hosting cPanel l\u00e0 m\u1ee5c ti\u00eau t\u1ea5n c\u00f4ng ph\u1ed5 bi\u1ebfn?<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>M\u1ed7i ng\u00e0y, Google g\u1eafn c\u1edd kho\u1ea3ng 10.000 website ch\u1ee9a m\u00e3 \u0111\u1ed9c ho\u1eb7c n\u1ed9i dung l\u1eeba \u0111\u1ea3o \u2014 theo s\u1ed1 li\u1ec7u t\u1eeb Google Safe Browsing Dashboard. Ph\u1ea7n l\u1edbn c\u00e1c website trong danh s\u00e1ch \u0111\u00f3 kh\u00f4ng ph\u1ea3i m\u1ee5c ti\u00eau \u0111\u01b0\u1ee3c ch\u1ecdn l\u1ecdc, m\u00e0 b\u1ecb ph\u00e1t hi\u1ec7n b\u1edfi bot t\u1ef1 \u0111\u1ed9ng qu\u00e9t \u0111\u1ecba ch\u1ec9 IP theo d\u1ea3i, t\u00ecm ki\u1ebfm c\u1ea5u h\u00ecnh d\u1ec5 khai th\u00e1c.<\/p>\n<p>cPanel chi\u1ebfm h\u01a1n 40% th\u1ecb ph\u1ea7n ph\u1ea7n m\u1ec1m qu\u1ea3n l\u00fd hosting to\u00e0n c\u1ea7u theo d\u1eef li\u1ec7u W3Techs (2024). T\u1ef7 l\u1ec7 th\u1ecb ph\u1ea7n cao \u0111\u1ed3ng ngh\u0129a v\u1edbi vi\u1ec7c cPanel l\u00e0 n\u1ec1n t\u1ea3ng \u0111\u01b0\u1ee3c khai th\u00e1c nhi\u1ec1u nh\u1ea5t \u2014 kh\u00f4ng ph\u1ea3i v\u00ec ph\u1ea7n m\u1ec1m k\u00e9m b\u1ea3o m\u1eadt, m\u00e0 v\u00ec s\u1ed1 l\u01b0\u1ee3ng m\u1ee5c ti\u00eau \u0111\u1ee7 l\u1edbn \u0111\u1ec3 \u0111\u1ea7u t\u01b0 vi\u1ebft c\u00f4ng c\u1ee5 t\u1ea5n c\u00f4ng chuy\u00ean bi\u1ec7t.<\/p>\n<p><strong>\u0110i\u1ec3m quan tr\u1ecdng c\u1ea7n nh\u1edb: <\/strong>cPanel sau khi c\u00e0i \u0111\u1eb7t m\u1eb7c \u0111\u1ecbnh ch\u01b0a ph\u1ea3i c\u1ea5u h\u00ecnh t\u1ed1i \u01b0u b\u1ea3o m\u1eadt. M\u1ed9t s\u1ed1 t\u00ednh n\u0103ng b\u1ea3o v\u1ec7 quan tr\u1ecdng nh\u01b0 x\u00e1c th\u1ef1c hai l\u1edbp, cPHulk Brute Force Protection, hay ModSecurity WAF c\u1ea7n \u0111\u01b0\u1ee3c b\u1eadt th\u1ee7 c\u00f4ng \u2014 ho\u1eb7c do nh\u00e0 cung c\u1ea5p hosting k\u00edch ho\u1ea1t s\u1eb5n.<\/p>\n<h3><span class=\"ez-toc-section\" id=\"Shared-Hosting-co-rui-ro-gi-khac-so-voi-VPS\"><\/span>Shared Hosting c\u00f3 r\u1ee7i ro g\u00ec kh\u00e1c so v\u1edbi VPS?<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>Shared hosting \u0111\u1eb7t nhi\u1ec1u t\u00e0i kho\u1ea3n website tr\u00ean c\u00f9ng m\u1ed9t m\u00e1y ch\u1ee7 v\u1eadt l\u00fd, d\u00f9ng chung t\u00e0i nguy\u00ean CPU v\u00e0 RAM. N\u1ebfu nh\u00e0 cung c\u1ea5p kh\u00f4ng c\u1ea5u h\u00ecnh c\u00f4 l\u1eadp t\u00e0i kho\u1ea3n \u0111\u00fang c\u00e1ch, m\u00e3 \u0111\u1ed9c t\u1eeb m\u1ed9t t\u00e0i kho\u1ea3n c\u00f3 th\u1ec3 l\u00e2y sang t\u00e0i kho\u1ea3n kh\u00e1c c\u00f9ng m\u00e1y ch\u1ee7 \u2014 hi\u1ec7n t\u01b0\u1ee3ng n\u00e0y g\u1ecdi l\u00e0 cross-account contamination.<\/p>\n<div style=\"overflow-x: auto; margin: 20px 0;\">\n<table style=\"width: 100%; border-collapse: collapse; font-family: Arial, sans-serif; box-shadow: 0 4px 12px rgba(0,0,0,0.08); border-radius: 8px; overflow: hidden;\">\n<thead>\n<tr style=\"background: linear-gradient(90deg,#0C40F4,#077FFA,#0497FC); color: #ffffff;\">\n<th style=\"padding: 12px; border: 1px solid #e5e7eb; text-align: left;\">Ti\u00eau Ch\u00ed<\/th>\n<th style=\"padding: 12px; border: 1px solid #e5e7eb; text-align: left;\">Shared Hosting<\/th>\n<th style=\"padding: 12px; border: 1px solid #e5e7eb; text-align: left;\">VPS (Hosting ri\u00eang)<\/th>\n<\/tr>\n<\/thead>\n<tbody>\n<tr>\n<td style=\"padding: 12px; border: 1px solid #e5e7eb; font-weight: bold;\">C\u00f4 l\u1eadp t\u00e0i kho\u1ea3n<\/td>\n<td style=\"padding: 12px; border: 1px solid #e5e7eb;\">Ph\u1ee5 thu\u1ed9c c\u1ea5u h\u00ecnh nh\u00e0 cung c\u1ea5p<\/td>\n<td style=\"padding: 12px; border: 1px solid #e5e7eb;\">Ho\u00e0n to\u00e0n \u0111\u1ed9c l\u1eadp<\/td>\n<\/tr>\n<tr style=\"background: #f5f9ff;\">\n<td style=\"padding: 12px; border: 1px solid #e5e7eb; font-weight: bold;\">R\u1ee7i ro l\u00e2y nhi\u1ec5m ch\u00e9o<\/td>\n<td style=\"padding: 12px; border: 1px solid #e5e7eb;\">C\u00f3 (n\u1ebfu thi\u1ebfu CloudLinux\/PHP-FPM)<\/td>\n<td style=\"padding: 12px; border: 1px solid #e5e7eb;\">Kh\u00f4ng<\/td>\n<\/tr>\n<tr>\n<td style=\"padding: 12px; border: 1px solid #e5e7eb; font-weight: bold;\">Quy\u1ec1n t\u00f9y ch\u1ec9nh b\u1ea3o m\u1eadt<\/td>\n<td style=\"padding: 12px; border: 1px solid #e5e7eb;\">Gi\u1edbi h\u1ea1n \u1edf c\u1ea5p cPanel user<\/td>\n<td style=\"padding: 12px; border: 1px solid #e5e7eb;\">To\u00e0n quy\u1ec1n c\u1ea5p root<\/td>\n<\/tr>\n<tr style=\"background: #f5f9ff;\">\n<td style=\"padding: 12px; border: 1px solid #e5e7eb; font-weight: bold;\">Chi ph\u00ed<\/td>\n<td style=\"padding: 12px; border: 1px solid #e5e7eb;\">50.000 \u2013 300.000 VND\/th\u00e1ng<\/td>\n<td style=\"padding: 12px; border: 1px solid #e5e7eb;\">200.000 \u2013 2.000.000 VND\/th\u00e1ng<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<\/div>\n<p><strong>L\u01b0u \u00fd khi ch\u1ecdn shared hosting: <\/strong>Nh\u00e0 cung c\u1ea5p tri\u1ec3n khai CloudLinux v\u1edbi PHP-FPM per-user v\u00e0 c\u1ea5u h\u00ecnh open_basedir s\u1ebd c\u00f4 l\u1eadp t\u1eebng t\u00e0i kho\u1ea3n ri\u00eang bi\u1ec7t, lo\u1ea1i b\u1ecf r\u1ee7i ro l\u00e2y nhi\u1ec5m ch\u00e9o. InterData tri\u1ec3n khai CloudLinux v\u00e0 Imunify360 tr\u00ean to\u00e0n b\u1ed9 h\u1ea1 t\u1ea7ng shared hosting \u2014 \u0111\u00e2y l\u00e0 ti\u00eau ch\u00ed k\u1ef9 thu\u1eadt c\u1ea7n x\u00e1c nh\u1eadn tr\u01b0\u1edbc khi \u0111\u0103ng k\u00fd b\u1ea5t k\u1ef3 g\u00f3i hosting n\u00e0o.<\/p>\n<h3><span class=\"ez-toc-section\" id=\"Ai-thuong-bi-nham-muc-tieu-nhat\"><\/span>Ai th\u01b0\u1eddng b\u1ecb nh\u1eafm m\u1ee5c ti\u00eau nh\u1ea5t?<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>Bot t\u1ea5n c\u00f4ng kh\u00f4ng ch\u1ecdn n\u1ea1n nh\u00e2n theo quy m\u00f4 doanh nghi\u1ec7p. Ch\u00fang qu\u00e9t d\u1ea3i IP li\u00ean t\u1ee5c, t\u00ecm ki\u1ebfm d\u1ea5u hi\u1ec7u phi\u00ean b\u1ea3n WordPress c\u0169, plugin l\u1ed7i th\u1eddi ho\u1eb7c m\u1eadt kh\u1ea9u m\u1eb7c \u0111\u1ecbnh. Wordfence Intelligence Report ghi nh\u1eadn h\u01a1n 90 t\u1ef7 l\u1ea7n th\u1eed \u0111\u0103ng nh\u1eadp v\u00e0o WordPress m\u1ed7i th\u00e1ng \u2014 con s\u1ed1 n\u00e0y \u00e1p d\u1ee5ng \u0111\u1ec1u cho blog c\u00e1 nh\u00e2n l\u1eabn website th\u01b0\u01a1ng m\u1ea1i \u0111i\u1ec7n t\u1eed.<\/p>\n<p>Nh\u00f3m website c\u00f3 nguy c\u01a1 cao nh\u1ea5t: c\u1eeda h\u00e0ng online ch\u1ea1y WooCommerce\/OpenCart, blog WordPress ch\u01b0a c\u1eadp nh\u1eadt plugin, website tr\u01b0\u1eddng h\u1ecdc v\u00e0 t\u1ed5 ch\u1ee9c phi l\u1ee3i nhu\u1eadn (th\u01b0\u1eddng thi\u1ebfu ngu\u1ed3n l\u1ef1c k\u1ef9 thu\u1eadt \u0111\u1ec3 b\u1ea3o tr\u00ec \u0111\u1ecbnh k\u1ef3).<\/p>\n<h2><span class=\"ez-toc-section\" id=\"Cac-moi-de-doa-thuong-gap-tren-Hosting-cPanel\"><\/span>C\u00e1c m\u1ed1i \u0111e d\u1ecda th\u01b0\u1eddng g\u1eb7p tr\u00ean Hosting cPanel<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>Ph\u00e2n lo\u1ea1i \u0111\u00fang ki\u1ec3u t\u1ea5n c\u00f4ng l\u00e0 b\u01b0\u1edbc \u0111\u1ea7u ti\u00ean \u0111\u1ec3 ch\u1ecdn \u0111\u00fang bi\u1ec7n ph\u00e1p ph\u00f2ng ng\u1eeba. D\u01b0\u1edbi \u0111\u00e2y l\u00e0 b\u1ed1n nh\u00f3m m\u1ed1i \u0111e d\u1ecda ph\u1ed5 bi\u1ebfn nh\u1ea5t ghi nh\u1eadn tr\u00ean m\u00f4i tr\u01b0\u1eddng hosting cPanel, theo t\u1ed5ng h\u1ee3p t\u1eeb b\u00e1o c\u00e1o Sucuri (2023) v\u00e0 d\u1eef li\u1ec7u th\u1ef1c t\u1ebf x\u1eed l\u00fd s\u1ef1 c\u1ed1 c\u1ee7a \u0111\u1ed9i ng\u0169 k\u1ef9 thu\u1eadt InterData.<\/p>\n<h3><span class=\"ez-toc-section\" id=\"Brute-Force-dang-nhap-cPanel\"><\/span>Brute-Force \u0111\u0103ng nh\u1eadp cPanel<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>T\u1ea5n c\u00f4ng brute-force l\u00e0 ki\u1ec3u bot th\u1eed h\u00e0ng ngh\u00ecn t\u1ed5 h\u1ee3p t\u00ean \u0111\u0103ng nh\u1eadp v\u00e0 m\u1eadt kh\u1ea9u m\u1ed7i ph\u00fat v\u00e0o c\u1ed5ng \u0111\u0103ng nh\u1eadp cPanel (c\u1ed5ng 2083), WHM (c\u1ed5ng 2087), FTP (c\u1ed5ng 21) v\u00e0 webmail. Kh\u00f4ng c\u1ea7n k\u1ef9 thu\u1eadt cao \u2014 ch\u1ec9 c\u1ea7n danh s\u00e1ch m\u1eadt kh\u1ea9u ph\u1ed5 bi\u1ebfn v\u00e0 th\u1eddi gian.<\/p>\n<p><strong>D\u1ea5u hi\u1ec7u nh\u1eadn bi\u1ebft: <\/strong>Log \u0111\u0103ng nh\u1eadp th\u1ea5t b\u1ea1i t\u0103ng \u0111\u1ed9t bi\u1ebfn, IP l\u1ea1 xu\u1ea5t hi\u1ec7n nhi\u1ec1u l\u1ea7n trong Brute Force Log t\u1ea1i WHM. N\u1ebfu t\u00e0i kho\u1ea3n b\u1ecb kh\u00f3a b\u1ea5t ng\u1edd m\u00e0 kh\u00f4ng r\u00f5 nguy\u00ean nh\u00e2n, brute-force l\u00e0 nghi v\u1ea5n \u0111\u1ea7u ti\u00ean c\u1ea7n ki\u1ec3m tra.<\/p>\n<h3><span class=\"ez-toc-section\" id=\"Ma-doc-va-Backdoor-trong-File-Website\"><\/span>M\u00e3 \u0111\u1ed9c v\u00e0 Backdoor trong File Website<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>K\u1ebb t\u1ea5n c\u00f4ng th\u01b0\u1eddng c\u00e0i backdoor \u2014 file PHP \u1ea9n trong th\u01b0 m\u1ee5c \/uploads\/, \/tmp\/, ho\u1eb7c b\u00ean trong theme \u2014 sau khi x\u00e2m nh\u1eadp th\u00e0nh c\u00f4ng. Backdoor cho ph\u00e9p truy c\u1eadp l\u1ea1i b\u1ea5t c\u1ee9 l\u00fac n\u00e0o d\u00f9 m\u1eadt kh\u1ea9u \u0111\u00e3 \u0111\u01b0\u1ee3c \u0111\u1ed5i.<\/p>\n<p><strong>S\u1ed1 li\u1ec7u t\u1eeb Sucuri (2023): <\/strong>36% website b\u1ecb nhi\u1ec5m m\u00e3 \u0111\u1ed9c qua plugin ho\u1eb7c theme l\u1ed7i th\u1eddi. 56% website b\u1ecb nhi\u1ec5m ch\u1ee9a \u00edt nh\u1ea5t m\u1ed9t backdoor \u2014 ngh\u0129a l\u00e0 ch\u1ec9 x\u00f3a m\u00e3 \u0111\u1ed9c hi\u1ec3n th\u1ecb m\u00e0 kh\u00f4ng t\u00ecm backdoor s\u1ebd d\u1eabn \u0111\u1ebfn t\u00e1i nhi\u1ec5m trong v\u00e0i ng\u00e0y.<\/p>\n<p><strong>D\u1ea5u hi\u1ec7u nh\u1eadn bi\u1ebft: <\/strong>Website t\u1ef1 \u0111\u1ed9ng chuy\u1ec3n h\u01b0\u1edbng sang trang l\u1ea1, Google Search Console hi\u1ec3n th\u1ecb c\u1ea3nh b\u00e1o trong m\u1ee5c Security Issues, hosting g\u1eedi th\u00f4ng b\u00e1o t\u00e0i kho\u1ea3n g\u1eedi spam.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-large wp-image-40124\" src=\"https:\/\/interdata.vn\/blog\/wp-content\/uploads\/2026\/03\/Cac-moi-de-doa-thuong-gap-tren-Hosting-cPanel-1024x683.jpg\" alt=\"C\u00e1c m\u1ed1i \u0111e d\u1ecda th\u01b0\u1eddng g\u1eb7p tr\u00ean Hosting cPanel\" width=\"1020\" height=\"680\" title=\"\" srcset=\"https:\/\/interdata.vn\/blog\/wp-content\/uploads\/2026\/03\/Cac-moi-de-doa-thuong-gap-tren-Hosting-cPanel-1024x683.jpg 1024w, https:\/\/interdata.vn\/blog\/wp-content\/uploads\/2026\/03\/Cac-moi-de-doa-thuong-gap-tren-Hosting-cPanel-300x200.jpg 300w, https:\/\/interdata.vn\/blog\/wp-content\/uploads\/2026\/03\/Cac-moi-de-doa-thuong-gap-tren-Hosting-cPanel-768x512.jpg 768w, https:\/\/interdata.vn\/blog\/wp-content\/uploads\/2026\/03\/Cac-moi-de-doa-thuong-gap-tren-Hosting-cPanel.jpg 1080w\" sizes=\"auto, (max-width: 1020px) 100vw, 1020px\" \/><\/p>\n<h3><span class=\"ez-toc-section\" id=\"Tan-cong-qua-Email-Hosting\"><\/span>T\u1ea5n c\u00f4ng qua Email Hosting<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>T\u00e0i kho\u1ea3n email tr\u00ean hosting b\u1ecb khai th\u00e1c \u0111\u1ec3 ph\u00e1t t\u00e1n th\u01b0 r\u00e1c h\u00e0ng lo\u1ea1t \u2014 g\u1ecdi l\u00e0 spam relay attack. H\u1eadu qu\u1ea3: \u0111\u1ecba ch\u1ec9 IP m\u00e1y ch\u1ee7 b\u1ecb \u0111\u01b0a v\u00e0o danh s\u00e1ch \u0111en (blacklist) c\u1ee7a Spamhaus, Microsoft v\u00e0 Google, \u1ea3nh h\u01b0\u1edfng to\u00e0n b\u1ed9 email g\u1eedi ra t\u1eeb m\u00e1y ch\u1ee7 \u0111\u00f3.<\/p>\n<p>Thi\u1ebfu c\u1ea5u h\u00ecnh SPF, DKIM v\u00e0 DMARC khi\u1ebfn k\u1ebb x\u1ea5u d\u1ec5 d\u00e0ng gi\u1ea3 m\u1ea1o \u0111\u1ecba ch\u1ec9 email doanh nghi\u1ec7p \u0111\u1ec3 ph\u00e1t t\u00e1n phishing. \u0110\u00e2y l\u00e0 l\u00fd do c\u1ea5u h\u00ecnh x\u00e1c th\u1ef1c email l\u00e0 m\u1ed9t ph\u1ea7n kh\u00f4ng t\u00e1ch r\u1eddi c\u1ee7a b\u1ea3o m\u1eadt hosting.<\/p>\n<h3><span class=\"ez-toc-section\" id=\"Khai-thac-lo-hong-CMS-va-Plugin\"><\/span>Khai th\u00e1c l\u1ed7 h\u1ed5ng CMS v\u00e0 Plugin<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>Wordfence ghi nh\u1eadn 97% l\u1ed7 h\u1ed5ng b\u1ea3o m\u1eadt WordPress \u0111\u1ebfn t\u1eeb plugin v\u00e0 theme b\u00ean th\u1ee9 ba \u2014 kh\u00f4ng ph\u1ea3i l\u00f5i WordPress. Phi\u00ean b\u1ea3n plugin kh\u00f4ng c\u1eadp nh\u1eadt l\u00e0 c\u01a1 s\u1edf d\u1eef li\u1ec7u m\u1ed3i \u0111\u01b0\u1ee3c hacker khai th\u00e1c sau khi c\u00f3 CVE (l\u1ed7 h\u1ed5ng \u0111\u00e3 c\u00f4ng b\u1ed1) m\u00e0 ch\u1ee7 website ch\u01b0a k\u1ecbp v\u00e1.<\/p>\n<p><strong>Th\u1ef1c t\u1ebf: <\/strong>Ch\u1ec9 trong 30 ph\u00fat \u0111\u1ea7u sau khi m\u1ed9t l\u1ed7 h\u1ed5ng plugin WordPress \u0111\u01b0\u1ee3c c\u00f4ng b\u1ed1 c\u00f4ng khai, bot t\u1ef1 \u0111\u1ed9ng \u0111\u00e3 b\u1eaft \u0111\u1ea7u qu\u00e9t to\u00e0n b\u1ed9 internet \u0111\u1ec3 t\u00ecm website \u0111ang d\u00f9ng phi\u00ean b\u1ea3n \u0111\u00f3.<\/p>\n<h2><span class=\"ez-toc-section\" id=\"Cong-cu-bao-mat-tich-hop-tren-Hosting-cPanel\"><\/span>C\u00f4ng c\u1ee5 b\u1ea3o m\u1eadt t\u00edch h\u1ee3p tr\u00ean Hosting cPanel<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>C\u00e1c c\u00f4ng c\u1ee5 d\u01b0\u1edbi \u0111\u00e2y ho\u1ea1t \u0111\u1ed9ng tr\u1ef1c ti\u1ebfp trong m\u00f4i tr\u01b0\u1eddng cPanel\/WHM, kh\u00f4ng c\u1ea7n c\u00e0i th\u00eam ph\u1ea7n m\u1ec1m b\u00ean ngo\u00e0i. Hi\u1ec3u \u0111\u00fang kh\u1ea3 n\u0103ng v\u00e0 gi\u1edbi h\u1ea1n c\u1ee7a t\u1eebng c\u00f4ng c\u1ee5 gi\u00fap tr\u00e1nh \u1ea3o t\u01b0\u1edfng b\u1ea3o m\u1eadt \u2014 t\u1ee9c l\u00e0 ngh\u0129 r\u1eb1ng \u0111\u00e3 an to\u00e0n trong khi th\u1ef1c ra ch\u01b0a \u0111\u1ee7.<\/p>\n<h3><span class=\"ez-toc-section\" id=\"Imunify360\"><\/span>Imunify360<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>Imunify360 l\u00e0 b\u1ed9 b\u1ea3o m\u1eadt to\u00e0n di\u1ec7n \u0111\u01b0\u1ee3c ph\u00e1t tri\u1ec3n b\u1edfi CloudLinux Inc., bao g\u1ed3m n\u0103m l\u1edbp b\u1ea3o v\u1ec7 ho\u1ea1t \u0111\u1ed9ng \u0111\u1ed3ng th\u1eddi: WAF (Web Application Firewall), IDS\/IPS (ph\u00e1t hi\u1ec7n v\u00e0 ng\u0103n ch\u1eb7n x\u00e2m nh\u1eadp), malware scanner t\u1ef1 \u0111\u1ed9ng, patch management cho PHP v\u00e0 kernel, v\u00e0 reputation management.<\/p>\n<table>\n<tbody>\n<tr>\n<td><strong>Th\u00e0nh Ph\u1ea7n<\/strong><\/td>\n<td><strong>Ch\u1ee9c N\u0103ng<\/strong><\/td>\n<td><strong>M\u1ee9c T\u1ef1 \u0110\u1ed9ng<\/strong><\/td>\n<\/tr>\n<tr>\n<td>WAF<\/td>\n<td>L\u1ecdc request HTTP \u0111\u1ed9c h\u1ea1i<\/td>\n<td>Ho\u00e0n to\u00e0n t\u1ef1 \u0111\u1ed9ng<\/td>\n<\/tr>\n<tr>\n<td>Malware Scanner<\/td>\n<td>Qu\u00e9t v\u00e0 c\u00e1ch ly file nhi\u1ec5m m\u00e3 \u0111\u1ed9c<\/td>\n<td>T\u1ef1 \u0111\u1ed9ng, l\u00ean l\u1ecbch h\u00e0ng ng\u00e0y<\/td>\n<\/tr>\n<tr>\n<td>IDS\/IPS<\/td>\n<td>Ph\u00e1t hi\u1ec7n h\u00e0nh vi b\u1ea5t th\u01b0\u1eddng, block IP<\/td>\n<td>T\u1ef1 \u0111\u1ed9ng theo rule<\/td>\n<\/tr>\n<tr>\n<td>Patch Management<\/td>\n<td>V\u00e1 l\u1ed7 h\u1ed5ng PHP kh\u00f4ng c\u1ea7n c\u1eadp nh\u1eadt version<\/td>\n<td>T\u1ef1 \u0111\u1ed9ng<\/td>\n<\/tr>\n<tr>\n<td>Reputation Management<\/td>\n<td>Block IP t\u1eeb danh s\u00e1ch blacklist to\u00e0n c\u1ea7u<\/td>\n<td>C\u1eadp nh\u1eadt theo th\u1eddi gian th\u1ef1c<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<p><strong>Imunify360 vs ImunifyAV: <\/strong>ImunifyAV (mi\u1ec5n ph\u00ed) ch\u1ec9 qu\u00e9t v\u00e0 ph\u00e1t hi\u1ec7n m\u00e3 \u0111\u1ed9c, kh\u00f4ng t\u1ef1 \u0111\u1ed9ng d\u1ecdn s\u1ea1ch. ImunifyAV+ v\u00e0 Imunify360 m\u1edbi c\u00f3 t\u00ednh n\u0103ng t\u1ef1 \u0111\u1ed9ng x\u00f3a m\u00e3 \u0111\u1ed9c v\u00e0 c\u00e1ch ly file nghi ng\u1edd. InterData t\u00edch h\u1ee3p Imunify360 tr\u00ean to\u00e0n b\u1ed9 h\u1ea1 t\u1ea7ng hosting \u2014 ng\u01b0\u1eddi d\u00f9ng c\u00f3 th\u1ec3 xem tr\u1ea1ng th\u00e1i qu\u00e9t trong cPanel \u2192 Imunify360.<\/p>\n<h3><span class=\"ez-toc-section\" id=\"SSLTLS-Status-va-AutoSSL\"><\/span>SSL\/TLS Status v\u00e0 AutoSSL<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>WHM \u2192 SSL\/TLS Status hi\u1ec3n th\u1ecb tr\u1ea1ng th\u00e1i ch\u1ee9ng ch\u1ec9 c\u1ee7a to\u00e0n b\u1ed9 domain tr\u00ean server: \u0111ang ho\u1ea1t \u0111\u1ed9ng, s\u1eafp h\u1ebft h\u1ea1n, ho\u1eb7c thi\u1ebfu ch\u1ee9ng ch\u1ec9. AutoSSL ch\u1ea1y h\u00e0ng ng\u00e0y \u0111\u1ec3 ki\u1ec3m tra v\u00e0 gia h\u1ea1n t\u1ef1 \u0111\u1ed9ng.<\/p>\n<p><strong>\u0110i\u1ec1u ki\u1ec7n \u0111\u1ec3 AutoSSL ho\u1ea1t \u0111\u1ed9ng: <\/strong>Domain ph\u1ea3i tr\u1ecf DNS v\u1ec1 \u0111\u00fang IP m\u00e1y ch\u1ee7. N\u1ebfu domain \u0111ang d\u00f9ng Cloudflare proxy (cam \u0111\u1ea5t), AutoSSL Let&#8217;s Encrypt s\u1ebd kh\u00f4ng c\u1ea5p \u0111\u01b0\u1ee3c \u2014 c\u1ea7n d\u00f9ng ch\u1ee9ng ch\u1ec9 t\u1eeb Cloudflare ho\u1eb7c ch\u1ee9ng ch\u1ec9 tr\u1ea3 ph\u00ed c\u00e0i th\u1ee7 c\u00f4ng.<\/p>\n<h2><span class=\"ez-toc-section\" id=\"Sao-luu-du-lieu\"><\/span>Sao l\u01b0u d\u1eef li\u1ec7u<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>Backup kh\u00f4ng ph\u1ea3i t\u00f9y ch\u1ecdn \u2014 \u0111\u00e2y l\u00e0 l\u1edbp b\u1ea3o v\u1ec7 duy nh\u1ea5t \u0111\u1ea3m b\u1ea3o ph\u1ee5c h\u1ed3i \u0111\u01b0\u1ee3c d\u1eef li\u1ec7u khi m\u1ecdi bi\u1ec7n ph\u00e1p ph\u00f2ng ng\u1eeba kh\u00e1c th\u1ea5t b\u1ea1i. Ransomware, x\u00f3a nh\u1ea7m, l\u1ed7i c\u1eadp nh\u1eadt CMS, hay s\u1ef1 c\u1ed1 ph\u1ea7n c\u1ee9ng \u0111\u1ec1u c\u00f3 chung m\u1ed9t gi\u1ea3i ph\u00e1p: backup s\u1ea1ch v\u00e0 \u0111\u01b0\u1ee3c ki\u1ec3m tra.<\/p>\n<p><strong>Quy t\u1eafc 3-2-1: <\/strong>3 b\u1ea3n sao d\u1eef li\u1ec7u \u2014 2 ph\u01b0\u01a1ng ti\u1ec7n l\u01b0u tr\u1eef kh\u00e1c nhau \u2014 1 b\u1ea3n offsite (ngo\u00e0i m\u00e1y ch\u1ee7 ch\u00ednh). Backup tr\u00ean c\u00f9ng server v\u1edbi website kh\u00f4ng \u0111\u01b0\u1ee3c t\u00ednh l\u00e0 backup \u0111\u1ea7y \u0111\u1ee7.<\/p>\n<table>\n<tbody>\n<tr>\n<td><strong>Lo\u1ea1i Backup<\/strong><\/td>\n<td><strong>T\u1ea7n Su\u1ea5t Khuy\u1ebfn Ngh\u1ecb<\/strong><\/td>\n<td><strong>Th\u1eddi Gian L\u01b0u<\/strong><\/td>\n<\/tr>\n<tr>\n<td>Backup h\u00e0ng ng\u00e0y (incremental)<\/td>\n<td>M\u1ed7i ng\u00e0y l\u00fac 2-4 gi\u1edd s\u00e1ng<\/td>\n<td>7 b\u1ea3n g\u1ea7n nh\u1ea5t<\/td>\n<\/tr>\n<tr>\n<td>Backup h\u00e0ng tu\u1ea7n (full)<\/td>\n<td>Ch\u1ee7 nh\u1eadt<\/td>\n<td>4 b\u1ea3n g\u1ea7n nh\u1ea5t<\/td>\n<\/tr>\n<tr>\n<td>Backup h\u00e0ng th\u00e1ng (full)<\/td>\n<td>Ng\u00e0y 1 h\u00e0ng th\u00e1ng<\/td>\n<td>3 b\u1ea3n g\u1ea7n nh\u1ea5t<\/td>\n<\/tr>\n<tr>\n<td>Backup tr\u01b0\u1edbc khi update l\u1edbn<\/td>\n<td>Theo s\u1ef1 ki\u1ec7n<\/td>\n<td>Gi\u1eef \u0111\u1ebfn sau khi x\u00e1c nh\u1eadn \u1ed5n \u0111\u1ecbnh<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<p><strong>Kinh nghi\u1ec7m th\u1ef1c t\u1ebf \u0111\u00e1ng ch\u00fa \u00fd: <\/strong>Nhi\u1ec1u s\u1ef1 c\u1ed1 m\u1ea5t d\u1eef li\u1ec7u x\u1ea3y ra kh\u00f4ng ph\u1ea3i v\u00ec kh\u00f4ng c\u00f3 backup, m\u00e0 v\u00ec backup b\u1ecb l\u1ed7i c\u1ea3 th\u00e1ng m\u00e0 kh\u00f4ng ai ph\u00e1t hi\u1ec7n. Ki\u1ec3m tra backup b\u1eb1ng c\u00e1ch th\u1ef1c s\u1ef1 restore th\u1eed v\u00e0o m\u00f4i tr\u01b0\u1eddng test \u2014 kh\u00f4ng ph\u1ea3i ch\u1ec9 xem file backup c\u00f3 t\u1ed3n t\u1ea1i hay kh\u00f4ng.<\/p>\n<h3><span class=\"ez-toc-section\" id=\"Phuc-hoi-sau-su-co-bao-mat\"><\/span>Ph\u1ee5c h\u1ed3i sau s\u1ef1 c\u1ed1 b\u1ea3o m\u1eadt<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>Khi ph\u00e1t hi\u1ec7n website b\u1ecb t\u1ea5n c\u00f4ng, th\u1ee9 t\u1ef1 x\u1eed l\u00fd quan tr\u1ecdng h\u01a1n t\u1ed1c \u0111\u1ed9 x\u1eed l\u00fd. H\u00e0nh \u0111\u1ed9ng sai th\u1ee9 t\u1ef1 c\u00f3 th\u1ec3 x\u00f3a m\u1ea5t b\u1eb1ng ch\u1ee9ng ho\u1eb7c \u0111\u1ec3 s\u00f3t m\u00e3 \u0111\u1ed9c d\u1eabn \u0111\u1ebfn t\u00e1i nhi\u1ec5m.<\/p>\n<ul>\n<li><strong>B\u01b0\u1edbc 1 \u2014 C\u00f4 l\u1eadp<\/strong>: T\u1ea1m ng\u01b0ng website (\u0111\u1eb7t maintenance page ho\u1eb7c t\u1eaft t\u00e0i kho\u1ea3n hosting) \u0111\u1ec3 ng\u0103n thi\u1ec7t h\u1ea1i lan r\u1ed9ng v\u00e0 ng\u0103n bot ti\u1ebfp t\u1ee5c khai th\u00e1c.<\/li>\n<li><strong>B\u01b0\u1edbc 2 \u2014 X\u00e1c \u0111\u1ecbnh \u0111i\u1ec3m x\u00e2m nh\u1eadp<\/strong>: Ki\u1ec3m tra access log, error log, file c\u00f3 th\u1eddi gian s\u1eeda \u0111\u1ed5i b\u1ea5t th\u01b0\u1eddng. D\u00f9ng Imunify360 ho\u1eb7c Maldet \u0111\u1ec3 qu\u00e9t to\u00e0n b\u1ed9.<\/li>\n<li><strong>B\u01b0\u1edbc 3 \u2014 D\u1ecdn d\u1eb9p<\/strong>: X\u00f3a m\u00e3 \u0111\u1ed9c v\u00e0 backdoor. N\u1ebfu kh\u00f4ng ch\u1eafc \u0111\u00e3 s\u1ea1ch ho\u00e0n to\u00e0n, restore t\u1eeb backup tr\u01b0\u1edbc th\u1eddi \u0111i\u1ec3m b\u1ecb nhi\u1ec5m.<\/li>\n<li><strong>B\u01b0\u1edbc 4 \u2014 Thay \u0111\u1ed5i th\u00f4ng tin x\u00e1c th\u1ef1c<\/strong>: \u0110\u1ed5i m\u1eadt kh\u1ea9u cPanel, FTP, database, t\u00e0i kho\u1ea3n admin CMS, v\u00e0 email li\u00ean quan.<\/li>\n<li><strong>B\u01b0\u1edbc 5 \u2014 V\u00e1 l\u1ed7 h\u1ed5ng g\u1ed1c<\/strong>: C\u1eadp nh\u1eadt plugin\/theme\/CMS, x\u00f3a ph\u1ea7n m\u1ec1m kh\u00f4ng d\u00f9ng, s\u1eeda c\u1ea5u h\u00ecnh sai tr\u01b0\u1edbc khi m\u1edf l\u1ea1i website.<\/li>\n<\/ul>\n<h2><span class=\"ez-toc-section\" id=\"Checklist-bao-mat-Hosting-cPanel-dinh-ky\"><\/span>Checklist b\u1ea3o m\u1eadt Hosting cPanel \u0111\u1ecbnh k\u1ef3<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>B\u1ea3o m\u1eadt hosting kh\u00f4ng ph\u1ea3i c\u00f4ng vi\u1ec7c l\u00e0m m\u1ed9t l\u1ea7n. Ba b\u1ea3ng checklist d\u01b0\u1edbi \u0111\u00e2y \u0111\u01b0\u1ee3c thi\u1ebft k\u1ebf \u0111\u1ec3 th\u1ef1c hi\u1ec7n theo chu k\u1ef3 \u2014 gi\u00fap ph\u00e1t hi\u1ec7n s\u1edbm v\u1ea5n \u0111\u1ec1 tr\u01b0\u1edbc khi tr\u1edf th\u00e0nh s\u1ef1 c\u1ed1.<\/p>\n<h3><span class=\"ez-toc-section\" id=\"CHECKLIST-hang-tuan\"><\/span>CHECKLIST h\u00e0ng tu\u1ea7n<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<ul>\n<li><strong>Ki\u1ec3m tra log \u0111\u0103ng nh\u1eadp cPanel<\/strong> \u2014 ph\u00e1t hi\u1ec7n IP l\u1ea1 ho\u1eb7c l\u1ea7n \u0111\u0103ng nh\u1eadp b\u1ea5t th\u01b0\u1eddng<\/li>\n<li><strong>Xem c\u1ea3nh b\u00e1o cPHulk v\u00e0 CSF LFD<\/strong> \u2014 IP n\u00e0o \u0111ang b\u1ecb kh\u00f3a, t\u1ea7n su\u1ea5t t\u1ea5n c\u00f4ng<\/li>\n<li><strong>Ch\u1ea1y Virus Scanner \/ ImunifyAV<\/strong> \u2014 qu\u00e9t nhanh th\u01b0 m\u1ee5c home<\/li>\n<li><strong>Ki\u1ec3m tra tr\u1ea1ng th\u00e1i SSL trong cPanel<\/strong> \u2014 \u0111\u1ea3m b\u1ea3o kh\u00f4ng c\u00f3 domain h\u1ebft h\u1ea1n<\/li>\n<li><strong>Xem x\u00e9t Email Deliverability<\/strong> \u2014 ki\u1ec3m tra kh\u00f4ng c\u00f3 t\u00e0i kho\u1ea3n email g\u1eedi spam<\/li>\n<\/ul>\n<h3><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter wp-image-40123\" src=\"https:\/\/interdata.vn\/blog\/wp-content\/uploads\/2026\/03\/Checklist-bao-mat-Hosting-cPanel-dinh-ky-1024x683.jpg\" alt=\"Checklist b\u1ea3o m\u1eadt Hosting cPanel \u0111\u1ecbnh k\u1ef3\" width=\"800\" height=\"533\" title=\"\" srcset=\"https:\/\/interdata.vn\/blog\/wp-content\/uploads\/2026\/03\/Checklist-bao-mat-Hosting-cPanel-dinh-ky-1024x683.jpg 1024w, https:\/\/interdata.vn\/blog\/wp-content\/uploads\/2026\/03\/Checklist-bao-mat-Hosting-cPanel-dinh-ky-300x200.jpg 300w, https:\/\/interdata.vn\/blog\/wp-content\/uploads\/2026\/03\/Checklist-bao-mat-Hosting-cPanel-dinh-ky-768x512.jpg 768w, https:\/\/interdata.vn\/blog\/wp-content\/uploads\/2026\/03\/Checklist-bao-mat-Hosting-cPanel-dinh-ky.jpg 1080w\" sizes=\"auto, (max-width: 800px) 100vw, 800px\" \/><\/h3>\n<h3><span class=\"ez-toc-section\" id=\"CHECKLIST-hang-thang\"><\/span>CHECKLIST h\u00e0ng th\u00e1ng<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<ul>\n<li><strong>Ki\u1ec3m tra log \u0111\u0103ng nh\u1eadp cPanel<\/strong> \u2014 ph\u00e1t hi\u1ec7n IP l\u1ea1 ho\u1eb7c l\u1ea7n \u0111\u0103ng nh\u1eadp b\u1ea5t th\u01b0\u1eddng<\/li>\n<li><strong>Xem c\u1ea3nh b\u00e1o cPHulk v\u00e0 CSF LFD<\/strong> \u2014 IP n\u00e0o \u0111ang b\u1ecb kh\u00f3a, t\u1ea7n su\u1ea5t t\u1ea5n c\u00f4ng<\/li>\n<li><strong>Ch\u1ea1y Virus Scanner \/ ImunifyAV<\/strong> \u2014 qu\u00e9t nhanh th\u01b0 m\u1ee5c home<\/li>\n<li><strong>Ki\u1ec3m tra tr\u1ea1ng th\u00e1i SSL trong cPanel<\/strong> \u2014 \u0111\u1ea3m b\u1ea3o kh\u00f4ng c\u00f3 domain h\u1ebft h\u1ea1n<\/li>\n<li><strong>Xem x\u00e9t Email Deliverability<\/strong> \u2014 ki\u1ec3m tra kh\u00f4ng c\u00f3 t\u00e0i kho\u1ea3n email g\u1eedi spam<\/li>\n<\/ul>\n<h3><span class=\"ez-toc-section\" id=\"CHECKLIST-hang-quy\"><\/span>CHECKLIST h\u00e0ng qu\u00fd<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<ul>\n<li><strong>\u0110\u1ed5i m\u1eadt kh\u1ea9u cPanel, FTP, database, t\u00e0i kho\u1ea3n admin CMS Review rule ModSecurity<\/strong> \u2014 \u0111i\u1ec1u ch\u1ec9nh n\u1ebfu c\u00f3 false positive ho\u1eb7c b\u1ecf s\u00f3t<\/li>\n<li><strong>Audit plugin\/extension \u0111ang c\u00e0i<\/strong> \u2014 x\u00f3a plugin kh\u00f4ng d\u00f9ng ho\u1eb7c kh\u00f4ng \u0111\u01b0\u1ee3c c\u1eadp nh\u1eadt<\/li>\n<li><strong>Test ph\u1ee5c h\u1ed3i t\u1eeb backup<\/strong> \u2014 th\u1ef1c s\u1ef1 restore th\u1eed v\u00e0o m\u00f4i tr\u01b0\u1eddng test<\/li>\n<li><strong>Ki\u1ec3m tra IP reputation c\u1ee7a m\u00e1y ch\u1ee7<\/strong> tr\u00ean MXToolbox v\u00e0 Spamhaus<\/li>\n<li><strong>C\u1eadp nh\u1eadt c\u1ea5u h\u00ecnh CSF Firewall<\/strong> n\u1ebfu c\u00f3 thay \u0111\u1ed5i h\u1ea1 t\u1ea7ng<\/li>\n<\/ul>\n<h2><span class=\"ez-toc-section\" id=\"Cac-cach-bao-mat-hosting-cPanel-hieu-qua-hien-nay\"><\/span>C\u00e1c c\u00e1ch b\u1ea3o m\u1eadt hosting cPanel hi\u1ec7u qu\u1ea3 hi\u1ec7n nay<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<h3><span class=\"ez-toc-section\" id=\"1-Doi-mat-khau-manh-va-bat-xac-thuc-hai-buoc\"><\/span>1. \u0110\u1ed5i m\u1eadt kh\u1ea9u m\u1ea1nh v\u00e0 b\u1eadt x\u00e1c th\u1ef1c hai b\u01b0\u1edbc<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>\u0110\u00e2y l\u00e0 b\u01b0\u1edbc \u0111\u01a1n gi\u1ea3n nh\u1ea5t nh\u01b0ng b\u1ecb b\u1ecf qua nhi\u1ec1u nh\u1ea5t. M\u1eadt kh\u1ea9u m\u1eb7c \u0111\u1ecbnh do nh\u00e0 cung c\u1ea5p c\u1ea5p th\u01b0\u1eddng l\u00e0 chu\u1ed7i ng\u1eafn, d\u1ec5 \u0111o\u00e1n ho\u1eb7c \u0111\u01b0\u1ee3c l\u01b0u trong email kh\u00f4ng m\u00e3 h\u00f3a.<\/p>\n<p><strong>Ti\u00eau chu\u1ea9n m\u1eadt kh\u1ea9u an to\u00e0n cho cPanel:<\/strong><\/p>\n<ul>\n<li>T\u1ed1i thi\u1ec3u 16 k\u00fd t\u1ef1<\/li>\n<li>K\u1ebft h\u1ee3p ch\u1eef hoa, ch\u1eef th\u01b0\u1eddng, s\u1ed1 v\u00e0 k\u00fd t\u1ef1 \u0111\u1eb7c bi\u1ec7t (!@#$%&#8230;)<\/li>\n<li>Kh\u00f4ng d\u00f9ng t\u00ean mi\u1ec1n, ng\u00e0y sinh, t\u00ean website l\u00e0m m\u1eadt kh\u1ea9u<\/li>\n<li>M\u1ed7i t\u00e0i kho\u1ea3n (cPanel, FTP, email, c\u01a1 s\u1edf d\u1eef li\u1ec7u) d\u00f9ng m\u1eadt kh\u1ea9u ri\u00eang bi\u1ec7t<\/li>\n<\/ul>\n<p>Ngo\u00e0i m\u1eadt kh\u1ea9u, cPanel h\u1ed7 tr\u1ee3 <strong>x\u00e1c th\u1ef1c hai b\u01b0\u1edbc (Two-Factor Authentication \u2014 2FA)<\/strong> th\u00f4ng qua \u1ee9ng d\u1ee5ng nh\u01b0 Google Authenticator ho\u1eb7c Authy. K\u00edch ho\u1ea1t 2FA t\u1ea1i m\u1ee5c <em>Security \u2192 Two-Factor Authentication<\/em> trong cPanel. Sau khi b\u1eadt, m\u1ed7i l\u1ea7n \u0111\u0103ng nh\u1eadp s\u1ebd y\u00eau c\u1ea7u nh\u1eadp m\u00e3 OTP 6 ch\u1eef s\u1ed1 c\u00f3 hi\u1ec7u l\u1ef1c trong 30 gi\u00e2y, ngay c\u1ea3 khi k\u1ebb t\u1ea5n c\u00f4ng \u0111\u00e3 bi\u1ebft m\u1eadt kh\u1ea9u.<\/p>\n<p>Xem th\u00eam: <strong><a href=\"https:\/\/interdata.vn\/blog\/bat-tinh-nang-xac-thuc-hai-buoc\/\">H\u01b0\u1edbng D\u1eabn Kh\u00e1ch H\u00e0ng InterData B\u1eadt T\u00ednh N\u0103ng X\u00e1c Th\u1ef1c Hai B\u01b0\u1edbc (2FA)<\/a><\/strong><\/p>\n<h3><span class=\"ez-toc-section\" id=\"2-Gioi-han-dia-chi-IP-duoc-phep-dang-nhap-cPanel\"><\/span>2. Gi\u1edbi h\u1ea1n \u0111\u1ecba ch\u1ec9 IP \u0111\u01b0\u1ee3c ph\u00e9p \u0111\u0103ng nh\u1eadp cPanel<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>cPanel cho ph\u00e9p c\u1ea5u h\u00ecnh danh s\u00e1ch IP \u0111\u01b0\u1ee3c ph\u00e9p truy c\u1eadp giao di\u1ec7n qu\u1ea3n tr\u1ecb \u2014 t\u00ednh n\u0103ng n\u00e0y g\u1ecdi l\u00e0 <strong>IP Blocker<\/strong> ho\u1eb7c c\u1ea5u h\u00ecnh t\u1ea1i <em><strong>Security<\/strong> \u2192 <strong>IP Blocker<\/strong><\/em>.<\/p>\n<p>Xem th\u00eam: <strong><a href=\"https:\/\/interdata.vn\/blog\/cach-chan-ip-trong-cpanel\/\">H\u01b0\u1edbng D\u1eabn Ch\u1eb7n IP Trong Cpanel &amp; G\u1ee1 \u0110\u1ecba Ch\u1ec9 IP B\u1eb1ng IP Blocker<\/a><\/strong><\/p>\n<p>N\u1ebfu b\u1ea1n qu\u1ea3n tr\u1ecb website t\u1eeb m\u1ed9t \u0111\u1ecba ch\u1ec9 IP c\u1ed1 \u0111\u1ecbnh (v\u0103n ph\u00f2ng, \u0111\u01b0\u1eddng truy\u1ec1n c\u1ed1 \u0111\u1ecbnh), th\u00eam IP \u0111\u00f3 v\u00e0o whitelist v\u00e0 ch\u1eb7n t\u1ea5t c\u1ea3 IP kh\u00e1c kh\u1ecfi c\u1ed5ng cPanel (m\u1eb7c \u0111\u1ecbnh l\u00e0 2083 ho\u1eb7c 2087 \u0111\u1ed1i v\u1edbi WHM). Ph\u01b0\u01a1ng ph\u00e1p n\u00e0y g\u1ea7n nh\u01b0 lo\u1ea1i b\u1ecf ho\u00e0n to\u00e0n c\u00e1c cu\u1ed9c t\u1ea5n c\u00f4ng brute-force t\u1eeb xa v\u00e0o trang \u0111\u0103ng nh\u1eadp.<\/p>\n<p>\u1ede c\u1ea5p \u0111\u1ed9 m\u00e1y ch\u1ee7 (n\u1ebfu b\u1ea1n c\u00f3 quy\u1ec1n truy c\u1eadp WHM), nh\u00e0 cung c\u1ea5p hosting nh\u01b0 InterData cho ph\u00e9p c\u1ea5u h\u00ecnh t\u01b0\u1eddng l\u1eeda CSF (ConfigServer Security &amp; Firewall) \u0111\u1ec3 whitelist IP chi ti\u1ebft theo t\u1eebng d\u1ecbch v\u1ee5.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-full wp-image-40120\" src=\"https:\/\/interdata.vn\/blog\/wp-content\/uploads\/2026\/03\/Bao-Mat-Hosting-cPanel.jpg\" alt=\"B\u1ea3o M\u1eadt Hosting cPanel\" width=\"800\" height=\"500\" title=\"\" srcset=\"https:\/\/interdata.vn\/blog\/wp-content\/uploads\/2026\/03\/Bao-Mat-Hosting-cPanel.jpg 800w, https:\/\/interdata.vn\/blog\/wp-content\/uploads\/2026\/03\/Bao-Mat-Hosting-cPanel-300x188.jpg 300w, https:\/\/interdata.vn\/blog\/wp-content\/uploads\/2026\/03\/Bao-Mat-Hosting-cPanel-768x480.jpg 768w\" sizes=\"auto, (max-width: 800px) 100vw, 800px\" \/><\/p>\n<h3><span class=\"ez-toc-section\" id=\"3-Bao-mat-ket-noi-va-giao-thuc-SSL-FTP\"><\/span>3. B\u1ea3o m\u1eadt k\u1ebft n\u1ed1i v\u00e0 giao th\u1ee9c (SSL &amp; FTP)<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>D\u1eef li\u1ec7u truy\u1ec1n t\u1ea3i gi\u1eefa m\u00e1y t\u00ednh v\u00e0 hosting c\u1ea7n \u0111\u01b0\u1ee3c m\u00e3 h\u00f3a \u0111\u1ec3 tr\u00e1nh b\u1ecb nghe l\u00e9n (Man-in-the-middle attack).<\/p>\n<ul>\n<li><strong>FTP<\/strong> (File Transfer Protocol) truy\u1ec1n d\u1eef li\u1ec7u d\u01b0\u1edbi d\u1ea1ng v\u0103n b\u1ea3n thu\u1ea7n \u2014 ngh\u0129a l\u00e0 t\u00ean \u0111\u0103ng nh\u1eadp v\u00e0 m\u1eadt kh\u1ea9u b\u1ecb g\u1eedi qua m\u1ea1ng m\u00e0 kh\u00f4ng m\u00e3 h\u00f3a. B\u1ea5t k\u1ef3 ai \u0111ang theo d\u00f5i k\u1ebft n\u1ed1i m\u1ea1ng \u0111\u1ec1u c\u00f3 th\u1ec3 \u0111\u1ecdc \u0111\u01b0\u1ee3c.<\/li>\n<li><strong>SFTP<\/strong> (SSH File Transfer Protocol) gi\u1ea3i quy\u1ebft v\u1ea5n \u0111\u1ec1 n\u00e0y b\u1eb1ng c\u00e1ch m\u00e3 h\u00f3a to\u00e0n b\u1ed9 phi\u00ean k\u1ebft n\u1ed1i.<\/li>\n<\/ul>\n<p><strong>S\u1eed d\u1ee5ng SSL\/TLS:<\/strong> Lu\u00f4n c\u00e0i \u0111\u1eb7t SSL (HTTPS) cho t\u1ea5t c\u1ea3 t\u00ean mi\u1ec1n. cPanel cung c\u1ea5p AutoSSL mi\u1ec5n ph\u00ed t\u1eeb Let&#8217;s Encrypt, h\u00e3y \u0111\u1ea3m b\u1ea3o t\u00ednh n\u0103ng n\u00e0y lu\u00f4n b\u1eadt.<\/p>\n<p>Xem th\u00eam: <strong><a href=\"https:\/\/interdata.vn\/blog\/cai-dat-ssl-tren-cpanel\/\">H\u01b0\u1edbng d\u1eabn 6 b\u01b0\u1edbc c\u00e0i \u0111\u1eb7t\/ X\u00f3a SSL tr\u00ean cPanel \u0111\u01a1n gi\u1ea3n, nhanh<\/a><\/strong><\/p>\n<p><strong>V\u00f4 hi\u1ec7u h\u00f3a FTP, chuy\u1ec3n sang SFTP:<\/strong> FTP truy\u1ec1n t\u1ea3i d\u1eef li\u1ec7u \u1edf d\u1ea1ng v\u0103n b\u1ea3n thu\u1ea7n, r\u1ea5t d\u1ec5 b\u1ecb hack. H\u00e3y x\u00f3a t\u00e0i kho\u1ea3n FTP c\u0169, ch\u1ec9 s\u1eed d\u1ee5ng SFTP (SSH File Transfer Protocol) qua c\u1ed5ng 22 \u0111\u1ec3 \u0111\u1ea3m b\u1ea3o m\u1ecdi d\u1eef li\u1ec7u truy\u1ec1n t\u1ea3i \u0111\u1ec1u \u0111\u01b0\u1ee3c m\u00e3 h\u00f3a.<\/p>\n<p><strong>S\u1eed d\u1ee5ng SSH Key thay v\u00ec Password:<\/strong> Thay v\u00ec d\u00f9ng m\u1eadt kh\u1ea9u cho SSH, h\u00e3y t\u1ea1o c\u1eb7p kh\u00f3a Public\/Private Key. \u0110\u00e2y l\u00e0 ti\u00eau chu\u1ea9n b\u1ea3o m\u1eadt cao c\u1ea5p nh\u1ea5t hi\u1ec7n nay.<\/p>\n<h3><span class=\"ez-toc-section\" id=\"5-Phan-quyen-tep-va-thu-muc-dung-chuan\"><\/span>5. Ph\u00e2n quy\u1ec1n t\u1ec7p v\u00e0 th\u01b0 m\u1ee5c \u0111\u00fang chu\u1ea9n<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>Ph\u00e2n quy\u1ec1n file (file permissions) trong Linux x\u00e1c \u0111\u1ecbnh ai c\u00f3 th\u1ec3 \u0111\u1ecdc, ghi ho\u1eb7c th\u1ef1c thi m\u1ed9t t\u1ec7p. C\u1ea5u h\u00ecnh sai d\u1eabn \u0111\u1ebfn hai nguy c\u01a1: t\u1ec7p nh\u1ea1y c\u1ea3m b\u1ecb \u0111\u1ecdc t\u1eeb b\u00ean ngo\u00e0i, ho\u1eb7c k\u1ebb t\u1ea5n c\u00f4ng c\u00f3 th\u1ec3 ghi m\u00e3 \u0111\u1ed9c v\u00e0o t\u1ec7p c\u1ee7a b\u1ea1n.<\/p>\n<div style=\"overflow-x: auto; margin: 20px 0;\">\n<table style=\"width: 100%; border-collapse: collapse; font-family: Arial, sans-serif; box-shadow: 0 4px 12px rgba(0,0,0,0.08); border-radius: 8px; overflow: hidden;\">\n<thead>\n<tr style=\"background: linear-gradient(90deg,#0C40F4,#077FFA,#0497FC); color: #ffffff;\">\n<th style=\"padding: 12px; border: 1px solid #e5e7eb; text-align: left;\">Lo\u1ea1i t\u1ec7p\/th\u01b0 m\u1ee5c<\/th>\n<th style=\"padding: 12px; border: 1px solid #e5e7eb; text-align: left;\">Quy\u1ec1n \u0111\u00fang<\/th>\n<th style=\"padding: 12px; border: 1px solid #e5e7eb; text-align: left;\">Ghi ch\u00fa<\/th>\n<\/tr>\n<\/thead>\n<tbody>\n<tr>\n<td style=\"padding: 12px; border: 1px solid #e5e7eb; font-weight: bold;\">Th\u01b0 m\u1ee5c th\u00f4ng th\u01b0\u1eddng<\/td>\n<td style=\"padding: 12px; border: 1px solid #e5e7eb;\">755<\/td>\n<td style=\"padding: 12px; border: 1px solid #e5e7eb;\">Ch\u1ee7 s\u1edf h\u1eefu \u0111\u1ecdc\/ghi\/th\u1ef1c thi; ng\u01b0\u1eddi kh\u00e1c ch\u1ec9 \u0111\u1ecdc<\/td>\n<\/tr>\n<tr style=\"background: #f5f9ff;\">\n<td style=\"padding: 12px; border: 1px solid #e5e7eb; font-weight: bold;\">T\u1ec7p PHP, HTML<\/td>\n<td style=\"padding: 12px; border: 1px solid #e5e7eb;\">644<\/td>\n<td style=\"padding: 12px; border: 1px solid #e5e7eb;\">Ch\u1ee7 s\u1edf h\u1eefu \u0111\u1ecdc\/ghi; ng\u01b0\u1eddi kh\u00e1c ch\u1ec9 \u0111\u1ecdc<\/td>\n<\/tr>\n<tr>\n<td style=\"padding: 12px; border: 1px solid #e5e7eb; font-weight: bold;\">T\u1ec7p c\u1ea5u h\u00ecnh (wp-config.php)<\/td>\n<td style=\"padding: 12px; border: 1px solid #e5e7eb;\">400 ho\u1eb7c 440<\/td>\n<td style=\"padding: 12px; border: 1px solid #e5e7eb;\">Ch\u1ec9 ch\u1ee7 s\u1edf h\u1eefu \u0111\u1ecdc<\/td>\n<\/tr>\n<tr style=\"background: #f5f9ff;\">\n<td style=\"padding: 12px; border: 1px solid #e5e7eb; font-weight: bold;\">T\u1ec7p th\u1ef1c thi<\/td>\n<td style=\"padding: 12px; border: 1px solid #e5e7eb;\">755<\/td>\n<td style=\"padding: 12px; border: 1px solid #e5e7eb;\">Cho ph\u00e9p ch\u1ea1y khi c\u1ea7n<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<\/div>\n<p>Trong cPanel, v\u00e0o <strong>Files<\/strong> \u2192 <strong>File Manager<\/strong>, nh\u1ea5p chu\u1ed9t ph\u1ea3i v\u00e0o t\u1ec7p\/th\u01b0 m\u1ee5c v\u00e0 ch\u1ecdn <strong>Change Permissions<\/strong> \u0111\u1ec3 \u0111i\u1ec1u ch\u1ec9nh. Kh\u00f4ng \u0111\u1eb7t quy\u1ec1n 777 (cho ph\u00e9p t\u1ea5t c\u1ea3 ghi t\u00f9y \u00fd) tr\u1eeb tr\u01b0\u1eddng h\u1ee3p th\u1ef1c s\u1ef1 c\u1ea7n thi\u1ebft v\u00e0 ch\u1ec9 t\u1ea1m th\u1eddi.<\/p>\n<h3><span class=\"ez-toc-section\" id=\"6-Tat-cac-module-PHP-va-chuc-nang-nguy-hiem\"><\/span>6. T\u1eaft c\u00e1c module PHP v\u00e0 ch\u1ee9c n\u0103ng nguy hi\u1ec3m<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>PHP l\u00e0 ng\u00f4n ng\u1eef ch\u1ea1y h\u1ea7u h\u1ebft website tr\u00ean cPanel (WordPress, Joomla, Magento&#8230;). M\u1ed9t s\u1ed1 h\u00e0m PHP m\u1eb7c \u0111\u1ecbnh cho ph\u00e9p th\u1ef1c thi l\u1ec7nh h\u1ec7 th\u1ed1ng \u2014 \u0111\u00e2y l\u00e0 m\u1ee5c ti\u00eau khai th\u00e1c ph\u1ed5 bi\u1ebfn.<\/p>\n<p>Trong cPanel, v\u00e0o <em><strong>Software<\/strong> \u2192 <strong>Select PHP Version<\/strong> \u2192 <strong>Options<\/strong><\/em> \u0111\u1ec3 t\u1eaft c\u00e1c h\u00e0m nguy hi\u1ec3m. C\u00e1c h\u00e0m c\u1ea7n v\u00f4 hi\u1ec7u h\u00f3a ph\u1ed5 bi\u1ebfn g\u1ed3m: <code>exec<\/code>, <code>passthru<\/code>, <code>shell_exec<\/code>, <code>system<\/code>, <code>proc_open<\/code>, <code>popen<\/code>, <code>show_source<\/code>, <code>phpinfo<\/code>.<\/p>\n<h3><span class=\"ez-toc-section\" id=\"7-Bat-tuong-lua-va-ModSecurity\"><\/span>7. B\u1eadt t\u01b0\u1eddng l\u1eeda v\u00e0 ModSecurity<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p><strong>ModSecurity<\/strong> l\u00e0 Web Application Firewall (WAF) t\u00edch h\u1ee3p v\u00e0o m\u00e1y ch\u1ee7 Apache \u2014 l\u1edbp b\u1ea3o v\u1ec7 \u0111\u1ee9ng tr\u01b0\u1edbc website v\u00e0 l\u1ecdc c\u00e1c request \u0111\u1ed9c h\u1ea1i tr\u01b0\u1edbc khi ch\u00fang \u0111\u1ebfn \u0111\u01b0\u1ee3c m\u00e3 ngu\u1ed3n.<\/p>\n<p>Nh\u00e0 cung c\u1ea5p hosting ch\u1ea1y cPanel th\u01b0\u1eddng c\u00f3 t\u00f9y ch\u1ecdn b\u1eadt ModSecurity trong WHM (<em>Security Center \u2192 ModSecurity<\/em>). N\u1ebfu b\u1ea1n d\u00f9ng shared hosting, li\u00ean h\u1ec7 nh\u00e0 cung c\u1ea5p \u0111\u1ec3 x\u00e1c nh\u1eadn ModSecurity c\u00f3 \u0111ang ho\u1ea1t \u0111\u1ed9ng kh\u00f4ng.<\/p>\n<p>ModSecurity v\u1edbi ruleset OWASP CRS (Core Rule Set) ch\u1eb7n c\u00e1c cu\u1ed9c t\u1ea5n c\u00f4ng ph\u1ed5 bi\u1ebfn nh\u01b0 SQL Injection, Cross-Site Scripting (XSS), Remote File Inclusion (RFI), v\u00e0 Local File Inclusion (LFI) \u2014 b\u1ed1n lo\u1ea1i t\u1ea5n c\u00f4ng chi\u1ebfm ph\u1ea7n l\u1edbn s\u1ef1 c\u1ed1 b\u1ea3o m\u1eadt website th\u1ef1c t\u1ebf.<\/p>\n<p>Hosting InterData t\u00edch h\u1ee3p <strong>Imunify360<\/strong> \u2014 gi\u1ea3i ph\u00e1p b\u1ea3o m\u1eadt to\u00e0n di\u1ec7n h\u01a1n ModSecurity \u0111\u01a1n thu\u1ea7n, k\u1ebft h\u1ee3p WAF, qu\u00e9t malware th\u1eddi gian th\u1ef1c v\u00e0 c\u01a1 ch\u1ebf h\u1ecdc m\u00e1y \u0111\u1ec3 nh\u1eadn di\u1ec7n m\u1eabu t\u1ea5n c\u00f4ng m\u1edbi.<\/p>\n<h3><span class=\"ez-toc-section\" id=\"8-Bao-ve-thu-muc-quan-tri-bang-mat-khau-Directory-Privacy\"><\/span>8. B\u1ea3o v\u1ec7 th\u01b0 m\u1ee5c qu\u1ea3n tr\u1ecb b\u1eb1ng m\u1eadt kh\u1ea9u (Directory Privacy)<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>V\u1edbi WordPress, th\u01b0 m\u1ee5c <code>\/wp-admin<\/code> l\u00e0 \u0111\u00edch t\u1ea5n c\u00f4ng brute-force ph\u1ed5 bi\u1ebfn. cPanel cung c\u1ea5p t\u00ednh n\u0103ng <strong>Directory Privacy<\/strong> (t\u1ea1i <em>Files \u2192 Directory Privacy<\/em>) cho ph\u00e9p \u0111\u1eb7t th\u00eam m\u1ed9t l\u1edbp x\u00e1c th\u1ef1c HTTP Basic Auth tr\u01b0\u1edbc khi v\u00e0o th\u01b0 m\u1ee5c.<\/p>\n<p>Sau khi b\u1eadt, b\u1ea5t k\u1ef3 ai truy c\u1eadp <code>\/wp-admin<\/code> s\u1ebd th\u1ea5y h\u1ed9p tho\u1ea1i nh\u1eadp t\u00ean \u0111\u0103ng nh\u1eadp v\u00e0 m\u1eadt kh\u1ea9u c\u1ee7a tr\u00ecnh duy\u1ec7t \u2014 tr\u01b0\u1edbc c\u1ea3 trang \u0111\u0103ng nh\u1eadp WordPress. Ngay c\u1ea3 khi bot bi\u1ebft t\u00ean mi\u1ec1n, ch\u00fang kh\u00f4ng th\u1ec3 ti\u1ebfp c\u1eadn form \u0111\u0103ng nh\u1eadp \u0111\u1ec3 th\u1eed m\u1eadt kh\u1ea9u.<\/p>\n<p>Ph\u01b0\u01a1ng ph\u00e1p n\u00e0y \u0111\u1eb7c bi\u1ec7t hi\u1ec7u qu\u1ea3 k\u1ebft h\u1ee3p v\u1edbi gi\u1edbi h\u1ea1n \u0111\u0103ng nh\u1eadp th\u1ea5t b\u1ea1i (Login Lockdown plugin tr\u00ean WordPress).<\/p>\n<h3><span class=\"ez-toc-section\" id=\"9-Thiet-lap-hotlink-protection-va-Leech-Protection\"><\/span>9. Thi\u1ebft l\u1eadp hotlink protection v\u00e0 Leech Protection<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>Hotlink Protection ng\u0103n website kh\u00e1c nh\u00fang tr\u1ef1c ti\u1ebfp h\u00ecnh \u1ea3nh, video ho\u1eb7c t\u1ec7p t\u1eeb hosting c\u1ee7a b\u1ea1n m\u00e0 kh\u00f4ng c\u1ea7n t\u1ea3i v\u1ec1 \u2014 ti\u00eau t\u1ed1n b\u0103ng th\u00f4ng m\u00e0 b\u1ea1n ph\u1ea3i tr\u1ea3.<\/p>\n<p><strong>Leech Protection<\/strong> (t\u1ea1i <em>Security \u2192 Leech Protection<\/em>) ph\u00e1t hi\u1ec7n khi t\u00e0i kho\u1ea3n th\u00e0nh vi\u00ean c\u00f3 b\u1ea3o v\u1ec7 m\u1eadt kh\u1ea9u b\u1ecb chia s\u1ebb c\u00f4ng khai. Khi s\u1ed1 l\u01b0\u1ee3ng \u0111\u0103ng nh\u1eadp t\u1eeb m\u1ed9t t\u00e0i kho\u1ea3n v\u01b0\u1ee3t ng\u01b0\u1ee1ng cho ph\u00e9p trong th\u1eddi gian ng\u1eafn, h\u1ec7 th\u1ed1ng t\u1ef1 \u0111\u1ed9ng v\u00f4 hi\u1ec7u h\u00f3a t\u00e0i kho\u1ea3n \u0111\u00f3.<\/p>\n<p>Xem th\u00eam: <strong><a href=\"https:\/\/interdata.vn\/blog\/su-dung-hotlink-protection-cpanel\/\">H\u01b0\u1edbng d\u1eabn s\u1eed d\u1ee5ng Hotlink Protection tr\u00ean cPanel Hosting t\u1eeb A-Z<\/a><\/strong><\/p>\n<h3><span class=\"ez-toc-section\" id=\"10-Vo-hieu-hoa-trinh-soan-thao-file-trong-WordPress-qua-cPanel\"><\/span>10. V\u00f4 hi\u1ec7u h\u00f3a tr\u00ecnh so\u1ea1n th\u1ea3o file trong WordPress qua cPanel<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>WordPress m\u1eb7c \u0111\u1ecbnh cho ph\u00e9p ch\u1ec9nh s\u1eeda file PHP theme v\u00e0 plugin ngay t\u1eeb Dashboard. N\u1ebfu t\u00e0i kho\u1ea3n WordPress b\u1ecb x\u00e2m ph\u1ea1m, k\u1ebb t\u1ea5n c\u00f4ng c\u00f3 th\u1ec3 ch\u00e8n m\u00e3 \u0111\u1ed9c v\u00e0o m\u00e3 ngu\u1ed3n website m\u00e0 kh\u00f4ng c\u1ea7n truy c\u1eadp FTP.<\/p>\n<h3><span class=\"ez-toc-section\" id=\"11-Theo-doi-log-truy-cap-va-bat-canh-bao-bat-thuong\"><\/span>11. Theo d\u00f5i log truy c\u1eadp v\u00e0 b\u1eadt c\u1ea3nh b\u00e1o b\u1ea5t th\u01b0\u1eddng<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>Log truy c\u1eadp ghi l\u1ea1i m\u1ecdi request \u0111\u1ebfn m\u00e1y ch\u1ee7 \u2014 l\u00e0 ngu\u1ed3n th\u00f4ng tin quan tr\u1ecdng \u0111\u1ec3 ph\u00e1t hi\u1ec7n t\u1ea5n c\u00f4ng s\u1edbm.<\/p>\n<p>D\u1ea5u hi\u1ec7u \u0111\u00e1ng ch\u00fa \u00fd trong log:<\/p>\n<ul>\n<li>H\u00e0ng tr\u0103m request \u0111\u1ebfn c\u00f9ng m\u1ed9t URL trong v\u00e0i ph\u00fat (brute-force ho\u1eb7c DDoS)<\/li>\n<li>Truy c\u1eadp v\u00e0o c\u00e1c \u0111\u01b0\u1eddng d\u1eabn kh\u00f4ng t\u1ed3n t\u1ea1i nh\u01b0 <code>\/wp-login.php<\/code>, <code>\/admin<\/code>, <code>\/xmlrpc.php<\/code><\/li>\n<li>M\u00e3 l\u1ed7i 500 li\u00ean t\u1ee5c t\u1eeb c\u00f9ng m\u1ed9t IP<\/li>\n<li>Truy c\u1eadp t\u1eeb IP thu\u1ed9c c\u00e1c qu\u1ed1c gia kh\u00f4ng ph\u1ea3i th\u1ecb tr\u01b0\u1eddng m\u1ee5c ti\u00eau<\/li>\n<\/ul>\n<p>Nhi\u1ec1u nh\u00e0 cung c\u1ea5p hosting h\u1ed7 tr\u1ee3 thi\u1ebft l\u1eadp c\u1ea3nh b\u00e1o email khi ph\u00e1t hi\u1ec7n ho\u1ea1t \u0111\u1ed9ng b\u1ea5t th\u01b0\u1eddng. K\u1ebft h\u1ee3p v\u1edbi Imunify360 ho\u1eb7c Wordfence (WordPress), h\u1ec7 th\u1ed1ng c\u00f3 th\u1ec3 t\u1ef1 \u0111\u1ed9ng ch\u1eb7n IP t\u1ea5n c\u00f4ng m\u00e0 kh\u00f4ng c\u1ea7n can thi\u1ec7p th\u1ee7 c\u00f4ng.<\/p>\n<h3><span class=\"ez-toc-section\" id=\"12-Sao-luu-du-lieu-dinh-ky-va-kiem-tra-khoi-phuc\"><\/span>12. Sao l\u01b0u d\u1eef li\u1ec7u \u0111\u1ecbnh k\u1ef3 v\u00e0 ki\u1ec3m tra kh\u00f4i ph\u1ee5c<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>Sao l\u01b0u kh\u00f4ng ph\u1ea3i bi\u1ec7n ph\u00e1p ph\u00f2ng ng\u1eeba t\u1ea5n c\u00f4ng, nh\u01b0ng l\u00e0 bi\u1ec7n ph\u00e1p ph\u1ee5c h\u1ed3i khi m\u1ecdi l\u1edbp b\u1ea3o m\u1eadt \u0111\u1ec1u th\u1ea5t b\u1ea1i. Th\u1ef1c t\u1ebf cho th\u1ea5y nhi\u1ec1u doanh nghi\u1ec7p thi\u1ec7t h\u1ea1i n\u1eb7ng kh\u00f4ng ph\u1ea3i v\u00ec b\u1ecb t\u1ea5n c\u00f4ng, m\u00e0 v\u00ec kh\u00f4ng c\u00f3 b\u1ea3n sao l\u01b0u h\u1ee3p l\u1ec7 \u0111\u1ec3 ph\u1ee5c h\u1ed3i.<\/p>\n<h3><span class=\"ez-toc-section\" id=\"13-Cap-nhat-phan-mem-va-xoa-ung-dung-khong-dung\"><\/span>13. C\u1eadp nh\u1eadt ph\u1ea7n m\u1ec1m v\u00e0 x\u00f3a \u1ee9ng d\u1ee5ng kh\u00f4ng d\u00f9ng<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>Phi\u00ean b\u1ea3n l\u1ed7i th\u1eddi c\u1ee7a PHP, WordPress, plugin ho\u1eb7c theme l\u00e0 nguy\u00ean nh\u00e2n h\u00e0ng \u0111\u1ea7u g\u00e2y ra s\u1ef1 c\u1ed1 b\u1ea3o m\u1eadt. M\u1ed7i phi\u00ean b\u1ea3n m\u1edbi kh\u00f4ng ch\u1ec9 b\u1ed5 sung t\u00ednh n\u0103ng m\u00e0 c\u00f2n v\u00e1 c\u00e1c l\u1ed7 h\u1ed5ng b\u1ea3o m\u1eadt \u0111\u00e3 \u0111\u01b0\u1ee3c c\u00f4ng b\u1ed1.<\/p>\n<p>PHP 7.4 \u0111\u00e3 h\u1ebft h\u1ed7 tr\u1ee3 t\u1eeb th\u00e1ng 11\/2022; PHP 8.0 h\u1ebft h\u1ed7 tr\u1ee3 t\u1eeb th\u00e1ng 11\/2023. Phi\u00ean b\u1ea3n \u0111\u01b0\u1ee3c khuy\u1ebfn ngh\u1ecb hi\u1ec7n t\u1ea1i l\u00e0 PHP 8.2 tr\u1edf l\u00ean.<\/p>\n<p>V\u1edbi WordPress, b\u1eadt t\u1ef1 \u0111\u1ed9ng c\u1eadp nh\u1eadt nh\u1ecf (minor updates) v\u00e0 ki\u1ec3m tra th\u1ee7 c\u00f4ng c\u1eadp nh\u1eadt l\u1edbn. Plugin v\u00e0 theme kh\u00f4ng c\u00f2n s\u1eed d\u1ee5ng n\u00ean \u0111\u01b0\u1ee3c x\u00f3a ho\u00e0n to\u00e0n \u2014 kh\u00f4ng ch\u1ec9 v\u00f4 hi\u1ec7u h\u00f3a \u2014 v\u00ec m\u00e3 ngu\u1ed3n v\u1eabn t\u1ed3n t\u1ea1i tr\u00ean m\u00e1y ch\u1ee7 v\u00e0 v\u1eabn c\u00f3 th\u1ec3 b\u1ecb khai th\u00e1c.<\/p>\n<h3><span class=\"ez-toc-section\" id=\"14-Cau-hinh-email-authentication-SPF-DKIM-va-DMARC\"><\/span>14. C\u1ea5u h\u00ecnh email authentication: SPF, DKIM v\u00e0 DMARC<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>B\u1ea3o m\u1eadt hosting kh\u00f4ng ch\u1ec9 l\u00e0 b\u1ea3o v\u1ec7 website \u2014 email c\u0169ng l\u00e0 b\u1ec1 m\u1eb7t t\u1ea5n c\u00f4ng quan tr\u1ecdng. Thi\u1ebfu c\u1ea5u h\u00ecnh x\u00e1c th\u1ef1c email d\u1eabn \u0111\u1ebfn nguy c\u01a1 gi\u1ea3 m\u1ea1o danh t\u00ednh (email spoofing) v\u00e0 b\u1ecb \u0111\u00e1nh d\u1ea5u spam.<\/p>\n<ul>\n<li><strong>SPF (Sender Policy Framework):<\/strong> Khai b\u00e1o m\u00e1y ch\u1ee7 n\u00e0o \u0111\u01b0\u1ee3c ph\u00e9p g\u1eedi email nh\u00e2n danh t\u00ean mi\u1ec1n c\u1ee7a b\u1ea1n. Trong cPanel, v\u00e0o <em>Email \u2192 Email Deliverability<\/em> \u0111\u1ec3 ki\u1ec3m tra v\u00e0 b\u1eadt SPF t\u1ef1 \u0111\u1ed9ng.<\/li>\n<li><strong>DKIM (DomainKeys Identified Mail):<\/strong> Th\u00eam ch\u1eef k\u00fd s\u1ed1 v\u00e0o email g\u1eedi \u0111i, cho ph\u00e9p m\u00e1y ch\u1ee7 nh\u1eadn x\u00e1c minh email th\u1ef1c s\u1ef1 \u0111\u1ebfn t\u1eeb t\u00ean mi\u1ec1n \u0111\u00f3. K\u00edch ho\u1ea1t t\u1ea1i <em>Email \u2192 Email Deliverability \u2192 Repair<\/em>.<\/li>\n<li><strong>DMARC:<\/strong> Ch\u00ednh s\u00e1ch x\u1eed l\u00fd email kh\u00f4ng qua \u0111\u01b0\u1ee3c ki\u1ec3m tra SPF ho\u1eb7c DKIM.<\/li>\n<\/ul>\n<h3><span class=\"ez-toc-section\" id=\"15-Gioi-han-quyen-truy-cap-cho-tung-tai-khoan-con\"><\/span>15. Gi\u1edbi h\u1ea1n quy\u1ec1n truy c\u1eadp cho t\u1eebng t\u00e0i kho\u1ea3n con<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>cPanel cho ph\u00e9p t\u1ea1o t\u00e0i kho\u1ea3n FTP ph\u1ee5, t\u00e0i kho\u1ea3n email, t\u00e0i kho\u1ea3n c\u01a1 s\u1edf d\u1eef li\u1ec7u v\u1edbi ph\u1ea1m vi truy c\u1eadp gi\u1edbi h\u1ea1n. Nguy\u00ean t\u1eafc <strong>least privilege<\/strong> (\u0111\u1eb7c quy\u1ec1n t\u1ed1i thi\u1ec3u) trong b\u1ea3o m\u1eadt th\u00f4ng tin y\u00eau c\u1ea7u m\u1ed7i t\u00e0i kho\u1ea3n ch\u1ec9 \u0111\u01b0\u1ee3c c\u1ea5p \u0111\u00fang quy\u1ec1n c\u1ea7n thi\u1ebft \u2014 kh\u00f4ng h\u01a1n.<\/p>\n<p>V\u00ed d\u1ee5 th\u1ef1c t\u1ebf: N\u1ebfu thu\u00ea nh\u00e0 thi\u1ebft k\u1ebf ch\u1ec9nh s\u1eeda giao di\u1ec7n WordPress, t\u1ea1o cho h\u1ecd t\u00e0i kho\u1ea3n FTP ri\u00eang ch\u1ec9 tr\u1ecf v\u00e0o th\u01b0 m\u1ee5c <code>\/wp-content\/themes<\/code> \u2014 kh\u00f4ng ph\u1ea3i t\u00e0i kho\u1ea3n FTP g\u1ed1c truy c\u1eadp to\u00e0n b\u1ed9 hosting. Khi h\u1ee3p t\u00e1c k\u1ebft th\u00fac, x\u00f3a t\u00e0i kho\u1ea3n \u0111\u00f3 ngay.<\/p>\n<p>V\u1edbi c\u01a1 s\u1edf d\u1eef li\u1ec7u MySQL, m\u1ed7i website n\u00ean d\u00f9ng m\u1ed9t t\u00e0i kho\u1ea3n database ri\u00eang v\u1edbi quy\u1ec1n ch\u1ec9 gi\u1edbi h\u1ea1n tr\u00ean database c\u1ee7a website \u0111\u00f3 (kh\u00f4ng d\u00f9ng t\u00e0i kho\u1ea3n <code>root<\/code>).<\/p>\n<h3><span class=\"ez-toc-section\" id=\"16-Scan-malware-dinh-ky-voi-cong-cu-tich-hop\"><\/span>16. Scan malware \u0111\u1ecbnh k\u1ef3 v\u1edbi c\u00f4ng c\u1ee5 t\u00edch h\u1ee3p<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>Ngay c\u1ea3 khi \u0111\u00e3 \u00e1p d\u1ee5ng m\u1ecdi bi\u1ec7n ph\u00e1p ph\u00f2ng ng\u1eeba, qu\u00e9t malware \u0111\u1ecbnh k\u1ef3 v\u1eabn l\u00e0 th\u00f3i quen c\u1ea7n thi\u1ebft. Malware \u0111\u00f4i khi t\u1ed3n t\u1ea1i \u00e2m th\u1ea7m trong nhi\u1ec1u tu\u1ea7n tr\u01b0\u1edbc khi g\u00e2y thi\u1ec7t h\u1ea1i r\u00f5 r\u00e0ng.<\/p>\n<p>C\u00f4ng c\u1ee5 ph\u1ed5 bi\u1ebfn t\u00edch h\u1ee3p trong m\u00f4i tr\u01b0\u1eddng cPanel:<\/p>\n<ul>\n<li><strong>Imunify360<\/strong> (InterData v\u00e0 nhi\u1ec1u nh\u00e0 cung c\u1ea5p l\u1edbn): Qu\u00e9t th\u1eddi gian th\u1ef1c, c\u00e1ch ly t\u1ec7p \u0111\u1ed9c h\u1ea1i t\u1ef1 \u0111\u1ed9ng<\/li>\n<li><strong>ClamAV<\/strong>: Ph\u1ea7n m\u1ec1m di\u1ec7t virus m\u00e3 ngu\u1ed3n m\u1edf, c\u00f3 th\u1ec3 k\u00edch ho\u1ea1t qua WHM<\/li>\n<li><strong>Wordfence \/ MalCare<\/strong> (WordPress): Qu\u00e9t m\u00e3 ngu\u1ed3n t\u1ea1i t\u1ea7ng \u1ee9ng d\u1ee5ng, ph\u00e1t hi\u1ec7n thay \u0111\u1ed5i b\u1ea5t th\u01b0\u1eddng trong file core<\/li>\n<\/ul>\n<p>L\u1ecbch qu\u00e9t khuy\u1ebfn ngh\u1ecb: T\u1ef1 \u0111\u1ed9ng h\u00e0ng ng\u00e0y v\u1edbi b\u00e1o c\u00e1o qua email, ki\u1ec3m tra th\u1ee7 c\u00f4ng sau m\u1ed7i l\u1ea7n c\u00e0i plugin\/theme m\u1edbi ho\u1eb7c sau khi c\u00f3 th\u00f4ng b\u00e1o l\u1ed7 h\u1ed5ng b\u1ea3o m\u1eadt li\u00ean quan \u0111\u1ebfn ph\u1ea7n m\u1ec1m \u0111ang d\u00f9ng.<\/p>\n<p>Ng\u01b0\u1eddi m\u1edbi c\u00f3 th\u1ec3 b\u1eaft \u0111\u1ea7u v\u1edbi 5 b\u01b0\u1edbc \u01b0u ti\u00ean cao nh\u1ea5t: \u0111\u1ed5i m\u1eadt kh\u1ea9u m\u1ea1nh + b\u1eadt 2FA, k\u00edch ho\u1ea1t AutoSSL, thi\u1ebft l\u1eadp ph\u00e2n quy\u1ec1n t\u1ec7p \u0111\u00fang, c\u1eadp nh\u1eadt PHP v\u00e0 ph\u1ea7n m\u1ec1m l\u00ean phi\u00ean b\u1ea3n \u0111\u01b0\u1ee3c h\u1ed7 tr\u1ee3, v\u00e0 b\u1eadt sao l\u01b0u t\u1ef1 \u0111\u1ed9ng. N\u0103m b\u01b0\u1edbc n\u00e0y \u0111\u00e3 lo\u1ea1i b\u1ecf ph\u1ea7n l\u1edbn nguy c\u01a1 th\u00f4ng th\u01b0\u1eddng.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>T\u1ed4NG QUAN NHANH B\u1ea3o m\u1eadt hosting cPanel l\u00e0 t\u1eadp h\u1ee3p c\u00e1c bi\u1ec7n ph\u00e1p k\u1ef9 thu\u1eadt \u0111\u01b0\u1ee3c c\u1ea5u h\u00ecnh trong m\u00f4i tr\u01b0\u1eddng cPanel\/WHM nh\u1eb1m ng\u0103n ch\u1eb7n truy c\u1eadp tr\u00e1i ph\u00e9p, m\u00e3 \u0111\u1ed9c, t\u1ea5n c\u00f4ng brute-force v\u00e0 r\u00f2 r\u1ec9 d\u1eef li\u1ec7u website. B\u00e0i vi\u1ebft n\u00e0y cung c\u1ea5p checklist k\u1ef9 thu\u1eadt th\u1ef1c chi\u1ebfn \u2014 \u00e1p d\u1ee5ng \u0111\u01b0\u1ee3c ngay<\/p>\n","protected":false},"author":11,"featured_media":40121,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[],"class_list":["post-40096","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-hosting"],"_links":{"self":[{"href":"https:\/\/interdata.vn\/blog\/wp-json\/wp\/v2\/posts\/40096","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/interdata.vn\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/interdata.vn\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/interdata.vn\/blog\/wp-json\/wp\/v2\/users\/11"}],"replies":[{"embeddable":true,"href":"https:\/\/interdata.vn\/blog\/wp-json\/wp\/v2\/comments?post=40096"}],"version-history":[{"count":8,"href":"https:\/\/interdata.vn\/blog\/wp-json\/wp\/v2\/posts\/40096\/revisions"}],"predecessor-version":[{"id":40443,"href":"https:\/\/interdata.vn\/blog\/wp-json\/wp\/v2\/posts\/40096\/revisions\/40443"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/interdata.vn\/blog\/wp-json\/wp\/v2\/media\/40121"}],"wp:attachment":[{"href":"https:\/\/interdata.vn\/blog\/wp-json\/wp\/v2\/media?parent=40096"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/interdata.vn\/blog\/wp-json\/wp\/v2\/categories?post=40096"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/interdata.vn\/blog\/wp-json\/wp\/v2\/tags?post=40096"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}