Dspace virus

[Maya Zbitneva]

Good day!

 Could you please help me to solve the following problem:

 I have problems with cryptominer virus.

https://www.digitalocean.com/community/questions/javaupdates-taking-99-9-cpu-utilization-in-this-case-java-is-not-running-how-to-kill-the-event-permanently-or-alternate-solution

It has already penetrated inside my web server several times where I have DSpace installed. The virus always penetrates inside my webserver as tomcat user. At the moment, my web server only has Dspace on Apache Tomcat Ubuntu.

I have implemented the following procedures to protect my web server from it:

1)    Change of password on Ubuntu, DSpace repository and users of tomcat.

2)    Hiding of main page of tomcat by renaming of a main page of tomcat.

 This virus penetrates my web server anyway. Please advise how to protect my web server from this virus. Am I right that I should add https to my Dspace repository?

In this case, can I use let’s encrypt https://letsencrypt.org/uk/ ?

(https://medium.com/@raupach/how-to-install-lets-encrypt-with-tomcat-3db8a469e3d2)

Please write, maybe some other precautions need to be taken to get rid of the penetration of viruses through the Internet to my web server?

 

With respect,

Zbitniieva Maiia,

System administrator,

Municipal establishment

"Kharkiv humanitarian-pedagogical academy"

of the kharkiv regional council,

Ukraine.