HSS
What Is HSS?
Host Security Service (HSS) is designed to improve the overall security for ECSs. It helps you identify and manage the information on your ECSs, eliminate risks, and defend against intrusions and web page tampering.
After installing the HSS agent on your ECSs, you will be able to check the ECS security status and risks in a region on the HSS console.
How Do I Use HSS?
Before using the HSS service, install the HSS agent on your ECS. The installation method varies depending on whether your ECS is to be created or already exists.
- Scenario 1: An ECS is to be created.
When you use certain public images to create ECSs, you are advised to use HSS to protect your ECSs.
Select one of the following options:- HSS basic edition (free): provides HSS basic edition (1-month free trial), account cracking protection, weak password detection, and malicious program detection.
After the free trial period expires, the HSS basic edition quotas will be automatically released, and HSS will not protect your servers.
If you want to retain or upgrade HSS security capabilities, you are advised to purchase HSS. For details, see Editions and Features.
This option is selected by default.
- Advanced HSS edition (paid): provides HSS enterprise edition, vulnerability patches, virus scan and removal, and graded protection.
- None: Do not use security protection.
After you enable HSS, the system automatically installs the HSS agent, enables account cracking prevention, and offers host security functions.
HSS provides basic, enterprise, premium, and WTP editions. For details, see Edition Details.
If the basic or enterprise edition does not meet service requirements, you can Purchasing an HSS Quota and switch the edition on the HSS console to obtain advanced protection without reinstalling the agent.
Figure 1 Enabling HSS
- HSS basic edition (free): provides HSS basic edition (1-month free trial), account cracking protection, weak password detection, and malicious program detection.
- Scenario 2: An ECS is already created and HSS is not configured for it.
For an existing ECS without HSS configured, you can manually install an Agent on it.
For details, see Installing an Agent on the Linux OS and Enabling Protection.
How Do I Check Host Security Statuses?
On the Server tab, you can view the ECS security statuses in the current region.
- Log in to the management console.
- Click
and choose Security & Compliance > Host Security Service. - On the Server tab, check the ECS security statuses.
Figure 2 ECS security statuses
Table 1 Statuses Parameter
Description
Agent Status
- Not installed: The agent has not been started or even has not been installed.
- Online: The agent is running properly.
- Offline: The agent fails to communicate with the HSS server. Therefore, HSS cannot protect your ECS.
Click Offline. Then, the ECSs with agent being offline and the offline reasons are displayed.
Protection Status
- Enabled: The ECS is properly protected using HSS.
- Disabled: HSS has been disabled on the ECS. If an ECS does not need protection, disable HSS on it to reduce its resource consumption.
Detection Result
- Risky: The ECS is risky.
- Safe: No risks are detected.
- Pending risk detection: HSS is not enabled for the ECS.
For more details, see What Is HSS?
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
For any further questions, feel free to contact us through the chatbot.
Chatbot
