{"type":"doc","content":[{"type":"blockquote","content":[{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"近幾年,國內外刪庫跑路事件屢有發生。對企業來說,如何預防刪庫、恢復數據是值得思考的課題,而對於員工來說,也需要意識到刪庫背後的風險,用理智約束自身行爲。"}]}]},{"type":"heading","attrs":{"align":null,"level":2},"content":[{"type":"text","text":"不滿被開除,人事主管刪庫跑路留髒話"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"日前,據"},{"type":"link","attrs":{"href":"https:\/\/www.marketwatch.com\/story\/ex-hr-exec-convicted-of-trashing-companys-personnel-records-and-deleting-17-000-resumes-after-being-fired-11629230357","title":"xxx","type":null},"content":[{"type":"text","text":"外媒報道"}]},{"type":"text","text":",美國佛羅里達州 41 歲的 Medghyne Calonge 在 1-800-Accountant 在線會計師事務所工作 6 個月後,因表現不佳被公司解僱,隨後對公司系統文件進行了破壞。目前,Calonge 已被公司起訴,據外媒稱,Calonge 被判兩項損壞計算機的罪名成立,並面臨最多 15 年的監禁。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"據瞭解,Calonge 此前在 1-800-Accountant 擔任人力資源主管,並於 2019 年 6 月被解僱。據檢察官透露,Calonge 被解僱的原因之一是,她在與同事發生爭執後,不當地將該同事鎖定在計算機系統之外。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"另據檢察官透露,當 Calonge 在電話中被告知解僱時,有同事看到她反覆按下電腦上的刪除鍵。而在走出公司後,Calonge 登錄到公司用於管理就業申請的計算機系統,刪除了 17000 份求職簡歷,並在文件中留下髒話。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"檢察官表示,該公司的許多文件已無法檢索。檢察官 Audrey Strauss 認爲,“Calonge 故意和惡意地對她前僱主的電腦造成了嚴重損壞。”“她的行爲抹去了對僱主公司至關重要的信息,並花費了公司的金錢和時間來修復。”"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"調查人員稱,該公司在兩年內花費了超過 30 萬美元(約合 194 萬元人民幣)來建造被 Calonge 摧毀的系統,並花費了 10 萬美元(約合 64.7 萬元人民幣)讓系統再次運行。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"據外媒報道,在紐約接受爲期 6 天的審判後,Calonge 被判犯有兩項損壞計算機的罪名,並被判處最多 15 年的監禁。"}]},{"type":"heading","attrs":{"align":null,"level":2},"content":[{"type":"text","text":"員工惡意刪庫事件屢有發生"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"近幾年,國內外員工惡意刪庫事件屢有發生。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"此前"},{"type":"link","attrs":{"href":"https:\/\/mp.weixin.qq.com\/s\/alqOiMt1-6RIDs9I3DuVGQ","title":"xxx","type":null},"content":[{"type":"text","text":"據報道"}]},{"type":"text","text":",美國一 50 歲 IT 技術主管 Shannon Stafford 因績效不及格被勸退,隨後刪除公司全部存儲信息。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"據瞭解,Stafford 在辦理離職的時候並沒有正常退還公司下發的 MacBook Pro 設備,而直接將其拿回了家。在被解僱的當天晚上,他在家中使用這檯筆記本電腦,使用他自己的登陸憑據以及他曾幫助過的前同事的憑據,反覆嘗試遠程登陸該企業的計算機網絡,但是沒有成功。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"幾天之後的一個凌晨,他設法再次使用前同事憑證信息併成功遠程接入辦公室 PC。根據司法部的解釋,以此爲基礎,他得以“刪除華盛頓辦公室所使用的全部文件存儲驅動器(SAN file storage drives),而後更換了訪問這套存儲管理系統的密碼。”"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"檢察官表示:文件刪除行爲嚴重影響到該公司的運營,並導致部分客戶與用戶數據丟失。密碼變更則阻礙了該公司及時發現問題,並對剩餘文件加以恢復的努力。由於網絡文件存儲驅動器遭到刪除,華盛頓用戶在接下來的約三天當中無法訪問其存儲文件,直到該公司使用備份副本完成數據恢復。而在 Stafford 刪除文件之前尚未被納入最新備份副本中的客戶及用戶數據,則將永久丟失。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"最終,Stafford 被判處 1 年零 1 天的監禁。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"國內最嚴重的刪庫事件之一當屬去年的“微盟刪庫”事件。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"2020 年 2 月 23 日 18 時 56 分,微盟研發中心運維部核心運維人員賀某通過個人 VPN 登入服務器,因個人精神、生活等原因對微盟線上生產環境進行了惡意破壞,將微盟服務器內數據全部刪除,導致微盟自 2020 年 2 月 23 日 19 時起癱瘓,300 餘萬用戶(其中付費用戶 7 萬餘戶)無法正常使用該公司 SaaS 產品,經搶修於 3 月 3 日 9 時恢復運營(故障時間 8 天 14 個小時)。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"截至 2020 年 4 月 30 日,該刪庫事件造成微盟公司支付恢復數據服務費、商戶賠付費及員工加班報酬等經濟損失共計人民幣 2260 餘萬元。判決書顯示,賀某犯破壞計算機信息系統罪,判處有期徒刑 6 年。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"另一起國內比較有名的是“雲合同前技術總監報復刪庫”事件。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"根據杭州餘杭區法院 2019 年 12 月的一份刑事判決顯示,知名第三方電子合同平臺“雲合同”曾因前技術總監邱某心生不滿而遭遇“刪庫”。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"據相關資料顯示,邱某在 2014 年入職後,該公司系統均由其負責搭建,主要的系統有 SAAS 系統、API3.0 系統、API4.0 系統、唱遊系統,主要實現的是電子合同的簽署。2017 年,該公司步入正軌,所以大部分營業額都發生在 2017 年以後的一年多時間裏。2018 年 4 月,老闆宓某某找到邱某,讓其離職,理由是“想換個領導班子搏一搏”。雖然邱某遞交了辭職報告,但心裏一直不舒服。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"同年 6 月 23 日 10 時許,邱某在家中打開聯想筆記本電腦,用之前工作中掌握的阿里雲賬號登錄了公司的阿里雲,然後用數據庫賬號登錄,訪問阿里雲的數據庫,刪除了數據庫中的索引及部分表格,導致系統不能正常使用,公司業務因此不能正常開展。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"而最後邱某本人也受到了法律處罰,根據質證證據顯示,該次“刪庫”造成的直接經濟損失爲 225 萬元,故障處理人力成本 7.12 萬元。一審法院判決邱某犯破壞計算機信息系統罪,判處有期徒刑二年六個月,緩刑三年。"}]},{"type":"heading","attrs":{"align":null,"level":2},"content":[{"type":"text","text":"刪庫事件如何避免和補救?"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"回顧最近幾年的刪庫事件,我們發現並不在少數,刪庫原因也各種各樣,有誤刪,有介質損壞,也有人爲刪除的。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"至於如何預防刪庫,如何恢復數據,以下是部分"},{"type":"link","attrs":{"href":"https:\/\/www.infoq.cn\/article\/VHuKLwY1QU4vHGz3AJyt","title":"xxx","type":null},"content":[{"type":"text","text":"技術專家給出的建議"}]},{"type":"text","text":":"}]},{"type":"heading","attrs":{"align":null,"level":3},"content":[{"type":"text","text":"人肉運維是隱患"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"“直接在生產環境中敲命令是一種非常不好的習慣。”左耳朵耗子曾表示,一個公司的運維能力的強弱和上線上環境敲命令是有關的,越是喜歡上線敲命令你的運維能力就越弱,越是通過自動化來處理問題,你的運維能力就越強。真正良性的運維能力是——人管代碼,代碼管機器,而不是人管機器。你敲了什麼命令沒人知道,但是你寫個工具做變更線上系統,這個工具幹了什麼事,看看工具的源碼就知道了。"}]},{"type":"heading","attrs":{"align":null,"level":3},"content":[{"type":"text","text":"數據備份系統足夠強"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"系統是需要做數據備份的,但有時就算所有的備份都可以也會避免的出現數據丟失。左耳朵耗子表示:“如果你要讓你的備份系統隨時都可以用,那麼就要讓它隨時都 Live 着,而隨時都 Live 着的多節點系統,基本上就是一個分佈式的高可用的系統。因爲數據丟失的原因有很多種,比如掉電、磁盤損壞、中病毒等等,而那些流程、規則、人肉檢查、權限系統、checklist 等等都只是讓人不要誤操作,都不管用,這個時候,你不得不用更好的技術去設計出一個高可用的系統!別無它法!”"}]},{"type":"heading","attrs":{"align":null,"level":3},"content":[{"type":"text","text":"上雲是個好方法"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"技術專家認爲數據放在雲端的保險係數還是相對較高的,因爲雲端有足夠多的公共資源作爲支撐。其中,快照和異地遠程複製災備服務是雲端提供的非常好用的功能,建議大家使用。當發生數據刪除時,可以使用快照迅速恢復或者回滾到某個歷史時刻,然後再通過其他方法補平到最新數據狀態;而云端異地遠程複製災備服務也是比較成熟的技術,相比本地實施的容災,初期投入更加划算。"}]},{"type":"heading","attrs":{"align":null,"level":3},"content":[{"type":"text","text":"建立分級授權機制"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"即使數據容災做得再好,也難以避免內部人員的主動破壞,因此建立分級授權機制是很有必要的,高危操作必須多人仲裁表決才能執行。"}]},{"type":"heading","attrs":{"align":null,"level":2},"content":[{"type":"text","text":"寫在最後"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"按《刑法》第 286 條和相關司法解釋,“刪庫跑路”等行爲,如果造成 10 臺以上的系統無法正常運行就可以判刑,如果造成 50 臺以上則至少判處 5 年。除去入獄、鉅額罰款之外,新修訂的刑法還規定“職業禁止”,針對犯罪行爲人利用職務所從事犯罪,可以附加判決的懲罰措施,如程序員開發惡意軟件、利用黑客技術干擾、破壞網絡安全、泄露公司商業機密等等,可以判決其幾年禁止從事相關行業。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"廣大 IT 從業者,由於常年高薪高壓的生活,經常成爲網絡上調侃的對象。特別近幾年大齡危機言論盛行、暴力裁員等惡性事件頻發、常年 996 情緒壓抑過度,程序員遭遇到這些不公平待遇卻又訴訟無門。很多程序員也都表示:“刪庫跑路等就是說說而已,跑得了和尚跑不了廟。”但爲什麼還是有人甘願冒着坐牢的風險破壞公司系統,是每個管理人員應該深思的事情。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"“刪庫跑路”是無奈後的死局,無論是員工還是企業都應極力避免。"}]}]}
被解僱後心懷不滿,人事主管刪庫跑路、在系統上留髒話,面臨最多15年監禁
{"type":"doc","content":[{"type":"blockquote","content":[{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"近幾年,國內外刪庫跑路事件屢有發生。對企業來說,如何預防刪庫、恢復數據是值得思考的課題,而對於員工來說,也需要意識到刪庫背後的風險,用理智約束自身行爲。"}]}]},{"type":"heading","attrs":{"align":null,"level":2},"content":[{"type":"text","text":"不滿被開除,人事主管刪庫跑路留髒話"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"日前,據"},{"type":"link","attrs":{"href":"https:\/\/www.marketwatch.com\/story\/ex-hr-exec-convicted-of-trashing-companys-personnel-records-and-deleting-17-000-resumes-after-being-fired-11629230357","title":"xxx","type":null},"content":[{"type":"text","text":"外媒報道"}]},{"type":"text","text":",美國佛羅里達州 41 歲的 Medghyne Calonge 在 1-800-Accountant 在線會計師事務所工作 6 個月後,因表現不佳被公司解僱,隨後對公司系統文件進行了破壞。目前,Calonge 已被公司起訴,據外媒稱,Calonge 被判兩項損壞計算機的罪名成立,並面臨最多 15 年的監禁。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"據瞭解,Calonge 此前在 1-800-Accountant 擔任人力資源主管,並於 2019 年 6 月被解僱。據檢察官透露,Calonge 被解僱的原因之一是,她在與同事發生爭執後,不當地將該同事鎖定在計算機系統之外。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"另據檢察官透露,當 Calonge 在電話中被告知解僱時,有同事看到她反覆按下電腦上的刪除鍵。而在走出公司後,Calonge 登錄到公司用於管理就業申請的計算機系統,刪除了 17000 份求職簡歷,並在文件中留下髒話。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"檢察官表示,該公司的許多文件已無法檢索。檢察官 Audrey Strauss 認爲,“Calonge 故意和惡意地對她前僱主的電腦造成了嚴重損壞。”“她的行爲抹去了對僱主公司至關重要的信息,並花費了公司的金錢和時間來修復。”"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"調查人員稱,該公司在兩年內花費了超過 30 萬美元(約合 194 萬元人民幣)來建造被 Calonge 摧毀的系統,並花費了 10 萬美元(約合 64.7 萬元人民幣)讓系統再次運行。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"據外媒報道,在紐約接受爲期 6 天的審判後,Calonge 被判犯有兩項損壞計算機的罪名,並被判處最多 15 年的監禁。"}]},{"type":"heading","attrs":{"align":null,"level":2},"content":[{"type":"text","text":"員工惡意刪庫事件屢有發生"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"近幾年,國內外員工惡意刪庫事件屢有發生。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"此前"},{"type":"link","attrs":{"href":"https:\/\/mp.weixin.qq.com\/s\/alqOiMt1-6RIDs9I3DuVGQ","title":"xxx","type":null},"content":[{"type":"text","text":"據報道"}]},{"type":"text","text":",美國一 50 歲 IT 技術主管 Shannon Stafford 因績效不及格被勸退,隨後刪除公司全部存儲信息。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"據瞭解,Stafford 在辦理離職的時候並沒有正常退還公司下發的 MacBook Pro 設備,而直接將其拿回了家。在被解僱的當天晚上,他在家中使用這檯筆記本電腦,使用他自己的登陸憑據以及他曾幫助過的前同事的憑據,反覆嘗試遠程登陸該企業的計算機網絡,但是沒有成功。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"幾天之後的一個凌晨,他設法再次使用前同事憑證信息併成功遠程接入辦公室 PC。根據司法部的解釋,以此爲基礎,他得以“刪除華盛頓辦公室所使用的全部文件存儲驅動器(SAN file storage drives),而後更換了訪問這套存儲管理系統的密碼。”"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"檢察官表示:文件刪除行爲嚴重影響到該公司的運營,並導致部分客戶與用戶數據丟失。密碼變更則阻礙了該公司及時發現問題,並對剩餘文件加以恢復的努力。由於網絡文件存儲驅動器遭到刪除,華盛頓用戶在接下來的約三天當中無法訪問其存儲文件,直到該公司使用備份副本完成數據恢復。而在 Stafford 刪除文件之前尚未被納入最新備份副本中的客戶及用戶數據,則將永久丟失。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"最終,Stafford 被判處 1 年零 1 天的監禁。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"國內最嚴重的刪庫事件之一當屬去年的“微盟刪庫”事件。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"2020 年 2 月 23 日 18 時 56 分,微盟研發中心運維部核心運維人員賀某通過個人 VPN 登入服務器,因個人精神、生活等原因對微盟線上生產環境進行了惡意破壞,將微盟服務器內數據全部刪除,導致微盟自 2020 年 2 月 23 日 19 時起癱瘓,300 餘萬用戶(其中付費用戶 7 萬餘戶)無法正常使用該公司 SaaS 產品,經搶修於 3 月 3 日 9 時恢復運營(故障時間 8 天 14 個小時)。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"截至 2020 年 4 月 30 日,該刪庫事件造成微盟公司支付恢復數據服務費、商戶賠付費及員工加班報酬等經濟損失共計人民幣 2260 餘萬元。判決書顯示,賀某犯破壞計算機信息系統罪,判處有期徒刑 6 年。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"另一起國內比較有名的是“雲合同前技術總監報復刪庫”事件。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"根據杭州餘杭區法院 2019 年 12 月的一份刑事判決顯示,知名第三方電子合同平臺“雲合同”曾因前技術總監邱某心生不滿而遭遇“刪庫”。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"據相關資料顯示,邱某在 2014 年入職後,該公司系統均由其負責搭建,主要的系統有 SAAS 系統、API3.0 系統、API4.0 系統、唱遊系統,主要實現的是電子合同的簽署。2017 年,該公司步入正軌,所以大部分營業額都發生在 2017 年以後的一年多時間裏。2018 年 4 月,老闆宓某某找到邱某,讓其離職,理由是“想換個領導班子搏一搏”。雖然邱某遞交了辭職報告,但心裏一直不舒服。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"同年 6 月 23 日 10 時許,邱某在家中打開聯想筆記本電腦,用之前工作中掌握的阿里雲賬號登錄了公司的阿里雲,然後用數據庫賬號登錄,訪問阿里雲的數據庫,刪除了數據庫中的索引及部分表格,導致系統不能正常使用,公司業務因此不能正常開展。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"而最後邱某本人也受到了法律處罰,根據質證證據顯示,該次“刪庫”造成的直接經濟損失爲 225 萬元,故障處理人力成本 7.12 萬元。一審法院判決邱某犯破壞計算機信息系統罪,判處有期徒刑二年六個月,緩刑三年。"}]},{"type":"heading","attrs":{"align":null,"level":2},"content":[{"type":"text","text":"刪庫事件如何避免和補救?"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"回顧最近幾年的刪庫事件,我們發現並不在少數,刪庫原因也各種各樣,有誤刪,有介質損壞,也有人爲刪除的。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"至於如何預防刪庫,如何恢復數據,以下是部分"},{"type":"link","attrs":{"href":"https:\/\/www.infoq.cn\/article\/VHuKLwY1QU4vHGz3AJyt","title":"xxx","type":null},"content":[{"type":"text","text":"技術專家給出的建議"}]},{"type":"text","text":":"}]},{"type":"heading","attrs":{"align":null,"level":3},"content":[{"type":"text","text":"人肉運維是隱患"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"“直接在生產環境中敲命令是一種非常不好的習慣。”左耳朵耗子曾表示,一個公司的運維能力的強弱和上線上環境敲命令是有關的,越是喜歡上線敲命令你的運維能力就越弱,越是通過自動化來處理問題,你的運維能力就越強。真正良性的運維能力是——人管代碼,代碼管機器,而不是人管機器。你敲了什麼命令沒人知道,但是你寫個工具做變更線上系統,這個工具幹了什麼事,看看工具的源碼就知道了。"}]},{"type":"heading","attrs":{"align":null,"level":3},"content":[{"type":"text","text":"數據備份系統足夠強"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"系統是需要做數據備份的,但有時就算所有的備份都可以也會避免的出現數據丟失。左耳朵耗子表示:“如果你要讓你的備份系統隨時都可以用,那麼就要讓它隨時都 Live 着,而隨時都 Live 着的多節點系統,基本上就是一個分佈式的高可用的系統。因爲數據丟失的原因有很多種,比如掉電、磁盤損壞、中病毒等等,而那些流程、規則、人肉檢查、權限系統、checklist 等等都只是讓人不要誤操作,都不管用,這個時候,你不得不用更好的技術去設計出一個高可用的系統!別無它法!”"}]},{"type":"heading","attrs":{"align":null,"level":3},"content":[{"type":"text","text":"上雲是個好方法"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"技術專家認爲數據放在雲端的保險係數還是相對較高的,因爲雲端有足夠多的公共資源作爲支撐。其中,快照和異地遠程複製災備服務是雲端提供的非常好用的功能,建議大家使用。當發生數據刪除時,可以使用快照迅速恢復或者回滾到某個歷史時刻,然後再通過其他方法補平到最新數據狀態;而云端異地遠程複製災備服務也是比較成熟的技術,相比本地實施的容災,初期投入更加划算。"}]},{"type":"heading","attrs":{"align":null,"level":3},"content":[{"type":"text","text":"建立分級授權機制"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"即使數據容災做得再好,也難以避免內部人員的主動破壞,因此建立分級授權機制是很有必要的,高危操作必須多人仲裁表決才能執行。"}]},{"type":"heading","attrs":{"align":null,"level":2},"content":[{"type":"text","text":"寫在最後"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"按《刑法》第 286 條和相關司法解釋,“刪庫跑路”等行爲,如果造成 10 臺以上的系統無法正常運行就可以判刑,如果造成 50 臺以上則至少判處 5 年。除去入獄、鉅額罰款之外,新修訂的刑法還規定“職業禁止”,針對犯罪行爲人利用職務所從事犯罪,可以附加判決的懲罰措施,如程序員開發惡意軟件、利用黑客技術干擾、破壞網絡安全、泄露公司商業機密等等,可以判決其幾年禁止從事相關行業。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"廣大 IT 從業者,由於常年高薪高壓的生活,經常成爲網絡上調侃的對象。特別近幾年大齡危機言論盛行、暴力裁員等惡性事件頻發、常年 996 情緒壓抑過度,程序員遭遇到這些不公平待遇卻又訴訟無門。很多程序員也都表示:“刪庫跑路等就是說說而已,跑得了和尚跑不了廟。”但爲什麼還是有人甘願冒着坐牢的風險破壞公司系統,是每個管理人員應該深思的事情。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"“刪庫跑路”是無奈後的死局,無論是員工還是企業都應極力避免。"}]}]}
發表評論
所有評論
還沒有人評論,想成為第一個評論的人麼? 請在上方評論欄輸入並且點擊發布.
相關文章