All Products
Document Center

Web vulnerability detection FAQ

Last Updated: May 09, 2018

If Alibaba Cloud Security notifies me of a vulnerability, do I need to modify the codes on my server to fix the vulnerability or does Alibaba Cloud Security fix it automatically?

Currently, the web vulnerability detection service and Trojan horse detection service only provide the detection function and recommended solution. The services cannot automatically fix vulnerabilities. You need to modify the code to fix the vulnerability. The Alibaba Cloud Security WAF service provides automatic attack defense.

Is the reduced performance of my host server caused by frequent cloud vulnerability scans?

The vulnerability scan frequency is typically 3 qps (number of requests every second), and may fluctuate from 1 qps to 5 qps. We recommend that you enable, then disable, the cloud security checking function to verify the cause of reduced performance.

Can I disable the Alibaba Cloud Security web vulnerability detection function?

Yes, you can disable it on the Alibaba Cloud Security console.