DoS Ongoing Issue With My LT Server

Feb 15, 2007

Yesterday LT pulled the plug because of a DoS that took place on my server. I asked LT to bring back my server online so that PSM can investigate. PSM did that and then said that they had cleaned out all the tmp directories, and scanned my server with rkhunter and that it was clean. LT got the message and problem was fixed...or so I thought.

Today I got another email from LT saying that DoS is an ongoing issue with my LT server and that they will unplug my server and do a mandatory server reload if I don't do something about it and provide documentation of what was found and removed. Again, I contacted PSM about this and they investigated, only to tell me the same thing that they had cleaned out the tmp directories, and that if this continues they would have to disable common server functions. Doesn't sound too good.

Anyway, is it really hard to find out and fix this DoS problem? My server has modsecurity but no phpsuexec is installed. LT recently offered a DDOS protection server for my server and don't know if it's really necessary, is it?

Here's part of the log file that LT sent to me. There's a whole bunch of the following:

Quote:

72.232.xx.xx - - [15/Feb/2007:00:27:53 -0800] "GET / HTTP/1.0" 302 206 [url] "Mozilla/5.0 (compatible; Googlebot/2.1; [url]
72.232.xx.xx - - [15/Feb/2007:00:47:34 -0800] "GET /company/feedback.cgi HTTP/1.0" 302 226 [url] "Mozilla/5.0 (compatible; Googlebot/2.1; [url]

Kernel version: 2.4.21-47.0.1.ELsmp
OS: CentOS 3.x
CP: WHM/cPanel 10.8.2-RELEASE 119
PHP: 4.4.2
MySQL: 4.1.21-standard

View 10 Replies


ADVERTISEMENT

Ongoing Review Server.lu [week1]

Nov 5, 2009

I've been building a new services over the last two month and needed a server to host it. I've initially ordered a server at an other provider (which will be getting a very bad review shortly) but after three weeks I still didn't get the server.

While desperately browsing these forums looking for a replacement I noticed a few posts by a server.lu staff member, I've heard some good things about them in the past so I decided to send them a pm with the question if they could deliver a server with the specs I needed. Within 5 minutes I got a response (it was past 00:00 at that point, talk about service). And I think it was about 30 minutes later my server was up and running.

And as an added bonus it was a quad-core instead of the dual-core advertised. What the other provider failed to do in 3 weeks server.lu had done in a matter of minutes.

To see if that was just a lucky coincidence I ordered a 2nd server yesterday and again it was setup with a few minutes.

Server.lu is off to a very good start, my 2 month review will tell you if they can keep it up.

View 14 Replies View Related

Ongoing Blacklisting

Aug 28, 2007

For the last month I've had problems with my VPS being blacklisted, and it always seems to be around the same time of day.

Anyway, the VPS is managed, but it's a right pain the backside getting support to deal with the problem for me and sort it out. I get answers like "Its a PHP script", and when I ask which script they say they can't find out.

After getting advice from people on this forum, I asked support to setup exim so that it recorded the folder of any scripts sending out mail, but when I run grep so show any exim_mainlog entries with cwd= there is very little appearing appart from genuine mails being sent by contact forms on websites.

I managed to get evidence of a mail which caused the server to be blacklisted and sent this to support, who said the mails are being send via header injection on contact scripts, so I've got through the contact scripts and changed them, but again, still blacklisted.

I may be wrong here, but surely if someone was doing mail injection then I would be receiving copies of the mail myself as the website mails me with the enquiry, and also surely the exim_mainlog would so the folder containing the script as sending mails...but it doesnt.

I'm completely lost here, somehow mail is being sent from the server, whether it be via a script or what, but I can't(and neither can support) determine the exact script that is sending mail.

Here is a snippet of the exim_mainlog from around the time the evidence mail was sent.

Code:
Aug 25 21:59:40 awt spamd[5164]: spamd: checking message <16291601c7e75a$d5a016e0$0d4cb34c@ALLEN> for thegran:32010
Aug 25 21:59:46 awt spamd[23731]: spamd: connection from localhost [127.0.0.1] at port 47366
Aug 25 21:59:46 awt spamd[23731]: spamd: setuid to libraifa succeeded
Aug 25 21:59:46 awt spamd[23731]: spamd: checking message <494307824222.548029453854@flcjn.net> for libraifa:32006
Aug 25 21:59:48 awt spamd[5164]: spamd: identified spam (17.1/5.0) for thegran:32010 in 7.7 seconds, 1050 bytes.
Aug 25 21:59:48 awt spamd[5164]: spamd: result: Y 17 - BAYES_99,DATE_IN_PAST_06_12,FORGED_MUA_OUTLOOK,INVALID_MSGID,RCVD_IN_BL_SPAMCOP_NET,RCVD_IN_PBL,RDNS_DYNAMIC,STOX_REPLY_TYPE,URIBL_BLACK,URIBL_RHS_DOB,URIBL_SBL scantime=7.7,size=1050,user=thegran,uid=32010,required_score=5.0,rhost=localhost,raddr=127.0.0.1,rport=47347,mid=<16291601c7e75a$d5a016e0$0d4cb34c@ALLEN>,bayes=1.000000,autolearn=spam
Aug 25 21:59:48 awt spamd[28500]: prefork: child states: IB
Aug 25 21:59:52 awt spamd[23731]: spamd: identified spam (12.3/2.5) for libraifa:32006 in 6.4 seconds, 6742 bytes.
Aug 25 21:59:52 awt spamd[23731]: spamd: result: Y 12 - AXB_XMID_1212,BAYES_60,EXTRA_MPART_TYPE,HTML_IMAGE_ONLY_04,HTML_MESSAGE,MIME_HTML_MOSTLY,MPART_ALT_DIFF,RCVD_IN_PBL,RCVD_IN_XBL,RDNS_NONE scantime=6.4,size=6742,user=libraifa,uid=32006,required_score=2.5,rhost=localhost,raddr=127.0.0.1,rport=47366,mid=<494307824222.548029453854@flcjn.net>,bayes=0.654621,autolearn=no
Aug 25 21:59:52 awt spamd[28500]: prefork: child states: II
Aug 25 21:59:53 awt pop3d: LOGIN, user=andrew@myhomeonthe.net, ip=[::ffff:212.159.101.86]
Aug 25 21:59:56 awt pop3d: LOGOUT, user=andrew@myhomeonthe.net, ip=[::ffff:212.159.101.86], top=0, retr=39944, rcvd=56, sent=40746, time=3
Aug 25 22:04:12 awt spamd[5164]: spamd: connection from localhost [127.0.0.1] at port 48176
Aug 25 22:04:12 awt spamd[5164]: spamd: setuid to libraifa succeeded
Aug 25 22:04:12 awt spamd[5164]: spamd: checking message <E1IP2ng-0002eI-Eg@wear.readytogo.net> for libraifa:32006
Aug 25 22:04:20 awt spamd[5164]: spamd: clean message (-2.6/2.5) for libraifa:32006 in 7.6 seconds, 1827 bytes.
Aug 25 22:04:20 awt spamd[5164]: spamd: result: . -2 - AWL,BAYES_00 scantime=7.6,size=1827,user=libraifa,uid=32006,required_score=2.5,rhost=localhost,raddr=127.0.0.1,rport=48176,mid=<E1IP2ng-0002eI-Eg@wear.readytogo.net>,bayes=0.000000,autolearn=ham
Aug 25 22:04:20 awt spamd[28500]: prefork: child states: II
Aug 25 22:09:29 awt spamd[5164]: spamd: connection from localhost [127.0.0.1] at port 49145
Aug 25 22:09:29 awt spamd[5164]: spamd: setuid to gbtravel succeeded
Aug 25 22:09:29 awt spamd[5164]: spamd: checking message <putcgcbfbhamfer@fruitpads.com> for gbtravel:32017
Aug 25 22:09:39 awt spamd[5164]: spamd: identified spam (12.6/5.0) for gbtravel:32017 in 10.2 seconds, 5003 bytes.
Aug 25 22:09:39 awt spamd[5164]: spamd: result: Y 12 - BAYES_99,HTML_IMAGE_ONLY_32,HTML_MESSAGE,LOCALPART_IN_SUBJECT,MSGID_SPAM_LETTERS,SPF_PASS,TVD_RATWARE_MSGID_02,URIBL_BLACK,URI_NOVOWEL scantime=10.2,size=5003,user=gbtravel,uid=32017,required_score=5.0,rhost=localhost,raddr=127.0.0.1,rport=49145,mid=<putcgcbfbhamfer@fruitpads.com>,bayes=1.000000,autolearn=no
Aug 25 22:09:39 awt spamd[28500]: prefork: child states: II
Aug 25 22:10:06 awt pop3d: LOGIN, user=andrew@myhomeonthe.net, ip=[::ffff:212.159.101.86]
Aug 25 22:10:07 awt pop3d: LOGOUT, user=andrew@myhomeonthe.net, ip=[::ffff:212.159.101.86], top=0, retr=0, rcvd=12, sent=39, time=1
Aug 25 22:11:27 awt spamd[5164]: spamd: connection from localhost [127.0.0.1] at port 49520
Aug 25 22:11:27 awt spamd[5164]: spamd: setuid to libraifa succeeded
Aug 25 22:11:27 awt spamd[5164]: spamd: checking message <000601c7e75c$894ed180$0100007f@fpviosw> for libraifa:32006
Aug 25 22:11:36 awt spamd[5164]: spamd: identified spam (16.3/2.5) for libraifa:32006 in 8.5 seconds, 19328 bytes.
Aug 25 22:11:36 awt spamd[5164]: spamd: result: Y 16 - BAYES_60,HTML_IMAGE_ONLY_12,HTML_MESSAGE,HTML_SHORT_LINK_IMG_2,RCVD_IN_BL_SPAMCOP_NET,RCVD_IN_PBL,RCVD_IN_SORBS_WEB,RCVD_IN_XBL,RDNS_NONE,SHORT_HELO_AND_INLINE_IMAGE,URIBL_BLACK,URIBL_JP_SURBL,URIBL_SBL,URIBL_SC_SURBL scantime=8.5,size=19328,user=libraifa,uid=32006,required_score=2.5,rhost=localhost,raddr=127.0.0.1,rport=49520,mid=<000601c7e75c$894ed180$0100007f@fpviosw>,bayes=0.726583,autolearn=spam
Aug 25 22:11:36 awt spamd[28500]: prefork: child states: II
Aug 25 22:16:17 awt spamd[5164]: spamd: connection from localhost [127.0.0.1] at port 50217
Aug 25 22:16:17 awt spamd[5164]: spamd: setuid to sr8 succeeded
Aug 25 22:16:17 awt spamd[5164]: spamd: checking message <984907979.55364767348457@utsc.utoronto.ca> for sr8:32004
Aug 25 22:16:26 awt spamd[5164]: spamd: identified spam (12.9/5.0) for sr8:32004 in 9.3 seconds, 9431 bytes.
Aug 25 22:16:26 awt spamd[5164]: spamd: result: Y 12 - DATE_IN_FUTURE_03_06,FH_HELO_EQ_D_D_D_D,FUZZY_CREDIT,HELO_DYNAMIC_IPADDR2,HTML_MESSAGE,HTML_OBFUSCATE_10_20,MIME_HTML_ONLY,RCVD_IN_PBL,RDNS_DYNAMIC,TVD_RCVD_IP scantime=9.3,size=9431,user=sr8,uid=32004,required_score=5.0,rhost=localhost,raddr=127.0.0.1,rport=50217,mid=<984907979.55364767348457@utsc.utoronto.ca>,autolearn=spam
Aug 25 22:16:26 awt spamd[28500]: prefork: child states: II
Aug 25 22:19:29 awt pop3d: LOGIN, user=andrew@myhomeonthe.net, ip=[::ffff:212.159.101.86]
Aug 25 22:19:29 awt pop3d: LOGOUT, user=andrew@myhomeonthe.net, ip=[::ffff:212.159.101.86], top=0, retr=0, rcvd=12, sent=39, time=0
Aug 25 22:20:33 awt spamd[5164]: spamd: connection from localhost [127.0.0.1] at port 51016
Aug 25 22:20:33 awt spamd[5164]: spamd: setuid to thegran succeeded
Aug 25 22:20:33 awt spamd[5164]: spamd: checking message <21ecc01c7e75d$bbd32420$2f01a8c0@windowsa607f1d> for thegran:32010
Aug 25 22:20:41 awt spamd[5164]: spamd: identified spam (17.5/5.0) for thegran:32010 in 8.1 seconds, 1174 bytes.
Aug 25 22:20:41 awt spamd[5164]: spamd: result: Y 17 - BAYES_99,DATE_IN_PAST_06_12,FH_HOST_EQ_VERIZON_P,FORGED_MUA_OUTLOOK,INVALID_MSGID,RCVD_IN_BL_SPAMCOP_NET,RCVD_IN_PBL,RCVD_IN_SORBS_DUL,RCVD_IN_XBL,RDNS_DYNAMIC,STOX_REPLY_TYPE,URIBL_RED,URIBL_RHS_DOB scantime=8.1,size=1174,user=thegran,uid=32010,required_score=5.0,rhost=localhost,raddr=127.0.0.1,rport=51016,mid=<21ecc01c7e75d$bbd32420$2f01a8c0@windowsa607f1d>,bayes=0.999360,autolearn=spam
Aug 25 22:20:41 awt spamd[28500]: prefork: child states: II
Aug 25 22:26:21 awt spamd[5164]: spamd: connection from localhost [127.0.0.1] at port 51946
Aug 25 22:26:21 awt spamd[5164]: spamd: setuid to gbtravel succeeded
Aug 25 22:26:21 awt spamd[5164]: spamd: checking message <264166.236793146.1188032962@ourfirststep.net> for gbtravel:32017
Aug 25 22:26:30 awt spamd[5164]: spamd: identified spam (7.1/5.0) for gbtravel:32017 in 9.2 seconds, 6091 bytes.
Aug 25 22:26:30 awt spamd[5164]: spamd: result: Y 7 - AWL,BAYES_50,HTML_IMAGE_RATIO_04,HTML_MESSAGE,HTML_TAG_BALANCE_HEAD,MPART_ALT_DIFF,SPF_PASS,URIBL_BLACK,URIBL_JP_SURBL scantime=9.2,size=6091,user=gbtravel,uid=32017,required_score=5.0,rhost=localhost,raddr=127.0.0.1,rport=51946,mid=<264166.236793146.1188032962@ourfirststep.net>,bayes=0.592462,autolearn=no
Aug 25 22:26:30 awt spamd[28500]: prefork: child states: II
Aug 25 22:34:09 awt pop3d: LOGIN, user=mike@camberleydrivingschool.co.uk, ip=[::ffff:86.13.153.74]
Aug 25 22:34:10 awt pop3d: LOGOUT, user=mike@camberleydrivingschool.co.uk, ip=[::ffff:86.13.153.74], top=0, retr=2252, rcvd=50, sent=2521, time=1
Aug 25 22:51:28 awt spamd[5164]: spamd: connection from localhost [127.0.0.1] at port 55911
Aug 25 22:51:28 awt spamd[5164]: spamd: setuid to libraifa succeeded
Aug 25 22:51:28 awt spamd[5164]: spamd: checking message <3235985408.20070825170556@qmuqybrxw> for libraifa:32006
Aug 25 22:51:35 awt spamd[5164]: spamd: identified spam (9.8/2.5) for libraifa:32006 in 7.2 seconds, 836 bytes.
Aug 25 22:51:35 awt spamd[5164]: spamd: result: Y 9 - BAYES_99,RDNS_NONE,SPF_HELO_NEUTRAL,SPF_NEUTRAL,URIBL_BLACK,URIBL_JP_SURBL,URIBL_SBL scantime=7.2,size=836,user=libraifa,uid=32006,required_score=2.5,rhost=localhost,raddr=127.0.0.1,rport=55911,mid=<3235985408.20070825170556@qmuqybrxw>,bayes=1.000000,autolearn=no
Aug 25 22:51:35 awt spamd[28500]: prefork: child states: II
Aug 25 22:54:30 awt spamd[5164]: spamd: connection from localhost [127.0.0.1] at port 56343
Aug 25 22:54:30 awt spamd[5164]: spamd: setuid to sr8 succeeded
Aug 25 22:54:30 awt spamd[5164]: spamd: checking message <8678967196.190217665470@yahoo.com> for sr8:32004
Aug 25 22:54:37 awt spamd[5164]: spamd: identified spam (14.0/5.0) for sr8:32004 in 6.9 seconds, 847 bytes.
Aug 25 22:54:37 awt spamd[5164]: spamd: result: Y 14 - FORGED_YAHOO_RCVD,RCVD_IN_PBL,RCVD_IN_SORBS_WEB,RCVD_IN_XBL,RDNS_NONE,REPTO_QUOTE_YAHOO,URIBL_BLACK,URIBL_JP_SURBL,URIBL_SBL scantime=6.9,size=847,user=sr8,uid=32004,required_score=5.0,rhost=localhost,raddr=127.0.0.1,rport=56343,mid=<8678967196.190217665470@yahoo.com>,autolearn=spam
Aug 25 22:54:37 awt spamd[28500]: prefork: child states: II
Aug 25 22:57:06 awt spamd[5164]: spamd: connection from localhost [127.0.0.1] at port 56732
Aug 25 22:57:06 awt spamd[5164]: spamd: setuid to thegran succeeded
Aug 25 22:57:06 awt spamd[5164]: spamd: checking message <1IP4?n-000NOC-YL@pool-72-82-6-40.prvdri.east.verizon.net> for thegran:32010
Aug 25 22:57:14 awt spamd[5164]: spamd: identified spam (13.8/5.0) for thegran:32010 in 8.3 seconds, 1185 bytes.

View 2 Replies View Related

WholesaleInternet - Ongoing Review

Jul 4, 2009

I'm going to use this thread as a my home for an ongoing review of wholesaleinternet.com

Before Signing Up

I've been stalking wholesaleinternet for a few months now, mainly because they are the closest datacenter to my house with reasonable prices. In fact, they seem to actually be one of the few datacenters that price their servers at a level that will make them a profit, while still beating everyone else out there.

Before actually signing up with them I wanted to test their datacenter, mainly ping times, etc... So instead of getting a dedicated server with them, I went through a few other companies who colo with them.

Over the past three months there was only one issue, a bad switch. However, they had it fixed as fast as they could and kept everyone updated via WHT.

So after that I decided it was time to get a server with them.

Initial Contact

Aaron (the owner) was quick to respond to my emails and has always been very helpful. He worked with me on a custom setup, which is quite frankly, the best deal I have ever received on a server, ever.

The Setup

They work fast. I had them install CentOS with partitioning for OpenVZ and RAID1... There was only a couple of hours between the time I paid and the time my server was online.

The server is exactly what I ordered (in fact, it's more than I ordered), which is rare for me. Maybe I just have bad luck, but I seem to get misconfigured servers from other datacenters and it takes hours/days to get it fixed.

30-90 Day Review...

Coming in 30-90 days...

View 14 Replies View Related

Ongoing HostGator Email

Jun 7, 2009

I have been hosting (reseller account) with HostGator for about 1-2 years now. While I have had no problems with any of my own personal domains, some of my clients for whom I provide hosting are reporting email problems.

One client is a company that hosts about 15 email addresses on the server. They have complained that they don't receive all their emails. People tell them how they sent them a message, yet they never received it. The problem isn't consistent. Also, not all messages they send are being received. After much fussing with this, and looking into every possible solution, we came to learn this scenario:

- Someuser@hotmail.com sends an email to johndoe@mycompany.com

- Hotmail looks for an MX record for mycompany.com and finds it’s IP to be 10.10.10.1

- The Hotmail server contacts 10.10.10.1 and delivers the message

- John Doe receives the email fine

- John Doe then replies to the email back to someuser@hotmail.com

- Mail server at mycompany.com looks for an MX record for hotmail.com, finds the IP, and delivers the message to it

- Hotmail, because it does spam checking, uses reverse lookups as one of it’s spam checks. It takes the IP that sent it the message, 10.10.10.1, and looks for a PTR record. It finds one and it maches ‘astra.websitewelcome.com’ instead of ‘mycompany.com’. As a result, the spam check fails and the message is dropped

- Some User never receives John Doe’s response

I asked HostGator about this.

HostGators response:
"Unfortunately that IP a ddress is a shared IP address and so you will run into issues such as this, however, we have quite a number of other accounts that use this sort of setup without any issue and are able to send to Hotmail. *Another issue would be that ultimately the IP address that is sending a the message to them would not be from the server that you are on, but on one of our gateway systems, however, this should be overcome with the SPF record that you have in place."

Since then, another one of my clients (this time a Hotel that needs to receive it's reservation requests) is beginning to report the same problem. Some (not all) emails just don't make it to the inbox. Customers call and report that they had sent an email; but said email was never received in the first place.

I have again consulted with HostGator who have not been able to help because they don't see any of said emails on server, so what can they do? Nothing, I guess.

So what can I do about this. Do I need to switch to another host? Do you know of any hosts with whom I can be sure not to have this problem?

In looking at new webhosts, I have begun to consider VPS options. However, I am afraid that if I get a VPS server I will have to configure all of these MX Records, PTR Records, SPF records, and so on. I don't want to have to deal with all of these technical details. I am a website developer who sometimes provides hosting. I don't have time to learn the ins and outs of hosting and email server configuration.

View 12 Replies View Related

Limestone - Ongoing Review

Jul 1, 2008

I was at the planet for the last several years and decided to make the switch based on reviews on this forum and talking with their reps.

First off, Mike with the sales live chat was VERY helpful and answered all of my questions.

Answered questions about power, # of uplinks, average hardware replacement time etc. All were satisfactory to me.

In the end we went with the Celeron 352/2 GB ram/80GB SATA for 64.99 a month. I will be saving 25 a month off my dedicated server over the planet. A killer deal! Plus we have double the ram now. I couldn't convince my partner to go the X2 4000+ route for 10 more a month . We really don't need the power.

Initial impressions of the client panel are good (rokstar or something). Now for them to turn the power on .. 15 minutes and counting..

View 1 Replies View Related

Ongoing IWeb Review

Jun 5, 2008

On Tuesday, June 3rd I placed an order for the Dedicated budget plan I found on google. The plan consisted of the following:

2.4ghz Celeron
1gb RAM
320GB SATAII
3000 GB Transfer
10mbit connection
$69/mo
$0 Setup

I searched around for hours and found ones close but not quite what I wanted for close to the same price. I finally placed my order at around 4:00pm CDT and had the forms filled out and faxed in by 4:30pm CDT

Yesterday I got no contact except for a reply from billing confirming they received my forms(in reply to an email I sent them).

This morning I had an email from billing stating they couldn't read my handwriting on my credit auth form(I have bad handwriting). I resent the form with the information typed in. I found out later that this delayed the setup of my server. (Hour 53 now)

I will say their Live Chat was not very helpful nor was phone support, nor my account manager. I got no response from my account manager, and live chat kept telling me to conatct my account manager and phone support directed me to email sales@iweb.com instead of jeanluc@iweb.com. In desperation I started scouring google and came across WHT and saw some of Martin(atchooo)'s response to other customers problem and was impressed, so I followed the link to his blog and found his (creative) email address. I sent him an email detailing the issues I was having. Within 10-20 minute he had responded letting me know he would look into it, about 10 minute after that I got this response ....

View 6 Replies View Related

VPSLand Ongoing Analysis

Jul 11, 2008

I recently decided to upgrade to a VPS from shared hosting. I have decided to give VPSLand a shot, even though I am a little skeptical after reading a few negative reviews.

I will be providing an in-depth ongoing analysis of my experiences with them for the benefit of the WebHostingTalk community.

I signed up for the "Windows-EZ VPS Value" package.
RAM: 768MB (a great vlaue)
HDD: 8GB
Transfer: 300 GB
Price: $29/month
( with 50% off first month coupon my total was $14.50 )

After completing the sign-up process, I checked my email and noticed I had received 6 automated e-mails from them during the process

The order was placed at 9:46am.
They e-mailed me that my VPS was created at 10:10am (nice)
The followup e-mail with my server information arrived at 10:20am. For a total of 34 minutes from sign-up to server access. So far I am very happy.

I will run a few tests and follow-up shortly.

View 7 Replies View Related

WebNX Ongoing Review

Sep 21, 2007

While talking to as many people as I could find and comparing prices I decided to go with webnx.

I am currently hosted with iweb but my current p4 is getting slaughtered by my users so I needed to upgrade.

First result was I clicked live chat and asked to talk to support to help me pick out my server, I talked to dan for probbly 3 hrs discussing options and different setups that we could do.

I decided on :
Dual opteron 254 ( 2 processors 2 cores (one processor is faster then our current setup))
2x 146gb 10k rpm scsi drives (mirrored)
4gb ram

I am just waiting on my bill now but if this impression I received from the company based on Dan then I am sure I will be happy, I will post next week with setup time, and then next month on uptime.

View 14 Replies View Related

Downtown Host : Ongoing Review

Aug 19, 2009

I recently picked up an account with Downtown Host to host my dad's site and wanted to start a thread that I will update as time goes by. I know there's a "honeymoon period" with most hosts and sometimes, like my wife (LOL.. kidding *hides*), things change as things progress..but I have been very impressed.

So, to get things started...

Ordering Process

Easy as it usually is these days. Although the space isn't really needed, I picked up their Bronze plan for 6 months and it worked out to be about $50 USD thanks to a handy coupon. This is the first time I have ever had enough preliminary confidence in a host to go for 6 months up front (outside of getting a ridiculous deal) and I hope to not to be disappointed and regret the decision.

DTH does use a phone call fraud verification system on new orders which I appreciate. I think it shows that they are proactive in sorting out bad purchases and is one of the nicer fraud-detection interfaces I have come across. I believe Wirenine is the only other host I have used that employs a similar system.

Jorge (Jedito on WHT) was very helpful in the ordering process which, again, I appreciate and was pro-active in helping me getting me on board quickly even going so far as to drop me a line welcoming me aboard.

Initial Transfer, Etc.

Once again, very easy. There were a few hiccups that were issues on the previous host's side in terms of creating cPanel back ups so things could get moved over. Both techs were extremely helpful and kept me updated throughout the process, notifying me of even the slightest issue (again, none on their side) in getting files moved over for two domains, some of which included add-on domains.

One of the sites I moved over included a wordpress blog that was previous its own account under a reseller plan so I had a question regarding the process of switching over the MySQL database information to ensure the blog worked off the tip. Again, DTH was very helpful and gave me instructions on what I needed to do to make sure there was no interruption in serving the blog. They certainly didn't have to help me with the changes so it was really nice of them to do so.

Performance

In a word - fast. Once the nameservers switched over for the main site (cincihost-dot-com), I entered the address and *bam*. No lagged delays with larger-sized images, they just popped up. Previously, the page loaded somewhat "in order". Not anymore. I hit "Enter" and it was there. Nice.

cPanel loads fast and in checking the server load here and there, it is always below 1.00.

Support

As I have alluded to above, support is fantastic. The first ticket I submitted took a bit to be responded to which was worrying. Who knows what happened, but it was responded to, oddly, shortly after I mentioned it to someone. From that point, support has been lightning fast. As I think happens a lot of times, I have submitted a few tickets in order to get everything set up and going and they have all been responded to or updated within 15 to 20 minutes. I recently submitted a ticket to have my cPanel theme changed (it default to a RVSkin which I do not like) and it was resolved in, literally, one minute. Fastest support I have ever experienced.

Summation

Really the only thing I didn't like was that cPanel loads the green RVSkin which seems cartoony to me and I much prefer the original x3 theme. This was quickly changed so no biggie.

Everything else has been absolutely fantastic as you can probably surmise.

I look forward to being hosted with DTH and have a good feeling that my father and I will be with them for a long time to come.

Thanks to Jorge, Sebastian and everyone at Downtown Host!

View 14 Replies View Related

ICDsoft Good Host? (ongoing Quest)

Feb 22, 2007

I stumbled on a webhost today. icdsoft.com. Looks like a solid host. They do not have phone support, which left me hesitant. A newbie without phone support. OH MY GOD! I tested them and asked few questions via e-mail. My questions were answered in 10 minutes! Reviews are nothing but favorable, and they have been around for over 3 years.

They are also very reasonable (under $10, 1GB disk space, 20GB bandwidth). One note they do not supprt ASP or JSP.

View 1 Replies View Related

Fivebean.com VPS - Initial Experience, Planned Ongoing Review

Jun 23, 2009

Fivebean.com VPS -

[url]

Although the domain was registered in 4/15/08, I could find next to nothing on WHT or the ‘net in general in the way of reviews on FiveBean. Saw a lot of specials and things they have been running off and on at different venues and boards, but couldn’t find a review to save my life. I did search pretty thoroughly. No web cache on web.archive.org either.

So, I’ll be the first to post one (that I know of), with a special they are offering, it’s very affordable, if the service turns out to be good enough, then I have another node at a great price J. The more, the merrier. Win / Win 4 all.
(FiveBean also offers shared hosting, so not exclusively a VPS provider.)

Hardware nodes –
From their site:
“VPS Nodes are built with Intel Core2 Quad Processors, Premium SATA Disks and RAID Protection powered by CentOS 5.x and MoxieVM. Each VPS server is backed up daily and we provide 2 full backups to our customers.”

Although I never rely on provider’s backups, it’s good to see them offered as standard. Could come in handy.

They offer 5 plans; I ordered the middle-of-the road “Starter”. All VPSs appear to be OpenVZ based.

Ordered Plan -
512M / 1G burst
40G HDD
450G BW
1 IP
CentOS 5 for initial load

Initial order, small issue -
Placed order at about midnight, got my welcome email at 7:40 AM.
One issue was, I did not receive any emails from their ordering system, other than the PayPal-originating receipt. The emails were listed under the Client Area, so I still had access to read. Since I own and admin my own mail servers, I checked logs -
Emails from ordering system were sent from a non-FQDN domain.
From SMTP logfile:
RECEIVED: MAIL FROM:<fivebean@kona> SIZE=3560
Mail server rejected because of the incomplete domain.
This appeared to be an issue with the sign-up process only. All support ticket replies came from a FQDN. I described this problem in a support ticket, curios to see if they really do look @ and fix. Maybe on my second order?
Everything initially ordered during the process was delivered, with no follow-ups required to correct anything. That's a little rare, from my experiences.


They offer online chat support, but have not caught it online as of yet, although I haven’t checked before 9PM on any given day, so not a fair eval on that aspect. FWIW.

- On to the goodies -

Control panel -
Apparently, FiveBean previously used HyperVM, but has since disabled and rolled out their own self-spun VM manager, "moxieVM". It's a simple, yet effective, web interface that allows me to do everything I need to, and everything works. That's always a good plus!
moxieVM control panel contains the following:
VPS list facility / user profile control / pass reset
VPS Controls -- Reboot / Start / Stop / Rebuild OS / Set Reverse DNS
Report (simple) shows -- OS currently installed / Monthly BW Usage total / Current Memory Usage / Action Log of previous control commands

Noteworthy - when you select "reboot / start / stop" there is no confirmation, action is queued and executed immediately. Good info to know.

Rebuilds -
FiveBean offers 13 OS rebuild option w/ 6 Flavors - Ubuntu / Suse / Slackware / Fedora / Debian / CentOS, 32/64bit in most.
Reload of OS (From CentOS 5 to Fedora 10) took about 4 minutes. Note - keep your original root login password! On OS reload, the pass is reset to the original you receive in your VPS welcome email, NOT whatever you have currently changed it to. I can see this being an issue if it’s been a while since you have reloaded and end up digging out the old email. A little different than HyperVM.

Network -
Ping times are consistently 15-16ms from/to Austin, 21ms from/to Atlanta, 12-18ms from/to Kansas City, MO. Traceroute to node (69.162.118.226) puts them behind Limestone Networks in Dallas, Tx.
One thing I can report, their network seems to be very peppy. I've had a hard time hitting anything from / to the VPS with more than 20ms. I haven't seen a 30ms yet. From anywhere. An I have VPSs from coast to coast.

VPS / Initial Order-
Hostname was set properly right off the bat, both initially and on OS reloads.
Reverse DNS PTR self-set worked without having to put in a ticket, a first for sure! I just entered the rDNS PTR I required, waited about an hour, and it was set and propagated, ready to go. No muss, no fuss.
Although I haven't put any load on the system, the CLI is responding very fast, and pings / traces / nslookups are very quick (as stated above).
The only issue at all so far was the aforementioned order response email non-FQDN flurb. But, stuff happens. Small beans (pun intended).

AUP
No porn, excessive violence, hate, deception, illegal
IRC that causes no disturbances is allowed. I really prefer non-IRC networks, but they have a long lecture about it in the AUP, so it appears they watch activity pretty close.

Nuts n Bolts -

Benchmark
(benchmark is on newly loaded system, minimal install FC 10, no load)
------------------
INDEX VALUES
TEST BASELINE RESULT INDEX

Dhrystone 2 using register variables 376783.7 11243614.3 298.4
Double-Precision Whetstone 83.1 1239.4 149.1
Execl Throughput 188.3 5574.6 296.0
File Copy 1024 bufsize 2000 maxblocks 2672.0 127493.0 477.1
File Copy 256 bufsize 500 maxblocks 1077.0 48517.0 450.5
File Read 4096 bufsize 8000 maxblocks 15382.0 803836.0 522.6
Pipe-based Context Switching 15448.6 509724.8 329.9
Pipe Throughput 111814.6 1790127.7 160.1
Process Creation 569.3 16151.2 283.7
Shell Scripts (8 concurrent) 44.8 1055.8 235.7
System Call Overhead 114433.5 1246883.8 109.0

=========
FINAL SCORE 270.6

--------------------------------------------------------------------------------------------
Conclusions – so far, so good. I’m actually pretty impressed with everything I’ve seen up to this point. I’m planning on putting the server under load as a backend node of a busy website’s load balancer. I’ll post follow ups as we go along.

View 14 Replies View Related

Improve Performance- Web Server, SSH Server, And Mail Server

May 8, 2007

I've got a VPS which is serving as the main server for a number of sites. Web Server, SSH Server, and Mail Server.

What I've got running:

Apache2, PHP5, MySQL5, Dovecot, Postfix

One of the sites is a growing forum with a MASSIVE photo album. This is the site where I notice the most slowness.

Changing the server software is not an option - Only optimization.

Quote:

Originally Posted by httpd.conf

ServerTokens OS
ServerRoot "/etc/httpd"
PidFile run/httpd.pid
Timeout 300
KeepAlive Off
MaxKeepAliveRequests 100
KeepAliveTimeout 5
<IfModule prefork.c>
StartServers 8
MinSpareServers 8
MaxSpareServers 13
ServerLimit 256
MaxClients 256
MaxRequestsPerChild 50
</IfModule>
<IfModule worker.c>
StartServers 2
MaxClients 150
MinSpareThreads 25
MaxSpareThreads 75
ThreadsPerChild 25
MaxRequestsPerChild 0
</IfModule>
Listen 80
LoadModule auth_basic_module modules/mod_auth_basic.so
LoadModule auth_digest_module modules/mod_auth_digest.so
LoadModule authn_file_module modules/mod_authn_file.so
LoadModule authn_alias_module modules/mod_authn_alias.so
LoadModule authn_anon_module modules/mod_authn_anon.so
LoadModule authn_dbm_module modules/mod_authn_dbm.so
LoadModule authn_default_module modules/mod_authn_default.so
LoadModule authz_host_module modules/mod_authz_host.so
LoadModule authz_user_module modules/mod_authz_user.so
LoadModule authz_owner_module modules/mod_authz_owner.so
LoadModule authz_groupfile_module modules/mod_authz_groupfile.so
LoadModule authz_dbm_module modules/mod_authz_dbm.so
LoadModule authz_default_module modules/mod_authz_default.so
LoadModule ldap_module modules/mod_ldap.so
LoadModule authnz_ldap_module modules/mod_authnz_ldap.so
LoadModule include_module modules/mod_include.so
LoadModule log_config_module modules/mod_log_config.so
LoadModule logio_module modules/mod_logio.so
LoadModule env_module modules/mod_env.so
LoadModule ext_filter_module modules/mod_ext_filter.so
LoadModule mime_magic_module modules/mod_mime_magic.so
LoadModule expires_module modules/mod_expires.so
LoadModule deflate_module modules/mod_deflate.so
LoadModule headers_module modules/mod_headers.so
LoadModule usertrack_module modules/mod_usertrack.so
LoadModule setenvif_module modules/mod_setenvif.so
LoadModule mime_module modules/mod_mime.so
LoadModule dav_module modules/mod_dav.so
LoadModule status_module modules/mod_status.so
LoadModule autoindex_module modules/mod_autoindex.so
LoadModule info_module modules/mod_info.so
LoadModule dav_fs_module modules/mod_dav_fs.so
LoadModule vhost_alias_module modules/mod_vhost_alias.so
LoadModule negotiation_module modules/mod_negotiation.so
LoadModule dir_module modules/mod_dir.so
LoadModule actions_module modules/mod_actions.so
LoadModule speling_module modules/mod_speling.so
LoadModule userdir_module modules/mod_userdir.so
LoadModule alias_module modules/mod_alias.so
LoadModule rewrite_module modules/mod_rewrite.so
LoadModule proxy_module modules/mod_proxy.so
LoadModule proxy_balancer_module modules/mod_proxy_balancer.so
LoadModule proxy_ftp_module modules/mod_proxy_ftp.so
LoadModule proxy_http_module modules/mod_proxy_http.so
LoadModule proxy_connect_module modules/mod_proxy_connect.so
LoadModule cache_module modules/mod_cache.so
LoadModule suexec_module modules/mod_suexec.so
LoadModule disk_cache_module modules/mod_disk_cache.so
LoadModule file_cache_module modules/mod_file_cache.so
LoadModule mem_cache_module modules/mod_mem_cache.so
LoadModule cgi_module modules/mod_cgi.so
Include conf.d/*.conf
User apache
Group apache

Quote:

Originally Posted by my.cnf

[mysqld]
datadir=/var/lib/mysql
socket=/var/lib/mysql/mysql.sock
# Default to using old password format for compatibility with mysql 3.x
# clients (those using the mysqlclient10 compatibility package).
old_passwords=1

[mysql.server]
user=mysql
basedir=/var/lib

[mysqld_safe]
log-error=/var/log/mysqld.log
pid-file=/var/run/mysqld/mysqld.pid

View 8 Replies View Related

Remote Upload To Server (url/server To Server)

Mar 7, 2009

I looked a lot - can not find solution ....

I want to transfer a file from [url]to [url]or [url]Without it will pass my localcomputer (slow upload)

It can be also a script i will install like this one - this is only for images
[url](remote)

View 7 Replies View Related

Plesk 11.x / Windows :: Don't Have Root Access To Server As It Is A Webfusion Dedicated Server

Oct 16, 2013

I have Plesk 11.5 (service provider mode) on a Windows 2008 server IIS7.Most of my sites are developed in .asp and therefore i use a custom 500-100.asp error page that check s the IP of the visitor then displays either a friendly error, or if its my IP a full error of what has happened (it also emails me the error). This allows me to debug pages easily whilst developing and to keep an eye on anyone trying SQL Injection hacks on my sites (as the error and email also have session variables and IP address).I dont have root access to the server as it is a Webfusion dedicated server.I have following the Plesk documentation -

1) Switch on custom errors for the subscription
2) Look in virtual directories and navigate to error documents
3) Find the error in question (500:100) and change it to point at either a file or URL

FILE - I had the data centre add in the 500-100.asp error page in to the virtual template so that my page is available in the list of virtual files - this didn't work but that maybe because its not a static page??

URL - when i add the path it says its incorrect, if i add a fully qualified address, it accepts it but it doesn't work.give me a specific example of the URL that can be entered relative to the root as the format in the documentation isn't accepted. The last step is to restart IIS which is also an issue as i cant seem to do this from the Plesk panel..It is as if it isn't catching the 500:100 error, and only catching the general 500 error??

View 1 Replies View Related

Urchin 5 / Google A . Transfering From Server To Server (Serial Already Activated)

Nov 21, 2006

I am currently running Google Analytics/Urchin 5 (v5.7.02), on a server, the server has started to act up, (on its last legs etc) and now I am trying to transfer the Urchin Software to a new server, where it would work effectively.

However upon installing the urchin software on the new server and running it (localhost:9999), I am presented with An Action Items Page, and these following choices

Obtain Demo License
Buy License
Activate Pre-Purchased License

I choose ‘Activate Pre-Purchased License’ pop in the Serial number and complete the registration then…

---------------------------------------------------------
Urchin Licensing Center -- Error!

An error has occured during your transaction, please use the back button and correct the problem. The specific error message is:

• Unable to generate a license. Some possible reasons:

Your serial code is currently active <<< How do I disable it and use it on another server?
---------------------------------------------------------

So all I want to do is deactivate the serial and reactivate it on another server.

Does anyone have experience with this or a similar problem or have a solution to this problem. Any help be most appriciated.

Or even a Contact Number so that i can get some one over the phone!

View 2 Replies View Related

Cpanel Domain Name Server (DNS) Setting For Email On 2 Seperate Server

Nov 7, 2009

This is the scenario, domain.com are setup on server1, however server2 also has the same profile of domain.com as we use ns3 and ns4 using domain.com. This works fine with the nameserver setup on server2.

However I encounter problems as the emails from server2 won't reach server1 as there are duplicate profile on server2.

My question is how do I setup the DNS in cpanel/whm from server2 so the emails from server2 will reach server1?

Server1 (www.domain.com)
ns1.domain.com
ns2.domain.com

Server2
ns3.domain.com
ns4.domain.com

View 6 Replies View Related

File Server Setup With Nginx...how Do I Choose The Config For The Server

Apr 22, 2009

I just want to use a server for file sharing, it will have nginx and that's it. I'm looking at centos, or freebsd, but I been using centos forever now and I'm not sure how to use freebsd, should I just stay with centos?

Do I tell my hosting provider to just install the OS and give me ssh action and that's it? Don't install any control panels or any other stuff? I want one domain and one subdomain on it though and ftp action.

View 8 Replies View Related

Remote Spamassian With Multiple Mail Server (Smartermail Server)

May 12, 2009

Remote Spamassassin for Multiple Smartermail Server

I want to setup Remote Spamassassin(On Linux) for Multiple Smartermail servers. I want to the setup the spamassassin on a linux box

How i can setup this with multiple smartermail servers.

View 6 Replies View Related

How To Tansfer Backup Files From Linux Server To Windows Server

Jul 4, 2007

what is the fast and best way?

View 4 Replies View Related

Plesk 12.x / Linux :: Full Server Migration To New Server With Same Hostname?

Jul 20, 2015

I'm wondering whether it is possible to perform a full server migration to a new Plesk server with the same hostname or will Plesk give an error about the hostname being the same?

The new server would not be accessible by hostname (only via IP) until DNS and glue records were changed after the migration.

View 1 Replies View Related

Cheap European Server For Small Game Server

Aug 31, 2008

I've been developing a small 2D MMORPG lately. I bought a VPS to run the server on a few days ago and sadly it doesn't work so well. Sometimes the loads go pretty high (afaik not caused by me) and MySQL freezes, causing the server to just wait for MySQL to unlock, hanging all the players around on the map. Not a good thing.

Anyway, the game is very small scale, and I'm not planning to have more than maybe 30-50 players online. It does not suck up much CPU, I had ~10 guys online and loads stayed down at 0.00 on the VPS box.

Problem with getting a dedicated is our very low budget. As I'm still underage and living at home hammering my pc and don't have any real incomes, we're talking numbers like $ 30 - $ 50 USD per month - it's really hard to find for that price in Europe.

Requirements:
Monthly payment, $ 30 - $ 50 / month, no setup (or very small setup, like $ 20)
10Mbit/s or faster connection, 100GB traffic should do
500MHz CPU is all cool
512MB or more RAM
5GB diskspace is enough
Has to be in Europe due to ping times (< 100ms)
Linux, Debian 4.0 prefered

If anyone knows where I could get something like this for a low price, $ 30 to $ 50 USD, it'd be great.

View 12 Replies View Related

DNS Domain Name Server Manager In Windows Server 2008

Aug 28, 2009

I have been searching everywhere trying to find a tutorial but It is not going anywhere. Basically I need to create 2 nameservers for Godaddy and pretty much so when i type http://mysite.com it goes to my site. I can access everything from http://myip and everything works. Now is there a step by step on how to actually do it in the DNS Manager? I need help like what IP address do I use is it the router ip? The external IP?

View 7 Replies View Related

Shift Email Accounts Data To One Server To Another Server

Mar 2, 2009

i want to shift my domain to one server to another server and the problem is how can i shift my email accounts data to one server to another server.

View 8 Replies View Related

Worth Upgrading To Quadcore Server (win2003 Server)?

Dec 8, 2008

Site is currently running on a single code single cpu p4 server. Am thinking of upgrading to a quad core Xeon server.

My site is pretty dynamic with lots of hits to php / mysql, and has trouble keeping up with the requests sometimes. Would a quadcore Xeon significantly help?

Server Software:
Windows 2003 Server
php 5.2.6
apache 2
mysql 4.1

Current Setup:
P4 2.8 single core/cpu.

Proposed setup
Xeon 3210 quadcore

I guess my confusion lies in the following:

1. Can win2003 server make use of the quadcores?
2. Does php / apache / mysql make use of the quadcores?
3. Will i see a significant increase in the amount of pages i can serve?

View 5 Replies View Related

Move SSL Certificate From CPanel Server To Plesk Server

Oct 23, 2009

I need to move an SSL certificate from a cPanel server to a Plesk server.

View 3 Replies View Related

Difference Between A Virtual Private Server And A Dedicated Server?

Feb 11, 2009

What is the difference between a virtual private server and a dedicated server?

View 8 Replies View Related







Copyrights 2005-15 www.BigResource.com, All rights reserved