Poundhost / BlueSquare Data... Security Failure
Sep 21, 2009
This morning BlueSquare/Poundhost sent out an email to all their customers, announcing a special deal to all current customers, that sounds great right? Sure, except the CC'd instead of BCC'd all of their clients in on the email.
Since then everyone who's email address stards with anything up to the letter B - around 100-110 addresses - received an email containing the ****** image with the message
Followed by this from BlueSquare:
Quote:
Earlier today an email was sent out to all customers providing details on a dedicated server special offer. Unfortunately this email was sent out using the CC field and not the BCC field. This was not a breach of security, but a genuine mistake on the part of the sender who was not aware of what had happened until the email had been sent, and as such the sender has been suitably reprimanded.
We realise the seriousness of this error and have now taken automatic steps to ensure this cannot happen again by limiting the maximum recipients on our outgoing mail server to a small number, as well as updating and limiting staff on the use of the mail list system.
We are aware that some of our more unscrupulous competitors may have already obtained a copy of this email list and may contact you in due course. If you do receive an unsolicited email, to reduce further unwanted spam, please use the unsubscribe option which they are legally obliged to include.
View 14 Replies
ADVERTISEMENT
Aug 28, 2009
Does anyone have experiences of what Poundhost are like to co-locate with?
Are they pretty friendly and fulfilling to your requests? Just wanting some general opinions of what they're like in the ways of co-location. I know their network is pretty solid but I've never co-located.
Wanting to offer some services within the UK but considering I live here myself I was thinking of co-locating rather than renting a server. Always wanted to but a lot easier to do so within the UK rather than the US!
View 5 Replies
View Related
Jun 8, 2007
I have never done co-location before and I am very interested in it. Although a fair amount of my questions could be asked to PoundHost I preferred to ask here as I can get opinions too and more elaborate information probably. So if anybody wants to reply with some help, please do!
I am currently looking at Quater Rack Space (10U) at the following URL [url]
The first issue is a switch. The site states "1 x 100Mbit CAT 5 Feed" - I assume I would need to install a switch to share this connection between my servers, what sort of switches am I looking at here - do you have recommendations?
Another issue is power. Is there any typical number of servers I could put online with 3A, as well as my switch? I've actually been looking at buying servers from the USA and having them shipped to me (at [url]). The systems I'm looking at are the Core2Duos (SATA Enterprise and SATA cost effective at the moment). What custom build places would you recommend in the UK? If I did want to increase my power allocation, can PoundHost do this for me?
I was also after some opinions of PoundHost as a company - anyone have experience with their colo? A question I should really ask directly to them, but maybe people already know here: Are they able to increase my IP Address allocation? Can they increase my bandwidth to say, 20Mbit as required?
Are there any other UK colo that can compete with these prices for rack space?
How would their connectivity be to the USA? With my current setup, most of my dedicated servers are in the USA. To people here in Europe connection is fine to the USA. I'm just wondering how this would work in return from the connectivity of BlueSquare.
I was wondering about remote reboots. If I wanted to be able to make my own hard remote reboots instantly, can the likes of APC remote reboot switches be installed into my 10U space? The main problem really is my understanding of power distribution in a data center and how power is fed to my space.
Again - I'm grateful for any replies, feedback or recommendations because I want to ensure I start with a good service and a good company.
View 14 Replies
View Related
Dec 14, 2007
I just recently had a hard drive failure that produced the following error
root@re:/# mount /dev/hda3 /mnt
mount: wrong fs type, bad option, bad superblock on /dev/hda3,
missing codepage or other error
In some cases useful info is found in syslog - try
dmesg | tail or so
ide: failed opcode was: unknown
end_request: I/O error, dev hda, sector 4410069
Buffer I/O error on device hda3, logical block 8259
hda: drive_cmd: status=0x51 { DriveReady SeekComplete Error }
hda: drive_cmd: error=0x04 { DriveStatusError }
ide: failed opcode was: 0xb0
The host is going to mount this HD on the same machine after adding a new hard drive and fresh install... Does anyone have any recommendations for how I can go about recovering data? Specifically mysql databases?
View 5 Replies
View Related
Feb 29, 2008
I am working towards launching a site that, among other things, will be a repository for sensitive data on war crimes. As these crimes are ongoing, and occur in a location where assassinations are endemic, I need to develop a comprehensive security strategy that takes into account all levels of the interface between end user / witness and the site / database itself.
I have considered, but am open to insight and advice on, the following:
1. Data security laws in given countries, in order to ensure the privacy and integrity, as much as possible and away from political / state interference, of data communications. Concerns include the interception of data in transfer and the security of stored data (the United States and the UK are almost certainly cancelled out in this regard. Canada appears significantly better, though Greece, it appears, has the greatest level of legislative protection).
2. Encryption as a technique to ensure the security of transfered and stored data. I am particularly interested in best practice advice on encryption.
3. Javascript as a means to establish a more secure interface between the end user (i.e., the browser interface) and the secured database into which sensitive data will be inputed. Has anyone used this, or other techniques of overcoming the inherent insecurity of the browser interface?
4. Various best practices concerning php, MySQL and Apache security. Any and all advice, or guidelines, welcome.
5. Considerations relative to dedicated hosting, and also colocation hosting as an option.
In general, my problem is to ensure that the identities of witnesses, so much as is technically conceivable, can be protected from extra-judicial interference or surveillance. Nothing about this site will be illegal in any way. The problem is that the witness testimony will be about the actions of a powerful state that has demonstrated its disrespect for law.
Ideally I'd find in these forums a few individuals with whom I could discuss these technical matters off-forum. At the same time, general responses would be values.
The site that I'm building is non-profit (indeed zero budget) and does not represent any political party. It's a people's initiative, against aggressive violence and in support of international law.
View 1 Replies
View Related
Mar 2, 2007
We want to colocate 1 server with Bluesquare,
It would really help me if someone could tell me roughly how much its going to cost for either
a) 1 server +1.5tb bandwidth
b) Private rack + 1.5tb bandwidth for each server
c) Private Cage + 1.5tb bandwidth for each server.
I can't speak to them till Monday, So this would help me a lot.
View 10 Replies
View Related
Dec 4, 2008
I just signed up for dedicated server at Softlayer with cPanel, mySQL and CentOS. I'm moving a site that is on a VPS with WHM. I know that cPanel has a transfer site feature.
I was considering hiring a service to migrate my site and to harden my server. Is this necessary or should I simply move it via cPanel? Things are tight and I don't want to incur an unnecessary cost if I don't have to. I defer to the members here at WHT for your recommendations.
View 3 Replies
View Related
May 25, 2009
I used to have hosting with Tagadab, who use the clara.net network, which I used to get timeouts for about 10 minutes every 5-6 hours, so I moved to iFuse hosting (in BlueSquare house), where I get exactly the same issue. My ISP is NTL/Virgin Media.
View 6 Replies
View Related
Oct 11, 2009
Is London Hosting Centre in any way connected to BlueSquare 1, 2 or 3 in connection terms, for example with BlueSquare went down would London Hosting Centre still be up etc...
As I am wanting to setup a backup site.
View 4 Replies
View Related
Jan 29, 2009
Can anyone comment on Poundhost and their new line of vps' they do
whats their networks like
View 12 Replies
View Related
Feb 1, 2009
Rapidswitch has their VZ(?) offering, while Poundhost has VMware, with Windows for free too.
Which one would you guys rather use/is more stable/etc?
View 4 Replies
View Related
Jun 10, 2008
I rent a server with PoundHost at 2008-5-30
they assigned me 4 IPs. 92.48.119.2-92.48.119.5.
from 2008-6-3 to 2008-6-9,bad speed. I am not sure it's PoundHost's Issues.but now normally.
another thing make me crazy.
maybe start from 2008-6-10,
my server can't access . because IP conflict.
then remove these IPs(92.48.119.2-5) from my server.
and re-assigned me another IPs.
first 4 Ips, can't bind.
some hour later, re-assigned me another 3 IPs.
still can't use. because these IPs also assgined to another servers.
just again another 3IPs again(3rd.)
uk's IP so expensive need some servers shared a IP? or PoundHost?.
until now, still not resolved. a little problem take more than 12 hours.
this is my worst server rent experience.
SoftLayer never like this,DediwebHosting and qala never like this.
ticket detail: .....
View 10 Replies
View Related
Oct 28, 2008
before order,I ask poundhost's sale,
he said can provide 64 and 128 IPs,
so,I create a order at 2008-10-11,
10-15 server ready,
I ask them,but in this time,
they said only provide 10 IPs,max 16IP.
I used it for vpn applications,no have enough IPs,can't do it.
so poundhost said can cancel the server.
I never use this server,but poundhost still no refundment,
I send mail to them,no any responses,
......
View 9 Replies
View Related
May 26, 2008
I was really bored with LINX problems at England and my current UK provider's (xx company) bad customer support, I started to look for another provider at EU. I know LINX is used nearly all England providers but the problem was only with 1 switch of them. Anyways..
While visiting wht pages unhappily with hope of finding a good provider and sending them mails which I've founded, days passed with no luck.. After a few days I've mailled poundhost ( www.poundhost.co.uk ) and they've returned me in 5 or 10 minutes not sure while I was hopping to see a reply tomorrow or next week which we saw at other providers
Matthew, answered my all questions carefully and gave me whatever I want. I didn't have too many servers but he replied me as I was planning to move 50-60 servers to them I was very happy that I couldn't stop asking whatever I wanted to know to him and got my replies again carefully and they were handled professionally.
Now he gave me some VERY special deal and I am using them at this time! Personally, working with nearly all UK and DE providers, I never saw faster reply time for mails and tickets sometimes you get reply before clicking another link If you really want to feel special, go with PoundHost!
Shortly;
PoundHost? - Best EU provider that I saw in my 6 years IT life..
View 11 Replies
View Related
May 12, 2009
Im currently with poundhost
i have some colo servers with them
they have gone down 3 times over the last week
2 DDOS attacks and 1 router/exchange issue
I called them up and they reckon they get 1 DDOS some weeks, and other weeks have none
However, when another server is getting a DDOS attack, i dont want my server to go down.
I take it the network pipe is being flooded, and thats why websites stop responding.?
so i called rapid switch, they reckon if they get a DDOS attack, it just takes down the one server, and not everyones elses
View 14 Replies
View Related
Feb 24, 2009
(really annoyingly long detailed review incoming)
They have been exceptional for me. Not a second of downtime that wasn't my fault so far.
They offer OS reinstalls instantly for 30 quid or free with a 12 hour wait. This comes into play about two paragraphs down.
I had it originally loaded with Windows, because I was planning on playing around with some ASP. They gave me the server with a default password of something that you all pretty much would guess on the first try and RDP open to the world: when I got it, it was already heavily infected. OS reload took less than half an hour. Played with it for half a month, ASP got boring. FreeBSD time. Speedtests easily went over 100mbps (looks like each host is a gigabit/dual gigabit), it wasn't an overloaded node; always fast.
They don't officially support FreeBSD - it's not listed anywhere, and they don't support it. However, since it's ESX, I decided to ask if they could do a custom ISO and chose the free next-business-day install. They did it in less than one hour, and helped me troubleshoot when it went down (typoed something, user error) (this is 100% unmanaged too).
So far, they've been great. Tons of bandwidth, you can actually use it, non overloaded nodes, disk i/o has NEVER been a problem.
Another thing is fast ticket replies. On average, I see tickets answered in less than one or two minutes. No canned responses, always helpful. Almost all of my tickets were at obscene times - probably 3-5am their time. Responses were prompt and clueful.
Keep in mind this only costs ~$30/m USD - they have seriously dealt with a lot of my crap that they didn't have to, and I commend them for that.
Support: 10/10
Network: 10/10
Hilarity: 10/10 (deploying unpatched 2003STD with internet-facing remote desktop and generic/not randomly generated admin password)
Value: 100/10 (512MB + free Windows + free OS reloads + 2.5TB bw)
Reported hosted IP to mods.
View 10 Replies
View Related
Apr 5, 2008
Is anybody able to get me in touch with Poundhost ? We can't seem to log on to the customer portal - and nobody are answering the phones there. Our server has been down for almost an hour now - I need somebody done immediately.
View 9 Replies
View Related
Sep 25, 2009
I fear i've made a terrible mistake.
I'm currently a Poundhost customer and have been very happy with the service - my server has never been down yet and i've never had to contact them since setting the server up - it just works.
However, i've recently been offered a much better deal from Rapidswitch - a better server for quite a bit cheaper which as a personal customer with no budget makes a big difference.
I did think twice about moving from a provider I was happy with but have heard good things about Rapidswitch and their control panel is much better.
However, since placing my order it seems all they've had is network problems - they were completely down for hours last night, have had problems all day and are now down again. To boot, they said my server would be built in 24hrs and probably less but it's now nearly 30hrs and hasn't been built yet.
I'm really surprised and shocked that such a big provider with a good reputation has a single point of failure like this and doesn't have redundancy built in as well as hot swap spares and even spares from another provider.
It also seems their site and phone system are on the same backbone so that all went down too (and seems their monitoring is within their network so that doesn't register most of the outages).
Have I made a terrible mistake and this is the new Rapidswitch now it's been bought out or do you think it's just a bad week and they will get themselves sorted out and will return to 100% uptime?
Thoughts?
View 6 Replies
View Related
Apr 4, 2008
I run a web hosting company and one of my servers is a LAMP server running CentOs 5. A user of mine has a Joomla installation running to manage his website and he has run into the following problem that I am puzzled by.
When Joomla adds a component or module to itself, or when a user uses the Joomla upload functionality, Joomla will add the new files under the user name "apache". This makes sense as it is the apache service running PHP that is actually creating the files.
However, when he FTP's into the account to modify these files, he doesn't have the appropriate permissions to do so as he doesn't have a root level login, just permissions on his home directory which is the site. Any help would be much appreciated.
Also, does anyone know how to change the owner/group of a directory and all of its sub directories in Linux without changing the actual permissions? I.e. some of the files in the folder have different permissions (0644 as apposed to 0755) than its parent but if I do a top down user/group change on the folder it will change everything in that folder to 0755.
View 10 Replies
View Related
Jun 13, 2008
Tried to install xml::rss perl module in whm and go this:
Running make install
Installing /usr/lib/perl5/site_perl/5.8.5/XML/RSS.pm
Installing /usr/lib/perl5/site_perl/5.8.5/XML/RSS/Private/Output/Base.pm
Installing /usr/lib/perl5/site_perl/5.8.5/XML/RSS/Private/Output/V1_0.pm
Installing /usr/lib/perl5/site_perl/5.8.5/XML/RSS/Private/Output/V2_0.pm
Installing /usr/lib/perl5/site_perl/5.8.5/XML/RSS/Private/Output/V0_91.pm
Installing /usr/lib/perl5/site_perl/5.8.5/XML/RSS/Private/Output/V0_9.pm
Installing /usr/lib/perl5/site_perl/5.8.5/XML/RSS/Private/Output/Roles/ModulesElems.pm
Installing /usr/lib/perl5/site_perl/5.8.5/XML/RSS/Private/Output/Roles/ImageDims.pm
Installing /usr/share/man/man3/XML::RSS.3pm
Writing /usr/lib/perl5/site_perl/5.8.5/i386-linux-thread-multi/auto/XML/RSS/.packlist
Appending installation info to /usr/lib/perl5/5.8.5/i386-linux-thread-multi/perllocal.pod
/usr/bin/make install UNINST=1 -- OK
cPCPAN: Module (File::Spec) holdback (3.2701 held back to 3.25)
perlmod--Install done
Why is it installing to perl 5.8.5 when my perl version is 5.8.8?
root@server [~]# perl -v
This is perl, v5.8.8 built for i686-linux
View 1 Replies
View Related
Apr 28, 2009
I was hosted with these guys for well over 2 years, and was spending on average more than $2,000.00 a month for servers.
I had slowly grown to well over 10 boxes, and was definately on my way. then one day I get a spam complaint that one of my serves was casing complaints. So I checked it out, and asked for the complaints to be relayed so I would have record of it..... nothing.... I responded and even tried to call, but at that point they had sent me a tciket stating.
We have recieved well ofer 1000 spam complaints from a server you lease with us, per out TOS we are terminating ALL OF YOUR SERVERS, and you have 15 days to remove the data!
WOW... there was no ability to have them terminate that server, they simply said NO your account will be terminated (all of your servers) and you will be banned from The Planet!
When I tried to call they said your not allowed to speak with the abuse dept, again I tried contacting my account manager, and he said he checked into it and only saw a few complaints, and didn;t understand why they were doing this... In short I barely got moved over to another provideer before they shut me down completely..... They did however offer one course of action... you could turn your dedicated server clients over to us so they dont have to move! THEY ACTUALLY SAID THIS!
I at that point made the move and then they hit my credit card for another month well short of 20 days before a bill would even be due.. I had to file charges at the local courthouse to get this reversed.
My advice, if you host at the planet dont send mail. get another server provider for mail, these guys are *&^)(* and they don;t care about shutting you down no matter what you spend with them, on top of that they will try to scarf your clients up if they can, after they leave you high and dry....
Anyone else have issues like this with anyone else. I want to compile a list of providers that do business like this so I can avoid them.
View 14 Replies
View Related
Nov 4, 2009
Probably nothing new. Seriously, they're horrible and everyone here probably knows it. But... I'm ticked, so I'll add something extra to show how genius they are.
The problem is I can't seem to reach my website on godaddy. It appears as if the server is down. Both via the browser and ftp it fails.
Anyway, I could write a review but no need... I'll let the e-mail I sent them and their responses do the talking.
Okay, thanks for the information... I'm still humored that needing my pin is
actual security considering it's listed on your website after I login. My
password is way better security because it's never visible anywhere...
anyway... based on the information you gave me here's what I have found out..
The first instance of me not being able to reach the website was around noon
EST yesterday. Earlier that morning I was on the website and had logged in
via FTP. After noon the website was no longer reachable. This is a test from
one computer.
Around 6PM on a different network, the website was reachable from 3
different computers, including the one it wasn't reachable from earlier that
day. About 30 minutes later the website became unreachable again. Attempts
to reach it from all 3 machines failed.
This morning, I considered your response email and assuming the webserver is
up like you stated, I decided to try another network. The website was up on
that network. However, it is still down on the other two networks. It seems
that the website works for a limited time on each network before something
happens to keep the network from reaching the webserver.
Attempts at pinging the webserver all fail.
Doing a tracert to 2leet.com times out at the following: ....
View 14 Replies
View Related
Mar 18, 2008
so my server dies every day and requires human intervention to fully restart all service to have my site work properly. i suspect sigterm issues as it fails to restart all service as website is still down so i always have to reboot it.
Tried recompile apache with no success
[Tue Mar 18 06:51:27 2008] [error] [client 203.160.1.39] request failed: erroneous characters after protocol string: If-Modified-Since: Wed, 21 Nov 2007 06:16:52 GMT
[Tue Mar 18 10:03:18 2008] [error] Bad pid (7465) in scoreboard slot 16
[Tue Mar 18 10:03:18 2008] [error] Bad pid (27848) in scoreboard slot 17
[Tue Mar 18 10:03:18 2008] [error] Bad pid (27434) in scoreboard slot 18
[Tue Mar 18 10:03:18 2008] [error] Bad pid (30782) in scoreboard slot 19
[Tue Mar 18 10:03:18 2008] [error] Bad pid (7465) in scoreboard slot 16
[Tue Mar 18 10:03:18 2008] [error] Bad pid (27848) in scoreboard slot 17
[Tue Mar 18 10:03:18 2008] [error] Bad pid (27434) in scoreboard slot 18
[Tue Mar 18 10:03:18 2008] [error] Bad pid (30782) in scoreboard slot 19
[Tue Mar 18 10:03:18 2008] [error] Bad pid (7465) in scoreboard slot 16
[Tue Mar 18 10:03:18 2008] [error] Bad pid (27848) in scoreboard slot 17
[Tue Mar 18 10:03:18 2008] [error] Bad pid (27434) in scoreboard slot 18
[Tue Mar 18 10:03:18 2008] [error] Bad pid (30782) in scoreboard slot 19
[Tue Mar 18 10:03:18 2008] [notice] caught SIGTERM, shutting down
[Tue Mar 18 10:03:20 2008] [notice] mod_security/1.9.5 configured - Apache/1.3.39 (Unix) PHP/5.2.5
[Tue Mar 18 10:03:20 2008] [notice] Any You Like mod_ssl/2.8.30 OpenSSL/0.9.8g mod_perl/1.29 FrontPage/5.0.2.2510 configured -- resuming normal operations
[Tue Mar 18 10:03:20 2008] [notice] suEXEC mechanism enabled (wrapper: /usr/sbin/suexec)
[Tue Mar 18 10:03:20 2008] [notice] Accept mutex: sysvsem (Default: sysvsem)
View 1 Replies
View Related
Jul 31, 2008
when using outlook, things are fine but mail() in php is acting up. I ran a dns report and here is what it said. could this be the problem? what should i do?
Domain mydomain.com has 2 mail-servers.
Checking mail server (PRI=10) mail.mydomain.com [208.70.160.19]
Mail server mail.mydomain.com[208.70.160.19] answers on port 25
<<< 220 mail.hsservers.com ESMTP
>>> HELO www.checkdns.net
<<< 250 mail.hsservers.com
>>> MAIL FROM: <dnscheck@uniplace.com>
<<< 250 ok
>>> RCPT TO: <postmaster@mydomain.com>
<<< 451 temporary failure (#4.3.0)
>>> RCPT TO: <root@mydomain.com>
<<< 451 temporary failure (#4.3.0)
>>> RCPT TO: <info@mydomain.com>
<<< 451 temporary failure (#4.3.0)
>>> RCPT TO: <webmaster@mydomain.com>
<<< 451 temporary failure (#4.3.0)
Probably mail server does not accept mail for mydomain.com (received status 451)
Checking mail server (PRI=30) mail2.mydomain.com [208.70.160.20]
Mail server mail2.mydomain.com[208.70.160.20] answers on port 25
<<< 220 mail2.hsservers.com ESMTP
>>> HELO www.checkdns.net
<<< 250 mail2.hsservers.com
>>> MAIL FROM: <dnscheck@uniplace.com>
<<< 250 ok
>>> RCPT TO: <postmaster@mydomain.com>
<<< 451 temporary failure (#4.3.0)
>>> RCPT TO: <root@mydomain.com>
<<< 451 temporary failure (#4.3.0)
>>> RCPT TO: <info@mydomain.com>
<<< 451 temporary failure (#4.3.0)
>>> RCPT TO: <webmaster@mydomain.com>
<<< 451 temporary failure (#4.3.0)
Probably mail server does not accept mail for mydomain.com (received status 451)
Some of your MX do not work properly
View 1 Replies
View Related
Nov 7, 2007
just a 4 drive raid 5 array go down, this is hardware based, controller indicates a 2 drive failure.
It is possible to rebuild this array from the 2 good drives?
Thing is that drives come up fine in test system when testing in spinrite which show no problems, though only 2 show partition structure others just come up as empty!
View 2 Replies
View Related
Jan 23, 2008
I have had sporadic mysql failures. Cpanel/WHM successfully restarts it and I am notified via e-mail and text message, but I have yet to be able to determine what is causing the failure. From what I can tell nothing is logged ether by cpanal, mysql or the system about the failure.
My questions is can cpanel or mysql be configured to log what the issue is?
I have the max connections for mysql and apached limited to match the servers capacity.
View 2 Replies
View Related