I have a website that can be seen in a part of the world but not on the other. How can I troubleshoot this issue. Is there a web utility that can help me figure out what is the problem?
View 1 Replies
Is security really that critical? If so, why are some of the largest software companies providing such a bad example for the rest of the industry? Why would someone want to target my website? Why is security often overlooked?
These are all common questions that arise on a daily basis within the online industry.
The rest of this article will provide some detailed answers, along with practical examples and true scenarios.
I've spoken with numerous hackers over the past short while. I can't count the number of times I've heard the line "Ignorant site owners deserve to be hacked". In my opinion, that's like claiming that cars without alarms deserve to be stolen, or homes without alarm systems deserve to be burglarized. It's not just wrong - it's illegal.
Security risks and vulnerabilities affect the entire online industry. When a single website is hacked, there are usually multiple other victims. This is most commonly seen with widely distributed software. A potential attacker has the ability to install the software on a test environment, locate the vulnerabilities, then attack random victims even before anyone else is aware of the potential exploits. Once a vulnerability is located, the attacker simply needs to search for other environments using the same software, and within minutes there are hundreds, often thousands of potential victims.
Typically, in the race to market, software providers are encouraged to release their products as soon as the applications are usable. Critical development procedures are often overlooked or intentionally bypassed. One such miss is an application vulnerability assessment. Although the product may be usable, the effects of a vulnerable application could be severe.
Sadly, nobody is "off limits" when it comes to hacking. Most hackers feel safe committing online crime, since the online industry has evolved much faster than the security industry. Many applications are not created with the intent to recognize hacking attempts. Some hackers view their actions as a competition - Who can attack the most valuable website? Who can exploit the most user databases? In many cases, these attacks are bragged about within the hacker's immediate network. The competitive nature of these hacking groups has become so severe, there have been reports of attacks between competing organizations.
You might ask, "If I use industry standards, won't my environment be secure?". The short answer: no, but it helps. Hackers are not restricted by industry standards. Most security companies only implement new standards once at least one victim is reported. This often gives hackers plenty of time to locate other vulnerable environments, and before long, the number of victims can increase rapidly. Hackers are some of the most innovative individuals within the online industry. The most logical way to combat them is to use similar methodology for security purposes.
One of the most reliable & dependable webhosts around: Aussie Bob's Dotable is now a part of the UK2Group.
Read announcement:
[url]
The new plans unfortunately resemble that of a typical overselling host.
I am having trouble finding a good sysadmin for my needs. Has anyone else been in a similar situation? Does anyone have any advice on how to find somebody like this?
SITUATION:
I am having trouble finding a reliable RH sysadmin. I have a handful of clustered HA setups for customers (6+ servers & load-balancers) and a number of single-server dedicated hosting customers. I do a lot of the work myself. The additional sysadmin usually only has a small amount of actual worked hours per month, dependent on new installs. But, they need to be reliable, available, and familiar with the complexities of the setups.
From what I have seen, some sort of server management company wouldn't be able to be familiar with the setups well enough to not regularly make errors or modify setups correctly due to the amount of clients they have.
Should/home be its own partition when using r1soft, or can it be part of/?
View 7 Replies View RelatedI have a small dns cluster with 4 servers, the problem is that when i want to update a dns registry one of them doesnt sync, i have to try like 6 or 8 times to get that server to sync with all the others, and im concern because the one who gets trouble to sync is my secondary dns server
View 2 Replies View RelatedIs bandwidth going to be my most expensive cost if I open up a video hosting site? Is there a inexpensive alternative? Is there an inexpensive web host with low cost bandwidth allocation?
View 9 Replies View RelatedI have similar problem that explained [url]
The detail of my problem is below:
Some people sent spoofing mails from our mail users sent to our user from Postfix/local that is listed in maillog like below:
Apr 29 16:57:02 ns1 postfix/local[3075]: EC2153565E3: to=<user-mydomain.com@ns1.mydns.com>, orig_to=<user@mydomain.com>, relay=local, delay=486, status=sent (delivered to command: /usr/bin/procmail-wrapper -o -a $DOMAIN -d $LOGNAME)
Bu i do not know how to prevent this people not to use my Postfix/local delivery part. How can i prevent this attack?
When i connect to my mail server to sent or receive my mail it look like
Apr 29 17:25:28 ns1 dovecot: pop3-login: Login: user=<user@mydomain.com>, method=PLAIN, rip=***.***.***.***, lip=***.***.***.***
....
Apr 29 17:25:55 ns1 dovecot: POP3(user@mydomain.com): Disconnected: Logged out top=0/0, retr=0/0, del=0/0, size=0....
But the attackers connect directly like below:
Apr 29 17:29:59 ns1 postfix/local[2456]: 3192E357FD9: to=<user-mydomain.com@ns1.mydns.com>, orig_to=<user@mydomain.com>, relay=local, delay=261, status=sent (delivered to command: /usr/bin/procmail-wrapper -o -a $DOMAIN -d $LOGNAME)
....
Apr 29 17:29:59 ns1 postfix/qmgr[2218]: 3192E357FD9: removed
How can the spammer connect to Postfix/local part? My mail server not open relay. i test it from internet.
A few people have asked me to give feedback on my experience with VolumeDrive so I decided I will be posting a 3 part review on them:
Part 1 - initial impressions
Part 2 - three month review
Part 3 - one year review (hopefully)
-------------
When I first got in contact with VD, contact was slow: about an email a day. It was very annoying to say the least. However when VD realized that I was genuinely interested in purchasing a server, and not just a window shopper, contact was more frequent and acceptable.
After looking around and comparing, I ended up ordering the following server from VD for a whopping $105 per month:
Q6600
4 GB DDR2 800 RAM
500 GB HDD
10 Mbps dedicated unmetered
5 IP addresses
Plesk 30 domain
Full managed services
Well just at face value, I don't think anyone will argue with me when I say you cannot beat the price. Where else will you find that kind of server w/ full management for $105 a month?
In the ordering process there were a few forgivable annoyances:
1) VD does not have any sort of automated, order online system for their "good" deals. I had to order via email and manually pay from PayPal. I was, however, emailed an invoice confirming my purchase after I paid.
2) It took VD 2 hours to send me my order request after I said "I am ready to purchase". Now it was late at night, so they probably only had a skeleton staff on hand, so this is understandable; however this point is sort of related to the lack of an automated system point mentioned above.
So after I paid and all, I was told they were building me a new server and it would take 3 business days to arrive. I was bummed out upon hearing this but this was understandable and justifiable - if they don't have the parts on hand, they don't have the parts, no big deal. I did appreciate the fact that they were honest with me upfront instead of trying to con me into giving me a different server (like I have been hearing stories about with other hosts).
So I waited. I was told my server would be setup on Tuesday afternoon and it was. The actual time between order and setup was about 5 and a half days: 3 days for the parts to arrive + Saturday + Sunday + time to build the server.
On Tuesday I was informed that my server has a Q8200 instead of a Q6600. To me this was not a big deal so I didn't object but if you are going to order from VD and you want one specific CPU I would be very clear with them that you won't accept any alternative. What did make me chuckle, however, is the fact that I was told "I received a free upgrade" to Q8200. It made me chuckle because I don't consider it a "free upgrade" when I was offered a choice between the Q6600 and a Q8200 for the same price during the ordering process. However, as I already said, a Q6600 or Q8200 - it does not matter to me: both are very similar in performance anyway.
So since I got my server I have been busy setting it up so VD can secure it after I am finished migrating my website (which by the way they just did - I just got an email ).
During that time I have emailed VD a fair amount of times, sometimes asking for clarification and sometimes asking for assistance with a problem, and they have responded back in a more than acceptable time frame and manner.
The only one major problem I have had so far is that initially, and by initially I mean first ~12 hours, it seems the connection to my server was not all the best. Randomly pages would take a while to load; I was curious as to why this was happening so I did some pinging and saw packets were being lost sometimes. This problem seems to have been auto-corrected itself now and I am did email VD about it; hopefully if it happens again we can get it perma-fixed.
Final verdict: people say "you get what you pay for". I say "I got more than I paid for". Hope it continues this way.
Today I'm back to encourage you to stay away from Crissic: I know the prices are tempting, but know that you will have no one on your side when a problem comes up. I finally closed my account with them after numerous major issues with my VPS.
I've had a simultaneous account with Slicehost for the past few months, just to see if paying the extra buck is worth while. Now I know it absolutely is. I'm paying double the price for half the resources with Slicehost, but their service is amazing and reliable, their support is stellar, and peace of mind that the server will stay up and running without load issues, memory or drive failures is worth every penny. The point of this post is not Slicehost though, back to Crissic.
When I signed up for Crissic, I knew that it was a relatively new web hosting startup, but I had no idea it was a one-man show. Yes it's probably possible for a single guy to run a small web hosting company--the problem, particularly in the case of Skylar, is that when something is beyond him, it isn't getting fixed.
A recent support incident occurred where I was suddenly unable to access my VPS via SSH or the console. I contacted support, here are some of his responses to my status inquiries: ....
Are there any web designers/developers who offer hosting to their clients as part of their website creation package. I am toying with the idea of only creating websites for people who host with me. I currently have a colo server, but only use it for personal things. So I have no experience with the needs and demands of clients in regards to hosting. What are some of your experiences with hosting for clients? Is it worth it?
View 15 Replies View RelatedIs it possible to extract part rars using unrar (or other programs) on centos4?
If so, how and what command to use?
i want to limit all of the world to access my server for example port 80 25 22 an .... instead of two ip.
View 9 Replies View RelatedIM about tired of spam and hackers putting phishing items on my server.
My question is.
How can I block the whole world expect for US, CA and UK?
I've added several countrys to csf's csf.deny list but half of them keep disappearing.
Just moved to a 1and1 managed server in which FastCGI is enabled.
But I'm having problems getting Movable Type to run under fastcgi - which has never been a problem before, even on shared hosts.
Is there a 'hello world'-type test for fastcgi - so I can check if it is enabled?
As you all know about hostingspeeds.com, offering you a list of world's fastest host. Is there any other sites doing such things?
And, be helpful to say me the hosting company whith PHP, MySQL support, that offer fastest speed on page load, accepting LibertyReserve as way of payment for their services.
I have been running a dedicated server for years, first with Carolina Online, who then sold it to HostOnce.
Today at around 6PM my server, that was working fine and I was actively working on all day, suddenly disappears off the Internet.
I go to Host Once's ticket system, and they have a message up that they moved their servers from NC to NJ, that all the servers were upgraded to Windows 2003, and that they would be very busy with the migration, don't submit multiple tickets. (Host Once seems to mostly have reseller hosting accounts, not many dedicated servers.)
I start pinging IP addresses and everything in my server's IP block is gone (the furthest a tracert goes is 64.70.48.3 - everything under that is gone.)
This is bad.
I'm worried that they may have bought new boxes in NJ for their reseller accounts, transferred up the data, and abandoned the old boxes in NC ... is this something they might do?
Also worried that the block of IPs their old servers were on may have somehow been reassigned... can this happen?
In any case, waiting to hear back on my ticket but looking for advice. Does anyone know the datacenter Carolina Online / Host Once used in Lumberton, NC? Want to start tracking it down if my box may have been left behind.... Any other insight on what in the world they might be doing / what happenned here?
I am trying to debug a dns problem.
What I need is for you to do a dns lookup and report:
1) the address that was returned, the last octect will do.
2) the area of the world you queried from
The answers *will* vary because the dns server is geolocation enabled. Or, at least they *should* vary. But, someone claims its buggered.
The host name to lookup is:
ssl.dnsmasq.com
Does anyone have any idea or estimation about cPanel Licences all over the world? How many servers are licenced and running cPanel at the moment? Has cPanel ever had any official word regarding this?
View 3 Replies View RelatedI remember using a few years ago a site where you could plugin a domain name and a report will run showing if the site was vieable or accessible from all different parts of the worls, I forgot the URL does anyone know abou something like this?
View 8 Replies View RelatedCan someone give me a good list of providers like fdc, ovh, etc.
Bandwidth quality not much of an issue, quantity means more than quality to us, cogent only networks are even acceptable
We need more than one, as we need servers all over the world.
Edit: 100Mbit with unlimited or VERY high bandwith limits minimum.
Edit 2: Looking for something similar to fdc and ovh in price if possible. Going over 500/mo is pushing the budget on these, although specs do need to be taken into consideration.
We have recently moved to a new datacenter and I was wondering if anyone on these forums could provide their experiences with "real-world" testing.
Upon move-in, we had a few issues. Obviously now the executives in the organization I work for are looking for justification for moving to the new colo.
software, or an online service that will stress test our current setup? Obviously I have MRTG, Awstats, and a few other of the most well known polling packages installed and working correctly, but what does everyone else use for stress testing?
I have a local network with modem, router, and several computers either Cat5 to router or via wireless. Router is Cisco Linksys E4200. The internal IP for this router would be 192.168.1.1.One of the computers has Ubuntu Server 14.04 (32-bit) and Apache 2 installed, and this is hardwired (Cat5) to the router. This computer also has a STATIC IP address that we will call 192.168.1.100. my Windows 7 Ultimate computer, I can open a browser and type "192.168.1.100" and the Apache 2 Ubuntu Default Page will pop up telling me that "It works!".
I have the Apache server working since I can access from within my LAN.My problem is to get it to show me the same "It Works!" when I try to access from the Internet.I got my 'external IP' address by simply going to whatismyip.com, and I can also see it from within my router settings.
The next thing I did was to setup Port Forwarding inside the router, to point say 50505 to 192.168.1.100. I've tried lots of port numbers.I cannot see my Apache 2 Default page by typing in my browser "98.180.213.110:50505", for example. This assumes 98.180.213.110 is my external IP and 50505 is the port I am forwarding.
I've tried disabling the IP4 firewall within the router, and even the "anonymous" filter request setting.I can find my web-server via browser in-house, but I cannot access from my external IP as if I were at a different location.
I have been playing with the idea now for a while to create a site that will list all the data centres (datacenters for you americans) in the world.
Obviously I do not have the definitive list, so it would be community based, where users can add DC's and reviews can be written for it...
So....
1. Is there a website doing this already?
2. Would it be used...?
Notice: This is a discussion thread for comments about the SitePoint article, Learn Apache mod_rewrite: 13 Real-world Examples.
View 13 Replies View RelatedI did a quick search on this and could not see it as already being posted
It seems quite a clever but simple idea - remove a lot of the oxygen from the air to help reduce the risk of fire. What do those of you operating your own facilities make of this? Is anyone already doing this?
[url]
OpenVZ different gateways IP ranges, unpingable from outside world "feature" any fix?
The server main IP (eth0) is 200.44.32.42, the allocation is 200.44.32.40/29 - 200.44.32.41 being the GATEWAY.
The ADDITIONAL IP allocation is 200.44.32.96/28, 200.44.32.97 being the GATEWAY.
Now, if I be specific on /etc/sysconfig/network-scripts/ifcfg-eth0 and declare everything like so:
DEVICE=eth0
BOOTPROTO=none
BROADCAST=10.20.47.255
HWADDR=
IPADDR=10.20.42.198
NETMASK=255.255.248.0
NETWORK=10.20.40.0
ONBOOT=yes
GATEWAY=10.20.40.1
TYPE=Ethernet
Please ignore all the above IPs config.
Now, using that VE nodes on the 200.44.32.96/28 range are unpingable. How can I fix that?
Please take note that I remove all settings from ifcfg, and leave IPADDR and GATEWAY, the internet can ping the nodes. But within the 200.44.32.0/24 no-one can ping the nodes on the 200.44.32.96/28 range ( Which is my problem, that I came here to solve).
Here's the VE ...
i run one bad command :-(
chmod -R 644 /
and this command changes all permision in root server
have any away for fixed all permision in centos?
because all site take error
i use of cpanel
If I type google.com in my address bar, it forwards me to www.google.com. This is not happening for my website right now. I think its a good idea to do this, since then search engines will have only 1 main URL for the website to index.
My question is:
How do I implement this? I think this may involve mucking with CNAME settings...
I want my users to be redirected directly to my forum
so when they type in www.mywebsite.com it will redirect instantly to www.mywebsite.com/forums
I know this can be done on Cpanel... any other ways?
