RSS Feed
Latest Updates
Jan
29
GHOST Security Issue in Linux
Posted by Jeff H. on 29 January 2015 04:31 PM

GHOST Exploit Update

If you have a management subscription with us, we have already patched your server.   With our automation framework, most systems receive security patches within hours of their release.

 

cPanel's Exim

In the proof of concept data released by Qualys they mention that Exim, which is used by cPanel, is vulnerable.  This only appeared to be an issue with certain scripting conditions enabled.  We have restarted Exim to assure that it is using the patched glibc.

Reboot Needed?

At this time, we do not see a need for a full server reboot.  While many programs use glibc, the exploit impacts a specific hostname function.  This function must be used in a specific way within the application. 

At the time of this update, most services used on hosting systems are not impacted.   As a precaution, we have restarted some key services.

 

If any changes emerge or significant security issue develops, we will update our news.

 

Questions?

If you have a question about GHOST, please open a low priority ticket.  If you have a security issue, GHOST is unlikely the cause.  In more than 98% of all security incidents we investigate, outdated web application software or poor PHP programming is the cause of the security breach.

 

 

 

 

 

 


Read more »



Jan
16
Web Application Security Services
Posted by Jeff H. on 16 January 2015 10:19 AM

Over the past two years, we have been working very hard improving our server management approach and tools we use.  As a result, we are seeing fewer and fewer services impacting events. 

Our monitoring provides us early warning on a number of issues allowing us to resolve them before they have an impact.  This is good news as it leaves our team more time to research further improvements.

Despite these improvements, we are seeing a growing number of tickets related to Web Application Security.   Common issues are:

  • Spam Floods
  • Malware Attacks
  • Overloaded Servers

Since we do not maintain your web application, there is little we can do to correct the underlying cause of these attacks.   Most of the tools at our disposal are reactive not proactive. 

 

Solutions:Your best defense against these issues is keeping your sites updated.  There are some tools like Manage WP, CMS Commander and others than can help if you have a large number of sites. 

Server-side defenses like ModSecurity are often too unwieldly to manage on systems with a large number of shared hosting sites. ModSecurity can break sites, resulting in a higher support load for you and us.  If you have few sites, then companies like Incapsual and Sucuri provide Web Application Firewalls.

 

Services:

If you are having repeated issues, you may want to open a special security case with us to evaluate the best solution.  We are provided discount pricing for customers on management plans.  Pricing ranges from $250-500 for most situations depending on the complexity and scope of your operations.  We can help recommend a security strategy with milestones.

With our management plans we do our best to keep things secure, but cleaning up recurring security issues is not covered by the plan.  To prevent additional, unexpected clean up costs in the future, getting an action plan put together now may help reduce long term cost and improve security.

 

 

 

 

 


Read more »



Dec
30
New Year's Holiday Schedule
Posted by Juli Z. on 30 December 2014 11:03 AM

Just a reminder: 

 

rackAID's sales and case-based support departments will be closed 31 December through 4 January 2015.

 

Customers with managed services or managed servers will continue to receive 24/7 support during this period.  Please open a ticket in our helpdesk - as always we are staffed 24/7 to handle urgent issues.

 

 


Read more »



Dec
29
Master Service Agreement Change
Posted by Jeff H. on 29 December 2014 10:13 AM

We have modified our Master Service Agreement and posted it to http://www.rackaid.com/legal/.

The effective date for this agreement is the later of your next renewal date or Feb 1st, 2015.

We will be rolling out new agreements for:

  • Server Management
  • Server Hardware
  • Security Services

in the coming weeks.  These will not materially impact your services but will clarify some terms of our agreement.

 


Read more »



Dec
23
2014/2015 Holiday Schedule
Posted by Jeff H. on 23 December 2014 11:56 AM

Happy Holidays.

 

rackAID's sales and case-based support departments will be closed 12/23-12/28 and 12/31-1/4.

 

Customers with managed services or managed servers will continue to receive 24/7 support during this period. 

 

Just open a ticket in our helpdesk - as always we are staffed 24/7 to handle urgent issues.

 

 

 

 


Read more »