Over the past couple of days, a website vulnerability known as Heartbleed has been well documented.
The Heartbleed Bug is a serious vulnerability in the popular OpenSSL cryptographic software library. This weakness allows stealing the information protected, under normal conditions, by the SSL/TLS encryption used to secure the Internet. SSL/TLS provides communication security and privacy over the Internet for applications such as web, email, instant messaging (IM) and some virtual private networks (VPNs). - http://heartbleed.com
Nimbus Servers that are affected:
Any affected CentOS clients are automatically being updated – if you are running Litespeed that you purchased through us, your server will have already been secured. If you are a client who meets either of the above criteria, you can check your site/server by putting your domain in here: http://filippo.io/Heartbleed/
The Nimbus main site and youraccount.nimbushosting.co.uk area are unaffected.
General advice on wider internet browsing.
The current advice for your general web browsing is to change your passwords once you are assured that the site/service has been secured.
UPDATE – 12.58 11/04/14: We’ve patched all servers and run a scan across the entire network on the affected ports were confident all servers are now HeartBleed secure. You can confirm by testing your server/site here - http://filippo.io/Heartbleed/.
We’re excited to announce that a big wave of new Top Level Domains (TLD’s) are about to be launched – the first of which will go on sale at 16:00hrs today. You will be able to purchase them via our website at around 4pm on each day of release. See the table below for a list of release dates.
Here at Nimbus, we LOVE Magento. We’ve found some hidden gems in Magento’s default .htaccess that you can utilise to get your site running even faster on your hosting with us.
You’ll need to access your .htaccess file in the root of your web docs via FTP. Once you have a copy, save a backup of the old .htaccess and make the following changes. Continue reading
We’ve been alerted to a new vulnerability within Joomla and the JCE editor. The exploit allows a hacker to upload a file via the JCE and gain full access to the site. The vulnerability makes it possible to upload PHP Scripts within images.
If you are running Joomla on your site, we’d recommend taking the following steps:
The above steps of ensuring your Content Management System, plugins and backups are all up to date is always worth ensuring no matter if you are using Joomla or another platform such as WordPress etc.
Some of our clients have received a request from our central registrar (Melbourne IT) to request an update on their domain contact details. This is a result of an ICANN directive started at the beginning of the year.
We can confirm the notice is genuine and the issue with confirming your address relates to the address containing certain words that are not allowed. It is also worth double checking that your postal address formatting exactly matches that of Google Map’s. Continue reading
At Christmas we set you a festive riddle:
Where does Boxing Day come before Christmas?
The answer was: The Dictionary!*
Congratulations to Roger England who has bagged himself a Nexus 7 16Gb.
Thank you to everyone who entered, we hope you had a brilliant festive break.*We also accepted the answer: The Orthodox Church (as they celebrate Christmas Day on January 7th.