Security.

Changing your password

Once logged into STORM, hover your mouse over your email address displayed in the top right corner of the page and click on Security Click the Change Password button and enter your new desired password into the 2 fields as well as your existing password. Click the Change Password button to change the password. That’s […]

Read more

FTP Security Limitation (Lib & Etc folders)

When trying to upload certain folders to a websites public folder as the default FTP user that is created when you make a site in STORM, you will get a ‘550 etc: permission denied’ error.  This particularly impacts folders called etc or lib as they are also the names of root system folders on a […]

Read more

Enabling two factor authentication

We strongly recommend that you protect your STORM account using 2-factor authentication. To get started you will need to have an authentication app installed on one of your mobile devices, we would recommend using Google Authenticator for this which can be downloaded here. Once you have this app installed, follow the simple steps below to […]

Read more

Viewing recent changes on your server

Every change you make within STORM will be saved into the Recent Events log. This log allows you to view any activity and changes that have been within STORM. This includes changes made by other STORM users, changes made by the Nimbus support team and of course any changes you have made. This is a […]

Read more

Whitelisting your IP address

By default, all ports are blocked except for 21 (FTP), 80 (HTTP) and 443 (HTTPS). Adding an IP address will allow port 22 (SSH), 3306 (MySQL) and phpMyAdmin access to your server. You can enter either add a single IP address or a range of IP addresses using a slash. For example 176.56.56.1 or 176.56.56.0/23. […]

Read more

Enabling remote MySQL Access

First, make sure you have whitelisted your IP address by following our Whitelisting your IP address guide. From the STORM dashboard, click on Configuration. Click the Enable button from within the Remote MySQL Access section.

Read more

PCI Compliance

STORM has a one click option to help with your PCI compliance. Part of your PCI compliance will be a server scan, this option applies the requires security to pass that vulnerability scan. STORM server are very secure by default but we do not go the full way and make them PCI scan proof by […]

Read more

Preventing Compromised Passwords

In February 2018 Troy Hunt launched the Pwned Passwords v2 service which can be used, via an API, to check for any compromised passwords. Pwned Passwords is a database of over half a billion real world passwords that have been exposed in data breaches. As of April 2018, Nimbus Hosting, decided to incorporate the API […]

Read more

Allowing authorization header in apache

For security reasons, by default, Apache on STORM servers doesn’t pass “Authorization” headers sent from a client to PHP. If you would like Apache to pass this header to your PHP application, you simply need to edit the website’s .htaccess file and add the following line: CGIPassAuth on

Read more
Nimbus Hosting
1 Centrus, Mead Lane Hertford Hertfordshire SG13 7GX GB 0203 005 9181 [email protected]
×