Category Archives: Security

Security related things, scripts, firewalls, updates and other goodness

Whitelist your own computer in fail2ban

Fail2ban is a great "dynamic" firewall for servers that is installed by default on many of our VPSs, and we can install it on your VPSs at your request. It protects against brute-force attacks, where an attacker is trying to … Continue reading

Posted in HOWTO, Rimuhosting, Security | Tagged , , | Leave a comment

ClamAV: mpool_malloc and disk space

ClamAV is an open source antivirus engine for detecting trojans, viruses, malware & other malicious threats. The most common use we see is to check emails for bad content. Some of our users have recently been seeing errors from "freshclam" … Continue reading

Posted in Security | Tagged , , , , | Comments Off on ClamAV: mpool_malloc and disk space

Using Fail2ban on wordpress wp-login.php and xmlrpc.php

A fair few customer of ours use wordpress and occasionally notice that there are people hammering on a few URLs This can cause high load, slow websites and a number of issues, espoecuially when you have more than a single … Continue reading

Posted in Rimuhosting, Security | Tagged , , | Comments Off on Using Fail2ban on wordpress wp-login.php and xmlrpc.php

How to get an A pass SSL rating for your SSL website

Everyone wants security, and its ideal that your SSL certificates are also secure. With this in mind, websites like SSLLabs have a testing tool that is used to grade the SSL certificate installed on your server. Often people get a … Continue reading

Posted in Security | Tagged , , , | Comments Off on How to get an A pass SSL rating for your SSL website

Monitor sites for exploits

We dislike dealing with exploited websites. A common cause is "the long forgotten outdated install from a web developer who left years ago. hoping works forever". Public facing services need to be kept updated in order to remain secure, so … Continue reading

Posted in HOWTO, Security | Tagged , , , | Comments Off on Monitor sites for exploits

Keeping WordPress secure

According to Wikipedia, "WordPress is the most popular blogging system in use on the Web, at more than 60 million websites."  It's also the most commonly installed blogging system on our customers' servers, and we use it to run the … Continue reading

Posted in HOWTO, Rimuhosting, Security | Tagged , , , , | Comments Off on Keeping WordPress secure

Debian Squeeze (6) ends support – time to upgrade

February 29th, 2016 marks the end of LTS Support for Debian Squeeze, which is still used by many of our customers.  This means that updates for known security issues will no longer be produced and over time, a server running … Continue reading

Posted in HOWTO, Rimuhosting, Security | Tagged , , | Comments Off on Debian Squeeze (6) ends support – time to upgrade

SSLv3 and securing against Poodle

If you are using SSL in your web server, you probably want to read this. Google recently published details about an attack that targets SSLv3. The exploit first allows attackers to initiate a “downgrade dance” that tells the client that … Continue reading

Posted in Rimuhosting, Security | Tagged , , , , , , , , | 2 Comments

NTP servers and DoS Attacks

NTP servers have been in the news over the New Year, as security sites and social media talk about potential attacks. This is important because many linux servers run ntpd to help keep their clock time correct. One of the … Continue reading

Posted in Security | Tagged , , , , , | Comments Off on NTP servers and DoS Attacks

Identifying exploits and exploited websites

I have made posts before regarding how to find exploits, and what to do about those previously, however it has come to my attention that some people are not even realizing what the basics are to look for. In this … Continue reading

Posted in Rimuhosting, Security | Tagged , , , , | Comments Off on Identifying exploits and exploited websites