Social Media
Featured Posts
- Wordpress Upgrade shell Script - plugins, themes, crontab and more!
- Wordpress install script
- Setup mail hosting on Debian Squeeze and other distros using postfixadmin
- Setting up Domains Keys (DKIM) on Postfix
- Restoring an Exploited Wordpress files
- rdiff-backup script using sshfs for larger backups
- Quick and easy iptables blocking and firewalling basics
- Quick and Easy Automatic Backup Script
- PCI compliance - a basic HOWTO
- Mysql Master/Master Replication & File sync for quick easy scaling or load balance
- Kernel 4.14 LTS released
- HOWTO videos for Rimuhosting Control Panel on youtube
- Fixing broken permissions or ownership
- Easy Peasy Linux Firewalling - iptables
-
Recent Posts
- Exploits on Webmin 1.8xx and earlier
- “Sad SACK” network protection
- Running WordPress as a Docker Stack
- LCA2019 round up
- Your Let’s Encrypt client used ACME TLS-SNI-01 domain validation to issue
- Solve Letsencrypt (including Certbot) problems caused by rogue .htaccess files
- New Zealand-Based RimuHosting — Striving to Help Tech-Savvy Businesses Across the Globe Put Down Their Roots for Strong Online Growth
- Certbot/Letsencrypt with Apache and Tomcat using proxypass
- Debian Stretch and old installs
- Ubuntu 18.04 available
- Drupal Exploits – script to detect versions
- 32 to 64 bit distro crossgrades for Debian and Ubuntu
- Modernizing your ancient server distro
- Spectre and Meltdown article roundup
- Kernel 4.14 LTS released
- Letsencrypt with Zonomi and Rimuhosting name servers using hooks
- Virtualmin Changes binding from ip:80 to *:80 and breaks older configs … FIX
- Reboot-less Xen patching
- DKIM and subaddressing added to 25mail.st
- Whitelist your own computer in fail2ban
Subscribe to Posts via Email
Meta
Tag Archives: Security
Exploits on Webmin 1.8xx and earlier
Developers have just announced the release of Webmin 1.930. This includes some important security fixes. If you have an older Webmin version please update urgently to insure your server remains secure. In particular they described an exploit that is fairly … Continue reading
Spectre and Meltdown article roundup
Our team is working on the best approach to secure our customers' systems against the recently reported Spectre and Meltdown vulnerabilities. Our first step is to understand the problem and its mitigations. This post provides a roundup of discussions and … Continue reading
Posted in Rimuhosting
Tagged exploit, linux, Security, vps
Comments Off on Spectre and Meltdown article roundup
Kernel 4.14 LTS released
We have added the latest 4.14 kernel to our list of stable kernels for 64bit VPS servers. The 4.14 kernel includes a large number of performance enhancements, including ... filesystem io block_mq scheduler improvements new selectable scheduler options for disk … Continue reading
Letsencrypt with Zonomi and Rimuhosting name servers using hooks
SSL is good, you should use it everywhere! Letsencrypt it is a project that allows you to obtain signed certificates for free (you should consider donating though) to secure your website. Big efforts have been done to make this accessible to … Continue reading
Posted in HOWTO, Rimuhosting, Security
Tagged certbot, letsencrypt, Security, SSL
Comments Off on Letsencrypt with Zonomi and Rimuhosting name servers using hooks
Reboot-less Xen patching
Recently there have been two sets of Xen vulnerabilities. One being disclosed in September, the other earlier today. Historically we have had to organize host updates which required downtime to reboot VMs. For these last sets of vulnerabilities we have … Continue reading
Whitelist your own computer in fail2ban
Fail2ban is a great "dynamic" firewall for servers that is installed by default on many of our VPSs, and we can install it on your VPSs at your request. It protects against brute-force attacks, where an attacker is trying to … Continue reading
Using Fail2ban on wordpress wp-login.php and xmlrpc.php
A fair few customer of ours use wordpress and occasionally notice that there are people hammering on a few URLs This can cause high load, slow websites and a number of issues, espoecuially when you have more than a single … Continue reading
Posted in Rimuhosting, Security
Tagged fail2ban, Security, worpress
Comments Off on Using Fail2ban on wordpress wp-login.php and xmlrpc.php
Monitor sites for exploits
We dislike dealing with exploited websites. A common cause is "the long forgotten outdated install from a web developer who left years ago. hoping works forever". Public facing services need to be kept updated in order to remain secure, so … Continue reading
Keeping WordPress secure
According to Wikipedia, "WordPress is the most popular blogging system in use on the Web, at more than 60 million websites." It's also the most commonly installed blogging system on our customers' servers, and we use it to run the … Continue reading
Posted in HOWTO, Rimuhosting, Security
Tagged cloudflare, Security, upgrade, wordfence, wordpress
Comments Off on Keeping WordPress secure
deghost ridding the world of the ghost vulnerability one host at a time
As part of our mission to wipe the 'ghost' vulnerability (CVE-2015-0235) from our customers servers we have created 'deghost'. Deghost is a cross-distro script to determine the vulnerability of a libc library on a server and then patch that where … Continue reading
Posted in Rimuhosting
Tagged deghost, Security
Comments Off on deghost ridding the world of the ghost vulnerability one host at a time