Tag Archives: Security

Exploits on Webmin 1.8xx and earlier

Developers have just announced the release of Webmin 1.930. This includes some important security fixes. If you have an older Webmin version please update urgently to insure your server remains secure. In particular they described an exploit that is fairly … Continue reading

Posted in Security | Tagged , , , | Leave a comment

Spectre and Meltdown article roundup

Our team is working on the best approach to secure our customers' systems against the recently reported Spectre and Meltdown vulnerabilities.  Our first step is to understand the problem and its mitigations.  This post provides a roundup of discussions and … Continue reading

Posted in Rimuhosting | Tagged , , , | Comments Off on Spectre and Meltdown article roundup

Kernel 4.14 LTS released

We have added the latest 4.14 kernel to our list of stable kernels for 64bit VPS servers. The 4.14 kernel includes a large number of performance enhancements, including ... filesystem io block_mq scheduler improvements new selectable scheduler options for disk … Continue reading

Posted in Featured | Tagged , , | Comments Off on Kernel 4.14 LTS released

Letsencrypt with Zonomi and Rimuhosting name servers using hooks

SSL is good, you should use it everywhere! Letsencrypt it is a project that allows you to obtain signed certificates for free (you should consider donating though) to secure your website. Big efforts have been done to make this accessible to … Continue reading

Posted in HOWTO, Rimuhosting, Security | Tagged , , , | Comments Off on Letsencrypt with Zonomi and Rimuhosting name servers using hooks

Reboot-less Xen patching

Recently there have been two sets of Xen vulnerabilities.  One being disclosed in September, the other earlier today.  Historically we have had to organize host updates which required downtime to reboot VMs. For these last sets of vulnerabilities we have … Continue reading

Posted in Rimuhosting | Tagged , , | Comments Off on Reboot-less Xen patching

Whitelist your own computer in fail2ban

Fail2ban is a great "dynamic" firewall for servers that is installed by default on many of our VPSs, and we can install it on your VPSs at your request. It protects against brute-force attacks, where an attacker is trying to … Continue reading

Posted in HOWTO, Rimuhosting, Security | Tagged , , | Comments Off on Whitelist your own computer in fail2ban

Using Fail2ban on wordpress wp-login.php and xmlrpc.php

A fair few customer of ours use wordpress and occasionally notice that there are people hammering on a few URLs This can cause high load, slow websites and a number of issues, espoecuially when you have more than a single … Continue reading

Posted in Rimuhosting, Security | Tagged , , | Comments Off on Using Fail2ban on wordpress wp-login.php and xmlrpc.php

Monitor sites for exploits

We dislike dealing with exploited websites. A common cause is "the long forgotten outdated install from a web developer who left years ago. hoping works forever". Public facing services need to be kept updated in order to remain secure, so … Continue reading

Posted in HOWTO, Security | Tagged , , , | Comments Off on Monitor sites for exploits

Keeping WordPress secure

According to Wikipedia, "WordPress is the most popular blogging system in use on the Web, at more than 60 million websites."  It's also the most commonly installed blogging system on our customers' servers, and we use it to run the … Continue reading

Posted in HOWTO, Rimuhosting, Security | Tagged , , , , | Comments Off on Keeping WordPress secure

deghost ridding the world of the ghost vulnerability one host at a time

As part of our mission to wipe the 'ghost' vulnerability (CVE-2015-0235) from our customers servers we have created 'deghost'. Deghost is a cross-distro script to determine the vulnerability of a libc library on a server and then patch that where … Continue reading

Posted in Rimuhosting | Tagged , | Comments Off on deghost ridding the world of the ghost vulnerability one host at a time