Web Hosting Resource

Brief: On Monday March 1st we will be changing a php.ini configuration option on all of our shared and reseller hosting servers which may affect your website code.

(more…)

You can change all your passwords related to your Pipe Ten hosting account from within the control panel as follows:

• Control panel password.
• Primary FTP account password.
• Sub-FTP user passwords – Navigate to ‘FTP/User Account’ > ‘FTP User’ in the menu then click ‘Edit’ next to the Sub-FTP username you wish to edit and then ‘Change’ next to the password heading. More information on Sub-FTP.
• Mailbox passwords:
  • Via the control panel – Navigate to the ‘Mail Info’ > ‘Mail Manager’ in the menu and select the mailbox you require the password changing on by clicking on the email address. You can now fill in the new password twice to confirm and scroll to the bottom to submit.  More information on Mail Resources.
  • External to the control panel in UK or Dublin
• MySQL database user passwords.
• MS SQL database user passwords are similar to the MySQL method however need to navigate to the ‘MS SQL Login’ section of the control panel under ‘Databases’ > ‘MS SQL’ > ‘MS SQL Logins’ in the menu. The click the ‘Change’ icon next to the Login you wish to change the password for.  More information on MS SQL Users.

It is imperative that you keep your contact details updated as Pipe Ten will use this information to contact you about your account account as required, especially that there is a valid email address listed on the account as this is the primary method of communication.

There are two contacts for every Pipe Ten hosting account and these can be updated as follows:

Contact Details
Login to your UK or Dublin hosting control panel and navigate to ‘Account’ > ‘Contact Info’ in the left hand menu.

Billing Details
Login to your UK or Dublin hosting control panel and navigate to ‘Billing’ > ‘Billing Profile’ in the left hand menu. Further information on updating your billing profile.

“It looks like sites which have not upgraded to 2.6.3 are being exploited in an interesting way whereby a hacker, probably using an automated script, is hacking into sites with the vulnerability and changing the settings of one of the dashboard modules to point to a different feed thereby encouraging people to go to a different site which is offering a dodgy upgrade.”

That was the response of Peter Westwood (one of the lead developers of popular blogging software provider Wordpress) upon news that some of its users with an outdated Wordpress installation may be prompted to download a more compromised version from a spoof website (wordpresZ.org).

It’s important that all customers verify the source, security and legitimacy of any software that they install to their Pipe Ten hosting accounts and pay special attention when upgrading.

Read more at The Register – Fake site punts Trojanised WordPress and additional analysis at the sources blog.

Quite a few of you have been asking what our new EV SGC SSL certificates do, and why they are “so expensive”. Hopefully we’ll explain in relatively simple terms below why these certificates are worth every penny…

(more…)

What is Mod Security?

ModSecurity is a web application firewall.

(more…)

We operate both inbound and outbound firewalls across all of our shared hosting offerings. We also have IDS (intrusion detection systems) on both the servers and routers to capture/track/prevent malicious requests where possible. This is all coupled with high frequency software patching and restricted user level functionality.

As you can imagine ensuring the security of our servers reduces the possible likelyhood of things going wrong which inturn lowers our long-term overheads.