Web Hosting Blog

• 24Jan

  Web Hosting FAQ’s And Description Of Co-location

  Data Center Management, Server Security, Web Hosting, web security No Comments

  Co-location is also referred as Colo. A web server which is located at a dedicated facility designed with the resources that include a secured rack, security and support, dedicated internet connection and regulated power supply. Customers can physically house their hardware and other equipments in the secure and safe environment of co-location centers. There is a potential risk of fire if kept in the offices and warehouses. Most of the co-location facilities offer high security, fire detection and extinguishing devices, power generators for back-up, multiple connection feeds, filtered power etc. Co-location sites are dedicated towards providing services to rapidly expanding business of eCommerce and Web Hosting.

  Co-location hosting provides the opportunity of keeping the server in a premiere co-location facility which focuses on the needs of the co-location server. Co-location offers features such as video surveillance, Fire proof facility and high bandwidth availability.

  

  Advantages and Disadvantages of Co-location :

  A] Advantages:

  1. Control over administration of web server
  2. Higher flexibility
  3. Overall hosting costs are reduced.
  4. Option available for upgradation whenever required.
  5. Availability of large storage space.
  6. The storage location provides fast internet connection, special infrastructure for servers, security etc.
  7. Full customization facility.
  8. Option of using existing hardware.
  9. Less dependence on external customer support services due to remote administration.
  10. Hardware specification are according to customers hence able to deliver better performance.
  11. Maximum uptime for large sites.
  12. Depending on the budget customers can purchase high capacity, fast and powerful servers
  13. Availability of High bandwidth is one of the most important advantages.
  14. Server’s are under constant surveillance of the security.

  B] Disadvantages

  1. It’s the customers responsibility of Web Server Administration
  2. Initial cost up-front
  3. Expensive
  4. Need to maintain own equipment
  5. Hardware may become outdated in a short span of time.
  6. Need to update own equipment
  7. Need to purchase own equipment.

  Tags: Co-location, Co-location Hosting, Co-location server hosting, Server Hardware, Server Security, web server, Web Server Administration

• 03Dec

  Benefits And Features of Windows 2003 Hosting.

  Dedicated Server Hosting, Exchange Server, Microsoft, Server Security, Web Hosting, Windows Web Hosting No Comments

  Provision of 100% focus on Advanced Microsoft Windows Hosting on Windows Server 2003. Windows Server 2003 comes with Internet Information Service (IIS) 6.0. The Windows 2003 web hosting IIS 6.0 uses a new request processing architecture and application isolation environment which enables individual Web applications to function within a self contained, self managed process. This kind of an environment prevents one application such as a Web site from stopping another, reducing the amount of time that the administrators need to spend to restart the services inorder to correct application related issues.

  Windows 2003 enhances a secure infrastructure and a powerful application platform for building web solutions.

  

  Features Of Windows Server 2003

  Security

  Internet Information Services IIS 6.0 is configured for maximum security to increase Web Server Security. The Windows Server 2003 and IIS 6.0 offer one of the most dependable, connected, productive and integrated Web Server solutions. Along with these features it also provides fault tolerance, automatic application recycling, requesting queuing, caching and application health monitoring.

  Scalability

  Through scale-up, enabled by symmetric multi processing (SMP) and scale out enabled clustering, Windows Server 2003 offers scalability.

  Availability

  In case one of the nodes in a cluster is unavailable due to some failure or because of maintenance then another node starts offering services immediately, this process is known as “Failover”. The Windows Server 2003 has enhanced clustering support and provide significant improvements in scalability, availability and manageability.

  Tags: Failover, IIS, IIS 6.0, Internet Information Service 6.0, Microsoft Windows Hosting, SMP, symmetric multi processing, web hosting solutions, Web Server Security, web solutions, windows hosting, Windows Server 2003

• 17Nov

  Simple Data Security Tactics: White listing and Black listing.

  Computer, General, Server Security, data security No Comments

  White listing and Black listing are common tactics used for data security.

  Black listing is security trick of allowing information about known malware.

  White listing permits only safe programs to run. These two are security tricks used by many businesses where keeping the computers free from malware is of utmost importance. Major resources are spent by IT departments for keeping away the bad stuff or finding and removing the unwanted malware. Trojans, Viruses, Malware and Spyware or any such unwanted programs can cause damage to computer’s or the complete network.

  Black listing is a common data securities or prevention methodology. Antivirus and antispyware programs after regular intervals scan the system for catching the unwanted programs and remove them from the hard drive.

  

  Whereas White listing only permits known or approved software’s to install and run.

  Sometimes both the techniques are used for more efficient protection. It is called the white over black methodology. In this only approved programs are run, users can remove the system slowing programs such as Anti-virus and Anti-spyware.

  Different white listing products use varied strategies to block executable files from running.

  Tags: antispyware, antivirus, Black listing, data security, Information Security, malware, spyware, Trojans, Viruses, White listing

• 01Nov

  Computers Across the Globe Infected by a Trojan Virus.

  Computer, General, Internet Security, News & current Release, Server Security No Comments

  The virus is reported to steal online bank account details of almost 500,000 consumers. The virus has also affected credit card and debit card holders. This Trojan is expected to be the most advanced crimeware ever designed till date.

  

  The Trojan has been discovered by RSA. RSA expects that computers across the planet have been infected by this Trojan virus except for approximately 2000 domains have been left safe, as declared by RSA’s security division.

  RSA described that the Sinowal Trojan is one of the biggest threats for computers connected to the internet. The Trojan uses a very common infection method known as “drive-by-downloads”. The users cannot realise that their computer is getting infected as the process takes place at the backend of the computer processing. According to RSA authority, the Trojan has been operational since two and a half years and has been quietly collecting information. The group that has given birth to such a disastrous Trojan has been releasing variants of the virus periodically to keep it going.

  RSA said that they have been tracking this Trojan since 2006. But have not been able to determine the generators of the virus.

  Since April 2007 there have been a sudden attack explosion by various viruses over the internet, and many of the web pages have been infected.

  Inorder to counteract on this issue, some simple steps can be followed for protecting the information inspite of using security softwares. RSA has adviced users to “Think before you CLICK any web link”. A lot of web traffic means more money and which can prove to be a boon for the criminals. Users should also analyze if their bank showed a rise in any kind of online forms of authentication or have asked to provide different account details or any social security number in the recent past.

  Though not clicking on any web link might not keep the users 100% secure, but this can definitely reduce the chances of attacks.

  Various law enforcement agencies have been alerted for the same reasons.

  Tags: bank account, credit card, crimeware, debit card, Internet, Online, RSA security division, security software, Sinowal Trojan, Trojan, virus

• 24Oct

  Windows released an out-of-cycle patch on an URGENT basis.

  Computer, Exchange Server, General, Internet Security, News & current Release, Server Security No Comments

  Protect your computer system by applying the patch, released by Windows.

  

  Microsoft has found evidence of a RPC (Remote Procedure Call) attack which can infect almost all versions of Windows machines across the Net. The bug is able to pass through the Firewalls installed on your machine.
  Windows Server 2003, 2000, and XP (Service Pack 2 or 3 installed) are more vulnerable.

  

  Below are the links to the patches for different versions of Windows :

  1. Windows Server 2008 64-bit.
  2. Windows Server 2008 32-bit
  3. Windows Vista 64- bit edition
  4. Windows Vista
  5. Windows Server 64-bit edition
  6. Windows Server 2003 (With service pack 1&2)
  7. Windows XP 64- bit
  8. Windows XP (With service pack 2 or 3) 
  9. Windows 2000 (With Service Pack 4)

  These patches have been released by Windows.

  Tags: firewall, RPC, windows, Windows Protection, Windows Server, Windows Server 2000, Windows Server 2003, Windows Vista, Windows XP

• 22Oct

  Steps to enable SSL for all customers Interacting with your Web site in Internet Information Services

  Computer, Customer Service, Domain Name, Exchange Server, General, Server Security No Comments

  There are two types of Web servers SSL security features : Server Certificate for authenticating your website by the users before they send any personal information such as credit card numbers and Client Certificates for authenticating users requesting information from your website.

  Here I am assuming that you will use a third-party certificate authority (CA) to provide authentication for your Web Hosting server. You can create your own certificate with the Internet Information Services (IIS) server. But here the client must have enough trust in you as a certificate authority.

  Its essential that IIS is installed on your machine and your Web site has already been published.

  Procedure to get a Certificate

  For obtaining a certificate you need to generate a CSR (Certificate Signaling Request) through the IIS management console. A CSR is a certificate that you generate on your server for validation of computer specific information about your server when requesting a certificate from a third party CA (Certificate Authority). CSR is an encrypted text message that is encrypted with a public/private key pair.

  The following information about your computer is extracted in the CSR that you generate:

  • Organization

  • Organizational unit

  • Country

  • State

  • Locality

  • Common name (Host Name and Domain Name)

  Steps To Generate a CSR :

  1. Accessing IIS Microsoft Management Console (MMC) : Right Click My Computer >> Manage >> Service and Application >> Internet Information Services >> IIS Console.
  2. Select the specific Web site on which you want to install a server certificate. Right-click the site and click Properties.
  3. Directory Security >> Secure Communication >> Next.
  4. Create New Certificate >> Next.
  5. Prepare the Request Now, but send later >> Next.
  6. Enter Name in the name field. The higher the bit length, the stronger the encryption but preferred is 1024 bits.
  7. Enter your organization and organizational unit information in the Organization Information section. The information you are providing must be accurate. Press Next this gives you Your Site’s Common Name section.
  8. The Your Site’s Common Name section is responsible for binding the certificate to your Web site. For SSL certificates, enter the host computer name with the domain name. For Intranet servers, you may use the NetBIOS name of the computer that is hosting the site. Click Next to access geographical information.
  9. Enter your country, state or province, and country or region information. Do not use abbreviations. Click Next
  10. Save the file in a .txt file format.
  11. Confirm your request details. Click Next to finish, and exit the Web Server Certificate Wizard.

  Installing The Certificate

  Now once you receive an e-mail or a link given to you by the third party CA, the certificate needs to be installed onto the website.

  Follow the below Steps :

  1. Copy the certificate obtained from the CA to the Web server.
  2. Open the IIS MMC as described in the “Generating the CSR” section.
  3. Go to Properties of the web site on which the certificate needs to be installed.
  4. Directory Security >> Server Certificate >> Next.
  5. Process the Pending Request and install the certificate >> Next.
  6. Browse to the location of the certificate that you saved in step 1. Click Next twice, and then click Finish.

  Enforce SSL Connections

  Port 443 needs to be enabled for secure communications with web site by following the below procedures that can be achieved.

  1. From the Computer Management console, right-click the Web site on which you want to enforce SSL and click Properties.

  2. Click the Web Site tab. In the Web Site Identification section, verify that the SSL Port field is populated with the numeric value 443.

  3. Advanced >> Multiple SSL Identities for this web site >> Add (If port 443 is not added). Select server’s IP address and type 443 in SSL Port field. >> Ok.

  This has now enabled the 443 port. Now to enforce the SSL connections, follow the steps below :

  1. Directory Security >> Secure Communication >> Edit.
  2. Require Secure Channel (SSL) Both client and you should have the same bits if there is a mismatch then the communication cannot take place, either you or client need to upgrade the encryption strength.
  3. Once done open the browser and try to connect to the web server using standard http:// protocol. If the SSL has successfully been enforced then following error message should be seen :

  The page must be viewed over a secure channel
  The page you are trying to view requires the use of “https” in the address.

  Please try the following: Try again by typing https:// at the beginning of the address you are attempting to reach. HTTP 403.4 - Forbidden: SSL required Internet Information Services
  Technical Information (for support personnel) Background: This error indicates that the page you are trying to access is secured with Secure Sockets Layer (SSL).

  Now connect to your Web site only by using the https:// protocol its working OK.

  Tags: CA, certificate authority, Certificate Signaling Request, Client Certificates, CSR, IIS, IIS Console, IIS MMC, Internet Information Services, Microsoft Management Console, MMC, Server Certificate, SSL certificates

• 18Oct

  Block Spammers/Hackers Using Apache2’s mod_spamhaus.

  Computer, Server Security, linux No Comments

  Using the Apache Module : mod_spamhaus which uses DNSBL one can block spam transmitted through web forms which prevent URL injection, block http DDoS attacks from bots and protect the web service denying access to bad IP addresses.

  

  Here is how you do it.

  INSTALLATION

  Apache Extension Tool (apxs2) is essential to be installed in order to compile mod_spamhaus.

  • Use following command for it installation:

  ————————————————————

  apt-get install apache2-prefork-dev

  ————————————————————

  • Source package is required, it can be downloaded from : http://sourceforge.net/projects/mod-spamhaus/

  ——————————————————————————————————-

  wget http://kent.dl.sourceforge.net/sourceforge/mod-spamhaus/mod_spamhaus05.tar.gz

  ——————————————————————————————————-

  • Now open archive, compile and install module with the commands:

  ———————————————————

  tar zxvf mod_spamhaus05.tar.gz
  cd mod-spamhaus
  make
  make install

  ———————————————————

  • To load mod_spamhaus module, you must add Load Module directive to the main config file of the web server.

  ————————————————————-

  vi /etc/apache2/httpd.conf

  ————————————————————-

  —————————————————————————————————

  [...]

  LoadModule spamhaus_module /usr/lib/apache2/modules/mod_spamhaus.so

  —————————————————————————————————

  CONFIGURATION

  You should be aware of directives that are supported by mod_spamhaus before the configuration is written.

  MS_Methods - If the httpd’s method used by the visitor match, module verify user’s IP address
  MS_WhiteList - A simple whitelist file where you can put IP address to bypass
  MS_DNS - DNSBL to use. Useful if you want make a local rbldnsd instance
  MS_CacheSize - Number of cached addresses

  • Its time to open the config file of web server for writing the configuration.

  ———————————–——————————

  vi /etc/apache2/apache2.conf

  —————————————————————–

  ————————————————————————–

  [...]

  <IfModule mod_spamhaus.c>

  MS_METHODS POST,PUT,OPTIONS,CONNECT

  MS_WhiteList /etc/spamhaus.wl

  MS_CacheSize 256

  </IfModule>

  [...]

  ————————————————————————–

  • Now an empty whitelist file needs to be created :

  —————————————-

  touch /etc/spamhaus.wl

  —————————————-

  With this we are done with the configuration part.

  • Now just restart Apache2 by :

  ————————————

  /etc/init.d/apache2 restart

  ————————————

  With this you are free from Spammers and Hackers.

  Tags: Hackers, linux, Linux Apache2, spammers

• 16Oct

  Windows Exchange Server’s : 2007 and 2008.

  Exchange Server, General, News & current Release, Server Security No Comments

  Windows Exchange Server 2007

  Exchange Server 2007 was launched in late 2006 for business customers. Exchange Server 2007 works only on 64-bit x86-64 versions of Windows server. It is an integrated part of Innovative Communications Alliance.

  

  Major developments in Exchange Server 2007.

  • Protection : Anti-spam, anti-virus, compliance, clustering with data replication, improved security and encryption.
  • Exchange Management Shell: A whole new command-line shell and scripting language for system administration (based on Windows PowerShell). Shell users can perform every task that can be performed in the Exchange Server graphical user interface plus additional tasks, and can program often-used or complex tasks into scripts that can be saved, shared, and re-used. The Exchange Management Shell has over 375 unique commands to manage features of Microsoft Exchange Server 2007.
  • Improved Information Worker Access : Improved web access, unified messaging, improved calendaring and improved mobility.
  • Improved IT Experience : Command line shell and simplified GUI, 64-bit performance and scalability, simplified routing, improved deployment and role separation.
  • Unified Messaging : This feature enables users to receive voice mails, e-mails and faxes in their mailboxes. Exchange Server 2007 allows access to the users mailbox from mobile phones and other wireless gadgets. By giving a voice command it can granted control and listening to e-mails over the phone.
  • Increased database size limit : Now the size is 16Tb per database.

  

  Windows Exchange Server 2008

  Exchange Server 2008 is built on the same base code as Windows Vista. Due to this it has almost same functionality and architecture as that of Windows Vista. Processors and memory devices are modelled as Plug and Play devices, to allow hot-plugging of these devices. Using Dynamic Hardware Partitioning enables the system resources to be partitioned dynamically. Every partition possess its personal memory, processor and Input and Output host bridge devices.

  

  Key Improved features in Exchange Server 2008.

  • Core OS improvements : Completely multi componentized OS, improved hot patching (Without a reboot non-kernel patches can occur), support for being from EFI (Extensible Firmware Interface) compliant firmware in x86-64 systems, Dynamic Hardware Partitioning.

  • Active Directory Improvements : A new Read only Domain controller operation mode in active directory, Active Directory can be re-started, allowing ADDS to be stopped and restarted from the management console or the command-line without rebooting the domain controller.

  • Improved Disk Management and file storage : Ability to resize hard disk partition without stopping the server, Shadow Copy based block level backups which supports optical media, network shares and Windows Recovery Environment, improved failover clusters, Internet Storage Naming Server(iSNS) enabling central registration and de-registration and queries from ISCSI hard drives.

  • Improved Protocol and Cryptography : Support for 128 and 256-bit AES encryption for the Kerberos authentication protocol, improved certificate management, Secure Socket tunneling protocol.

  • Miscellaneous Improvements : Windows deployment services replacing Automated Deployment Services and Remote Installation Services, Internet information services 7

  Tags: Exchange Server, Microsoft, windows, Windows Exchange Server 2007, Windows Exchange Server 2008, Windows Exchange Servers, windows servers

• 22Sep

  Linux Useful Resources

  Linux Hosting, Server Security, Web Hosting Articles No Comments

  I’ve always found of compiling a list of handy links of the most useful resources, Here are some resources for Linux I gathered round, hope it would be helpful especially for the new starter. Please feel free to add more resources.

  Linux Useful Resources

  Major Distros

  Red Hat
  Fedora
  Ubuntu
  Knoppix
  Debian
  DistroWatch
  PCLos
  Mandriva
  SUSE
  Gentoo
  Slackware
  Damn Small Linux
  Mepis
  VectorLinux
  Lindows

  Pre-installed Linux computers:

  Seascape.us
  Ibexpc.com
  System76.com
  Magiansystems.com
  Linuxcomputersystems.com
  Linuxcertified.com
  Penguincomputing.com
  Emperorlinux.com
  Damnsmalllinux ( Mini ITX )
  Axiomtech.co.uk ( UK )
  Dnuk.com ( UK )
  Xtops.de ( Germany )
  MandrivaStore ( France )
  Linux-service.be ( Belgium )
  dell.com/ubuntu Dell+Ubuntu and Dell/Linux-info
  lxer.com ( A large list of addresses )
  linux-xp.com Linux XP Desktop

  

  Linux hardware incompatability list

  leenooks.com

  Ultimate ubuntu guide

  ubuntuguide.org
  psychocats.net/ubuntu

  Linux News:
  linuxjournal.com
  Linux.com (Newsforge)
  Slashdot
  Linux Today
  Tux.org
  Just Linux
  Freshmeat (software)
  OS news
  LWN.net
  PCBurn
  TuxMagazine
  LinuxPipeline
  Linuxgazette.net ( Online Linux Magazine )

  Mirrors List:

  kernel.org/mirrors
  gentoo.org/main/en/mirrors2.xm
  debian.org/mirror/list

  Ubuntu Forums
  ubuntuforums.org

  Bittorrent Downloads:

  tlm-project.org
  The Linux Mirror Project
  Linux ISO torrent
  linuxtracker.org

  Linux Icons:

  Art Gnome.org
  gentoo-art.org
  DigitalGarage
  Tux ‘n Tosh
  KDE-Look.org

  Linux & Wireless LANs
  hpl.hp.com/personal/Jean_Tourrilhes/Linux

  Free Linux games
  techgage.com/article/top_10_free_linux_games
  WINE Gaming Tutorials
  linux.wordpress.com/2007/02/07/wine-gaming-steam-half-life-half-life-2-counter-strike-source-and-16

• 04Jul

  High Availability-Failover Clustering

  Dedicated Server Hosting, MySQL Hosting Issues., Server Security 1 Comment

  The High availability clusters are computer clusters which are implemented mainly for the purpose of improving the availability of the services. The high availability clustering detect hardware/software faults, and instantly restart the application on another system without requiring administrative intercession, this process is commonly known as a Failover process. It has functionality that provides failover from one node to another if the current node becomes unavailable, a failover cluster appears on the network as a normal application, but it has additional functionality that increases its availability in case one server fail.

    –>

  The clustering software may configure the node before starting the application on it. To run the system smoothly it require appropriate filesystems to be imported and mounted and  to set-up cluster rules that enable a common set of configurations also network hardware may have to be configured, and some supporting applications may need to be running as well.Diagram: HA Cluster network (2 node)

  

  The purpose of HA clusters to utilize all available techniques to make the individual systems/shared infrastructure as reliable as possible. The high availability clustering should include the following;

  * Build redundancy into a cluster.

  * Redundant network connections so that a switchover or network interface failures do not result in network outages.

  * Disk mirroring to avoid system crashes in case of failure of internal disks.

  * SAN data connections.

  * Redundant electrical power inputs.

  The high availability clusters generally use a critical clustering in private network connection and monitor the status of each node in the cluster. Such clustering are often required for critical databases, business applications, file sharing on a network and customer services such as e-commerce websites.

« Previous Entries