Another day, another major vulnerability in an important piece of software. Wordpress, one of the most widespread CMS’es in the world, has recently released a new version in order to close a vulnerability which allows attackers unauthorized access to your environment.
When a user logs into Wordpress so-called ‘authentication cookies’ are created and placed on your computer. These authentication cookies contain information regarding the user and authentication and are used for providing access. However, it now seems those authentication cookies can be forged by an attacker, thereby granting full access to your environment.
This morning a vulnerability in OpenSSL was disclosed, which allows secure connections to be intercepted.
The OpenSSL package is used for setting up encrypted connections such as SSL and TLS. You may know these connections as SSH connections to your server or the encrypted HTTPS connections in your browser. You may know these connections as the encrypted connections in your webbrowser indicated by a green lock-icon.
Today a vulnerability called the Heartbleed Bug was disclosed which allows malicious parties to eavesdrop on your encrypted connection, making the encryption ineffective. This also means that transmitted passwords can be captured.
Together with our Magento partner SupportDesk we are pleased to present the ninth version of our popular Magento image. This version contains a number of important updates of system software like PHP, MySQL, Apache, Direct Admin and CentOS.
We have been moving all our services to OpenStack since the introduction of the CloudVPS Object Store last April. Since December of last year we have been beta testing our new OpenStack based virtual server platform CloudVPS Compute. With this new platform you will be able to quickly create virtual servers and complex network setups. CloudVPS Compute can be controlled through the elegant Skyline interface or the OpenStack API. We would like to provide you with an update regarding the beta test and official launch of this new platform.
Spam is still one of the biggest inconveniences on the internet. Not only incoming spam causes problems but inadvertently sending spam or seen to be sending spam as well. Spammers regularly hack servers that are subsequently abused for sending spam. Most hacks take place because updates to websites are not installed in time or because weak passwords are cracked. We recommend you to install updates on time and apply proper password management to your environments.
CloudVPS has been selected as a cloud provider by the United Nations. After successfully provisioning and hosting cloud servers for the web applications of UN-HABITAT and the UN Industrial Development Organisation CloudVPS also provisioned a cluster for the UN Environment Programme.
Starting today, CloudVPS offers lightning fast international distribution of website content via a free Content Delivery Network (CDN). A content delivery network is a distribution network of fast servers that a spread out over multiple datacenters around the world. This means the CDN system can store static content like pictures at a location close by the visitor of a website. This content will subsequently be loaded extremely quickly when the page is requested.
Most often the largest part of a websites’ content is static so this can have an enormous effect on the response time of the page. CloudVPS offers its CDN together with international telecom Level 3, this means there are 93 locations across the world that can serve your content.
For 45 'stackers' Thursday January 23rd was all about open source cloud computing, during the second OpenStack Meetup Amsterdam, at Pakhuis De Zwijger in Amsterdam, hosted by CloudVPS.
The first OpenStack Meetup gathering had shown a bit of a wait-and-see attitude, because most of the visitors had not had much practical experience with OpenStack yet. In this second Meetup however, many participants already had a concept cluster operational, and some of them had even successfully completed a number of business cases. The Meetup was also joined by representatives from companies that are building ambitious OpenStack management solutions for the enterprise, like Mirantis, SUSE And RedHat.
php-opencloud is a popular libary to make it easy for PHP to communicate with OpenStack clouds. Our customers use it a lot to communicate with the CloudVPS Object Store.
Rackspace, an American provider, has originally developed php-openstack in-house and released it open source after the introduction of OpenStack. During this release it was made possible for php-opencloud to communicate with not-Rackspace based OpenStack clouds. A separate 'OpenStack module' was needed for this because the Rackspace cloud diverges in some important ways from a generic OpenStack solution.