Another day, another major vulnerability in an important piece of software. Wordpress, one of the most widespread CMS’es in the world, has recently released a new version in order to close a vulnerability which allows attackers unauthorized access to your environment.
When a user logs into Wordpress so-called ‘authentication cookies’ are created and placed on your computer. These authentication cookies contain information regarding the user and authentication and are used for providing access. However, it now seems those authentication cookies can be forged by an attacker, thereby granting full access to your environment.
A guest blog by well known PHP programmer Stefan Koopmanschap. He has produced a case study building a simplified PHP version of Wetransfer on our object store. This case study was published in the September 2013 issue of the number one international PHP magazine PHParchitect. Because PHParchitect wanted to publish the case study we can not provide it on our blog at this point but Stefan did write this article about some of the thinking behind the case study. We hope Stefans' case study and this article inspires others to build the next WeTransfer on our privacy aware and open cloud storage platform.
Groupon, the multinational company that brings potential customers and local businesses together with daily deals, chose for CloudVPS in order to migrate its services to a flexible cloud platform. To the great satisfaction of all the parties involved.
PW Webdevelopement's first project with the CloudVPS Object Store was a web application for the distribution and modification of price cards for airport shops in different international airports. PW Webdevelopment has been using an object store to store media files of their applications for a couple of years now.
Peter Wiggers, founder of PW Webdevelopment: "The biggest advantages of using an object store for the meda files are scalability and the high level of built-in redundancy. The extra security compared to maintaining a separate file server also plays its part.".
The media files related to this application were placed on Amazon S3 in the past. PW Webdevelopment recently decided to move their data to the CloudVPS Object Store, however.
We would like to congratulate our customer Exact Software with their new Dutch website which went online early last week. Exact is a leading global supplier of online and offline business software. The Dutch website is very important to Exact and handles millions of visits from new and existing customers every year. The new version has a new layout and combines the former exactonline.nl and exact.nl sites. The new site has 521 regular pages and many thousands of pages that are generated dynamically.
The site is not only more visually attractive and convenient, significant technological improvements have also been implemented. A new cluster is configured that consists of nine virtual servers. These virtual servers are located in two datacenters and the cluster is set up to keep working even if one of the datacenters would stop functioning. This allows the extremely high uptime demands of Exact to be met. The site also uses memcached to increase its speed.
The site examenklacht.nl ('exam complaint') of the Landelijk Aktie Komitee Scholieren (LAKS) has seen a lot of traffic lately. LAKS is the Dutch national action committee representing high school students. On the site examenklacht.nl students can get information about their high school exams and lodge complaints. The site is also the first site to publish Dutch exam results so the site tends to get swamped with visitors when that data comes in.
The site was actually unreachable a for a period of time on Thursday the 17th when 20,000 students tried to reach exam results at the same time. The examenklacht.nl site is located on a Windows virtual server. Below you can see the CPU graph of this VPS.