Category Archives: Software

Protecting your Cloud VPS (and your computer)

Posted on by
2

We strive to implement the best security practices we can at VPS.NET, to protect your Cloud Servers and Cloud Hosting accounts. It makes our job much simpler. Unfortunately there’s one thing we can’t control; your computer and your passwords. It’s startling the amount of hack jobs we see that aren’t caused by anything other than someone installing a trojan on your PC, thereby obtaining your password, or by a simple brute force script aimed at cracking your password. A lot of times what we then see happen, is the hacker will login to your FTP account, upload a mailing script, and send out thousands of spam emails. It makes your site look bad, it gets our IPs black listed, and none of it is any fun at all. So, lets go over a few basic security principles (and these apply to those of us who are on Macs too!).

Strong Passwords
As much as it pains me, ILoveTerry is not a good password. A basic brute force script would be able to crack it in less than 5 minutes. Even I<3Terry is on the weaker side. A strong password is something with combination of uppercase and lower case letters, numbers, symbols and is at least 8 characters long. It also should not contain any personal information, whether it be your name, street address, birthday or even your social security number. If anyone were to every try to gain access to your site, that’s where they would start. Your passwords should be random and unique to each site. As easy as it is, don’t use passwords over again on multiple sites, otherwise once one is leaked, you’ve opened yourself up everywhere. If you’re still uncertain, here’s a post of 500 passwords that you SHOULD NOT use.

Routine Password Changes
Before we even get into changing your password routinely, there’s something I have stress – I’d yell it from the mountain tops if Cleveland had any. Change your default password! When we create your account, you’re assigned a default password. It’s randomly generated and still unique to you, but it needs to be changed. Next up – change your password at least every 90 days. You never know when your password is going to be leaked. By changing your password every 90 days, if your password ever gets out, you’re making it likely that they’re going to get an old password.

Anti Virus Software
Everyone should be running some sort of anti-virus software. There’s no excuse. I know Norton and McAfee love to take over your computer, but there are several others that are entirely non-obtrusive, and do their jobs great. It’s not only important to have the software installed, but also to keep your virus definitions up to date. New viruses come out every day, and viruses are modified every day, so you may find yourself unprotected at some point in time and that has rendered the software useless.

Anti-Spyware Software
Some anti-virus software has anti-spyware built right in. That’s great. If yours does not, you need an anti-spyware software installed on your PC. Again, no excuse. While most spyware just likes to annoy you, and pop up random ads, there are pieces of spyware that are much more malicious, and like to steal your passwords, and credit card information.

Network Security
I expect that soon we’ll see a rise in wireless internet becoming the next tool for hackers to steal your information. It’s an absolute must that you secure your network. If you’re running strictly a wired network, your much safer than someone running a wireless network, but you’re not completely in the clear. A firewall is still necessary; even if it’s something as basic as Linksys’ SPI firewall. If you are running a wireless network, you’ve got quite a job ahead of you.

First, change the routers default password. Everyone knows the default username and password on almost all brands of routers are admin/admin.

Second, change the SSID. This is the broadcast ID that your wireless router broadcasts under. Don’t make it anything that is recognizable to you! I prefer SkyNet – it’s humorous to us nerds, yet no one knows it’s mine. If you’re okay manually setting up the network, you can even disable the SSID broadcast ID and then no one will see the router unless they manually configure their system to connect to it.

Next implement some sort of encryption policy. WEP is easily broken anymore, as the key is exchanged with each communication. If a hacker were to monitor enough packets being transferred back and forth between your PC and the router, they’ll eventually come up with your WEP key. WPA is a much better idea.

Finally, enable MAC address protection. This means that only the devices you have allowed on your network can connect to the network. Unfortunately, this is not an end-all solution, as MAC Addresses can be duplicated. This does however make connecting to your network much more difficult.

Hopefully these tips prevent some of the easy hack jobs that we’ve been seeing. However as we all know, our security is only as strong as the weakest link so it’s important that all of us continually monitor the security of our Cloud VPS, and our home computer network. If any of them are lagging behind, it’s bringing down the security of the entire system.

digg Protecting your Cloud VPS (and your computer)
reddit Protecting your Cloud VPS (and your computer)
stumbleupon Protecting your Cloud VPS (and your computer)
yahoo buzz Protecting your Cloud VPS (and your computer)
dzone Protecting your Cloud VPS (and your computer)
facebook Protecting your Cloud VPS (and your computer)
delicious Protecting your Cloud VPS (and your computer)
dotnetkicks Protecting your Cloud VPS (and your computer)
dotnetshoutout Protecting your Cloud VPS (and your computer)
linkedin Protecting your Cloud VPS (and your computer)
technorati Protecting your Cloud VPS (and your computer)
twitter Protecting your Cloud VPS (and your computer)
google buzz Protecting your Cloud VPS (and your computer)

Softaculous

Posted on by
7

softaculous Softaculous

How special is Softaculous that it deserves it’s own blog post? I’ll explain my story on how I became a fan.

I run my own personal website, which hosts my RSS Reader (Fever, which I’m a huge fan of!) and then a simple Gallery script where I store pictures from various vacations. I’d link to it, since I know everyone is dying to see my mug, but a few weeks ago it was … destroyed. I had manually installed the Gallery script 3-4 years ago, and I tried to keep it up to date. I really did. I failed at it. I wasn’t even very good at uploading photos in a timely manner, so updating the software was definitely out of the question. As a result, it was hacked, and my photos were lost, along with two hours of my day that I spent cleaning up the hack job.

How is this relevant? Softaculous is an automated script installation tool, that not only installs over 130 different scripts, but it also has the tools to keep them upgraded. Had I used Softaculous it would have seriously been a one button upgrade process. So, not only does it make your installations significantly easier, but it also helps you keep your site up-to-date, and safe and secure.

If you’re in the business of hosting websites from VPS.NET, I can tell you that your customers will LOVE Softaculous. They’ll have access to easily install scripts like WordPress, Joomla, phpBB, CopperMine, MediaWiki, SugarCRM, Magento and so on. It’ll cut down on the number of support inquires you have, broken software problems, and it’ll give them that pleasure of just playing around with the various scripts available to them.

Now the other cool thing that Softaculous does is it will import any installs you did with Fantastico. Fantastico is another piece of software that automatically installs scripts, but it doesn’t quite have as many scripts available, and they’re not quite as fast getting updates on the scripts out, which is really important. So if 3 years ago you installed a Gallery script using Fantastico, Softaculous will support that and still give you the option of doing a one click upgrade.

Softaculous directly integrates in with cPanel, DirectAdmin & ISPManager, and is a simple install. VPS.NET offers Softaculous at a rate of $9 (£6) a year, and is available through the license manager in your VPS.NET control panel. I highly recommend it, especially for those who use one of the scripts available in it simply for ease of administration. If you’re running a web host, like I said, your customers will LOVE it, and will thank you 1,000x over again for giving it to them.

On a side note, if someone can tell me how to pronounce the name (Is it Soft-a-culous?), I’ll give them a shout out in the next blog post!

digg Softaculous
reddit Softaculous
stumbleupon Softaculous
yahoo buzz Softaculous
dzone Softaculous
facebook Softaculous
delicious Softaculous
dotnetkicks Softaculous
dotnetshoutout Softaculous
linkedin Softaculous
technorati Softaculous
twitter Softaculous
google buzz Softaculous

Using Duplicity with VPS.NET’s Rsync Backup space

Posted on by
Reply

Did you know VPS.NET offers an offsite backup service for your VPS.NET server for only $5 a month? It’s under “Edit VPS” in your VPS.NET control panel; just order the Rsync back up service and you’re ready to go. Here’s a tip on how to maximize your experience using Duplicity!

Duplicity is a piece of software that I highly recommend any webmaster look into. Duplicity backs up entire directories in a tar format, and then encrypts them using GnuPG, meaning that they cannot be viewed or tampered with by any third parties. It is still in beta, however we’ve put it through some pretty thorough testing and have not come across any detrimental problems. For this tutorial we’re going to be backing up the /home directory and the /mysql directory, which will allow us to save all files and MySQL database content.

Installing Duplicity on CentOS5.
wget http://code.launchpad.net/duplicity/0.6-series/0.6.08b/+download/duplicity-0.6.08b.tar.gz
tar xfz duplicity-0.6.08b.tar.gz
cd duplicity-0.6.08b
python setup.py install

Because Duplicity uses librsync to keep incremental backups, we’ll need to make sure that librsync is installed on your cloud VPS server.

rpm -ivh http://yum.jardiknas.org/atomic/centos/5/x86_64/RPMS/librsync-0.9.7-9.el5.art.x86_64.rpm
rpm -ivh http://yum.jardiknas.org/atomic/centos/5/x86_64/RPMS/librsync-devel-0.9.7-9.el5.art.x86_64.rpm

Generate your GPG keys to encrypt the backups:

gpg –gen-key
gpg –list-keys

/root/.gnupg/pubring.gpg
————————
pub  1024D/0A1C1C1C 2010-04-02
uid                  RsyncBackup (rsyncbackup)
<root@localhost>
sub  2048g/5D1D326F 2010-04-02

The GPG key ID in this test for duplicity is 0A1F1C50, and should be used to encrypt the backups. The key that is generated on your cloud VPS will be different. Please keep note what your generated GPG key is, as it will be necessary later. You can use the following command to test out the GPG key and Duplicity.

duplicity full –volsize=200 –encrypt-key=”0A1C1C1C”  /var/named scp://1234@rsync1.cloudkeeper.net/domain.com/var_test/

Configuring Duplicity to work with cPanel
One problem that we’ve found is Duplicity attempts to save everything in /tmp. In most situations there is not enough space there to support the backups, so we instead need to create a new directory capable of handling our backups.

mkdir /usr/local/tmp
chmod 1777  /usr/local/tmp
ls -ld /usr/local/tmp
drwxrwxrwt 2 root root 4096 Apr  5 12:36 /usr/local/tmp/

Before we create the backup scripts, we’re going to backup our databases to the /home partition. This not only creates a second backup of your MySQL databases, but it will also make restoration much easier in the event of a failure.

mkdir /home/mysqlbackup
chmod 1777 /home/mysqlbackup
vi /home/mysqlbackup/mysql-daily-backup.sh

Paste the following command into the file:

mysqldump -uDBUSER DBNAME -pDBPASSWORD >  /home/mysqlbackup/DBNAME.sql

You will need to replace DBUSER with the database username, DBNAME with the database name, and DBPASSWORD with the password for the MySQL user.

If you have multiple databases that you wish to backup, you will need to paste that line in for each database.

Now create a daily crontab to run the script. I use 12AM in the example, however for larger databases, you may wish to start it around 9-10PM.

0 0 * * 1-7 sh /home/mysqlbackup/mysql-daily-backup.sh

Now lets create two scripts that will handle our daily and weekly backups.

Creation of the daily file:

mkdir /usr/local/custom-backup
vi /usr/local/custom-backup/backup-daily.sh (nano will also work)

Paste the following script into the backup-daily.sh file. Make sure to edit the password (1234 is an example password) and domain.com to your backups settings. As well, make sure to edit your GPG key settings to the key that was generated earlier.

#!/bin/bash
export TMPDIR=/usr/local/tmp/
duplicity remove-older-than 14D –encrypt-key=”0A1C1C1C”
scp://1234@rsync1.cloudkeeper.net/domain.com/home/
duplicity remove-older-than 14D –encrypt-key=”0A1C1C1C”
scp://1234@rsync1.cloudkeeper.net/domain.com/mysql/

duplicity inc –volsize=200 –encrypt-key=”0A1C1C1C”
–exclude=/home/virtfs /home/
scp://1795@rsync1.cloudkeeper.net/domain.com/home/
duplicity inc –volsize=200 –encrypt-key=”0A1C1C1C” /var/lib/mysql/
scp://1234@rsync1.cloudkeeper.net/domain.com/mysql/

Now lets create the weekly backup script:

vi /usr/local/custom-backup/backup-weekly.sh

Paste the following into the backup-weekly.sh file:

#!/bin/bash
export TMPDIR=/usr/local/tmp/
duplicity full –volsize=200 –encrypt-key=”0A1C1C1C”
–exclude=/home/virtfs /home/
scp://1234@rsync1.cloudkeeper.net/domain.com/home/
duplicity full –volsize=200 –encrypt-key=”0A1C1C1C” /var/lib/mysql/
scp://1234@rsync1.cloudkeeper.net/domain.com/mysql/

Finally, add two crontabs to set the backups to run:

10 2 * * 1-6 sh /usr/local/custom-backup/backup-daily.sh
10 2 * * 0 sh /usr/local/custom-backup/backup-weekly.sh

Both backups are set to run at 2:10AM. The daily backup will run 6 days a week, backing up only incremental data changes. On Sunday, the weekly backup will run, doing a full backup of all your data.

Useful links:
http://duplicity.nongnu.org/FAQ.html
 http://www.rsync.net/resources/howto/duplicity.html

(Thank you Bogdan for writing this up for me!)

digg Using Duplicity with VPS.NETs Rsync Backup space
reddit Using Duplicity with VPS.NETs Rsync Backup space
stumbleupon Using Duplicity with VPS.NETs Rsync Backup space
yahoo buzz Using Duplicity with VPS.NETs Rsync Backup space
dzone Using Duplicity with VPS.NETs Rsync Backup space
facebook Using Duplicity with VPS.NETs Rsync Backup space
delicious Using Duplicity with VPS.NETs Rsync Backup space
dotnetkicks Using Duplicity with VPS.NETs Rsync Backup space
dotnetshoutout Using Duplicity with VPS.NETs Rsync Backup space
linkedin Using Duplicity with VPS.NETs Rsync Backup space
technorati Using Duplicity with VPS.NETs Rsync Backup space
twitter Using Duplicity with VPS.NETs Rsync Backup space
google buzz Using Duplicity with VPS.NETs Rsync Backup space

New Images by Turnkey Linux

Posted on by
1

200906181521 New Images by Turnkey Linux

We are thrilled to announce the release of 15 new appliance images by Turnkey Linux !

VPS.NET and Turnkey Linux have partnered to make these images available for the first time ever as cloud images for VPS.NET customers.

TurnKey Linux is a new open source project that aims to develop high quality software appliances that are easy to use, easy to deploy

All images are Ubuntu x86 (32 bit) based.

Appliance Features

  • Auto-updated daily with latest security patches.
  • Easy to use configuration console and web management interface

  • Minimal footprint (typically around 150MB) – each software appliance is carefully built from the ground up with the minimum components needed to serve its role with maximum efficiency and security.

200906181533 New Images by Turnkey Linux Appliances List:

  • Core
  • Google App Engine SDK
  • Tomcat
  • phpBB
  • WordPress
  • LAMP
  • LAPP
  • Ruby Rails
  • Joomla
  • MediaWiki
  • Drupal 5
  • Drupal 6
  • Django
  • MySQL
  • PostgreSQL
digg New Images by Turnkey Linux
reddit New Images by Turnkey Linux
stumbleupon New Images by Turnkey Linux
yahoo buzz New Images by Turnkey Linux
dzone New Images by Turnkey Linux
facebook New Images by Turnkey Linux
delicious New Images by Turnkey Linux
dotnetkicks New Images by Turnkey Linux
dotnetshoutout New Images by Turnkey Linux
linkedin New Images by Turnkey Linux
technorati New Images by Turnkey Linux
twitter New Images by Turnkey Linux
google buzz New Images by Turnkey Linux

New Feature: Additional IP’s (Public / Private)

Posted on by
1

We are happy to announce that VPS.NET users can now instantly obtain public and private ip’s from within their control panel

Public IP’s are charged at $1 USD / £1 GBP per month
Private IP’s are free (limit 2 per node)

How do I get an ip ?

On your VPS.NET CP main page you will now notice this new option “Get additional ip addresses”vpsnet New Feature: Additional IPs (Public / Private)

Inside there you will find your IP Pool manager, with the ability to add or remove ip’s, we are adding a top table identifying each of those elements, but you basically get your IP Address, Netmask and Gateway .. it’s then your responsibility then to add the IP to your VPS of choice.

vpsnet 2 New Feature: Additional IPs (Public / Private)

Enjoy

digg New Feature: Additional IPs (Public / Private)
reddit New Feature: Additional IPs (Public / Private)
stumbleupon New Feature: Additional IPs (Public / Private)
yahoo buzz New Feature: Additional IPs (Public / Private)
dzone New Feature: Additional IPs (Public / Private)
facebook New Feature: Additional IPs (Public / Private)
delicious New Feature: Additional IPs (Public / Private)
dotnetkicks New Feature: Additional IPs (Public / Private)
dotnetshoutout New Feature: Additional IPs (Public / Private)
linkedin New Feature: Additional IPs (Public / Private)
technorati New Feature: Additional IPs (Public / Private)
twitter New Feature: Additional IPs (Public / Private)
google buzz New Feature: Additional IPs (Public / Private)