ATTENTION: All our hosting customers
Dear valued customers,
We received some complains from our customers that they are receiving
emails from our side requesting their username and login for
maintenance purposes.
Please keep in mind, we NEVER request ...
WHAT DO I DO IF I SEE "REPORTED ATTACK PAGE" ERROR ON MY SITE?
NOTE: This error only appears in Mozilla Firefox & Google Chrome. This
will not happen in other web browsers.
Once your account has been cleared from viruses and scripts, please
request a d...
CPHULK is a service that provides protection for your server against
brute force attacks. A BRUTE FORCE attack is a hacking method that
uses an automated system to guess the password to your web server or
services.
When cPHulk blocks an IP address or ac...
As on 6th Jan 2017 -- Latest Stable Release: 0.99.2
User may download for ClamAV for server hosting.
FOR WINDOWS
- Download the application source code from here.
[http://www.clamav.net/download.html]
FOR LINUX
- Run this command query. $ sudo apt-...
Common Name Mismatch occurs when the common name or SAN listed on an
SSL certificate doesn't exactly match the name displayed in the URL
bar. Any difference will cause the web browser to halt and display a
name mismatch error. In order for an encrypted co...
Please refer to the attached document.
FOLDER PERMISSION --> 755 (User: _read&write&execute_ / Group:
_read&execute_ / World : _read&execute_) permissions.
FILE PERMISSION --> 644 (User: _read&write_ / Group: _read _ / World:
_read_) permissions.
Here we provide sample of most popular iptables configuration.
We will block all connections except specific ports
First of all to exclude any errors because of previous config we will
delete all current iptables rules.
SSH to your server with root ...
CHECKING IF AN IP IS BLOCKED IN IPTABLES
Check if IP is blocked:
> iptables -L -n --line | grep [IP Address]
If IP appear as DROP or REJECT, the IP has been blocked
Unblock the IP Address:
> iptables -I INPUT -s [IP Address] -j ACCEPT
Blocking ba...
ABOUT FAIL2BAN
Fail2Ban is a widely used tool for protecting the bruteforce attack
analyzing the server log files. This will help us to automatically
protect the server from malicious login attempts.
INSTALLING FAIL2BAN
Usually the default Centos Yu...
ANSWER:
To prevent your IP from being blacklisted by an anti-spam
organization, please follow these steps:
Prevention Steps:
* Make sure all the IPs are set with proper PTR records.
* Configure the proper value for spam filters.
* Make sure all ...
There can be several reasons why SSL/HTTPS is not working on your
site.
DOMAIN IS NEWLY HOSTED
SSL certificate has probably not been activated yet if the domain name
is newly hosted. Newly registered or transferred domain can take up to
24 hours for SSL ...
Steps to install SSL certificate are available in URL provided below:
https://support.comodo.com/index.php?/comodo/Knowledgebase/List/Index/37
Feel free to contact our SSL Support Team if you have further
questions.
SSL certificates can also be differentiated based on the number of
domains or subdomains they protect. The different types of SSL
certificate on this bases are -- Standard, Wildcard, and Multi-Domain/
SAN/ UCC. You may use this guide to find the perfect c...
There are many different types of SSL certificate options available,
all with their unique use cases and value propositions. The level of
authentication assured by the Certificate Authority (CA) is a
significant differentiator between the types. There are...
STEP-BY-STEP INSTALLATION OF MALWARE DETECTION
>> $ wget http://www.rfxn.com/downloads/maldetect-current.tar.gz
>> $ tar xfz maldetect-current.tar.gz
>> $ cd maldetect-*
>> $ ./install.sh
usage maldet [-h|--help] [-l|--log] [-e|--report] [-p|--purge]
...
SECTIGO WEB PLATFORM USER GUIDE
After you sign up for your Sectigo Web Package, you may need to add
your domains to your account. Following is the guide for you to
complete the setup:
1. PLEASE LOGIN TO YOUR BILLING CLIENT ACCOUNT:
https://billing.s...
When visitors access to your website request a page using a secure
https:// connection, a broken padlock icon may appear in the web
browser's location bar. This happen when content on a secure website
is being loaded through a non-secure source. An exampl...
Security Alert : New Malware in SSL 3.0 (Poodle) [INFO]
[https://247livesupport.biz/ticket/index.php?/News/NewsItem/View/625/security-alert--new-malware-in-ssl-30-poodle--info]
Posted by Haruto C. on 17 October 2014 10:35 AM
ATTENTION: All customers us...
ATTENTION: All SSL Encryption websites owners/admins using OpenSSL
Dear valued customers,
Our security team found out about new widespread of Encyption SSL bug
called "Heartbleed".
"Heartbleed Bug" vulnerability was discovered in OpenSSL library,
whi...
Posted in our 247LiveSupport News Post on 29th Sept 2014
ATTENTION: Hosting owners running on System Platform: Linux, Unix &
MaxOS X
Dear valued customers,
Our Security team has detected a massive vulnerability on bash shell
files for Linux, Unix an...
Posted in 247LiveSupport's News Post on 29th September 2014
ATTENTION: All local Malaysia users who are using Internet Banking.
Dear valued customers,
We have received an alert from CyberSecurity team about malware called
Zues which is targeting int...
ATTENTION: All Plesk Control Panel users/admins (Dedicated & VPS
server owners)
Dear valued customers,
We received a security alert from Parallels team regarding the
security patch which they have released for Plesk.
Check the link below for details: ...
ATTENTION: All Dedicated Server and VPS Server Administrators / Owners
Recently we received number of cases which involved Nitol Botnet.
For more information about this Nitol BotNet, check this Wikipedia
article:
[ http://en.wikipedia.org/wiki/Nitol_...
Shared by: Debian Security Advisory
Posted on: January 03, 2012
Package : FFmpeg
Vulnerability : several
Problem type : remote
Debian-specific: no
DESCRITION:
Several vulnerabilities have been discovered in FFmpeg, a multimedia
player, server a...
Microsoft recently released a Security Patch for a Remote
vulnerability in the Remote Desktop Protocol. The vulnerability allows
attacker to remotely code execution without authentication and thus
has all the ingredients for a class worm virus. On March 1...
Posted in 247LiveSupport.biz by Frederic N. on 23 June 2015 02:18 PM
ATTENTION: All Dedicated Servers hosting running on Windows Server
2003 platform.
Dear valued customer,
Kindly take note that MICROSOFT WINDOWS SERVER 2003 WILL REACH END OF
LIFE (...
If your dedicated server has suffered a mass defacement (def. most of
the websites hosted in your server has been defaced),
checking/scanning and removing the malware or changing password
methods will not resolve the issue permanently. This is because the...
Dear Customers,
We believe there are a few web defacement issues which had happened
recently and affected some of our Shared Hosting customers. We
understand that it has caused a great impact in some of your accounts.
Hereby, we would like to use this o...
[ Courtesy of http://www.makemagic.gr/node/234 ]
APF
What is APF (Advanced Policy Firewall)?
Advanced Policy Firewall (APF) is an iptables(netfilter) based
firewall system designed around the essential needs of today's Linux
servers. The configurati...
[ Taken from HP.com (Small & Medium Business) - Security Tips ]
ARE YOUR PASSWORDS STRONG ENOUGH?
If you wanted to hide some money, would you leave a bright yellow
post-it note stuck to the bottom of your keyboard, giving directions
of how to find it? ...
ATTENTION: TO ALL DEDICATED & VPS SERVER OWNERS/ADMINISTRATORS
Dear valued customers,
We have received a number of reports from our Security Team that some
of the VPS and Dedicated servers are being _INFECTED BY TROJAN
ROOTKIT._
Therefore, we would li...
BASIC SECURITY TIPS
(1) ALWAYS USE THE LATEST VERSIONS OF SOFTWARE
Avoid using older versions of software as they are insecure. Use the
latest release which includes new security fixes and functionalities.
(2) BE CAREFUL OF 3RD PARTY SCRIPTS AND COD...
ATTENTION: All users using BugZilla 4.2.1, 4.0.6 and 3.6.9 for web
development
Dear valued customers,
We received an alert from our security team that there are security
issues in BugZilla versions 4.2.1, 4.0.6 and 3.6.9:
1) When abusing the X-FORWARD...
An SSL certificate error occurs when a web browser can't verify the
SSL certificate installed on a site. Rather than connect you, your
browser will display an error message, warning you that the site may
be insecure. It generally means that installed SSL ...
For more information about the Sync Attacks, you may refer here:
[ http://en.wikipedia.org/wiki/SYN_flood
[http://en.wikipedia.org/wiki/SYN_flood] ]
FOR PREVENTION:
a) Change the SSH or RDC port to another port number.
b) Use proxy DDoS protection e....
WHAT IS SITELOCK?
SiteLock is a cloud-based security tool that scans your website for
malware and vulnerabilities. SiteLock not only detects threats, but
can also fix problems or security risks it encounters on your web
space.
-----------------------...
