ATTENTION: All our hosting customers
Dear valued customers,
We received some complains from our customers that they are receiving
emails from our side requesting their username and login for
maintenance purposes.
Please keep in mind, we NEVER request ...
WHAT DO I DO IF I SEE "REPORTED ATTACK PAGE" ERROR ON MY SITE?
NOTE: This error only appears in Mozilla Firefox & Google Chrome. This
will not happen in other web browsers.
Once your account has been cleared from viruses and scripts, please
request a d...
CPHULK is a service that provides protection for your server against
brute force attacks. A BRUTE FORCE attack is a hacking method that
uses an automated system to guess the password to your web server or
services.
When cPHulk blocks an IP address or ac...
As on 6th Jan 2017 -- Latest Stable Release: 0.99.2
User may download for ClamAV for server hosting.
FOR WINDOWS
- Download the application source code from here.
[http://www.clamav.net/download.html]
FOR LINUX
- Run this command query. $ sudo apt-...
Please refer to the attached document.
FOLDER PERMISSION --> 755 (User: _read&write&execute_ / Group:
_read&execute_ / World : _read&execute_) permissions.
FILE PERMISSION --> 644 (User: _read&write_ / Group: _read _ / World:
_read_) permissions.
Here we provide sample of most popular iptables configuration.
We will block all connections except specific ports
First of all to exclude any errors because of previous config we will
delete all current iptables rules.
SSH to your server with root ...
CHECKING IF AN IP IS BLOCKED IN IPTABLES
Check if IP is blocked:
> iptables -L -n --line | grep [IP Address]
If IP appear as DROP or REJECT, the IP has been blocked
Unblock the IP Address:
> iptables -I INPUT -s [IP Address] -j ACCEPT
Blocking ba...
INSTALLING A LET’S ENCRYPT SSL CERTIFICATE ON YOUR DOMAIN
To install a Let's Encrypt SSL certificate on your domain, follow
these steps:
1. Log in to Plesk.
2. In the left sidebar, click WEBSITES & DOMAINS:
3. Click LET’S ENCRYPT icon:
The LET'S ...
ABOUT FAIL2BAN
Fail2Ban is a widely used tool for protecting the bruteforce attack
analyzing the server log files. This will help us to automatically
protect the server from malicious login attempts.
INSTALLING FAIL2BAN
Usually the default Centos Yu...
ANSWER:
To prevent your IP from being blacklisted by an anti-spam
organization, please follow these steps:
Prevention Steps:
* Make sure all the IPs are set with proper PTR records.
* Configure the proper value for spam filters.
* Make sure all ...
STEP-BY-STEP INSTALLATION OF MALWARE DETECTION
>> $ wget http://www.rfxn.com/downloads/maldetect-current.tar.gz
>> $ tar xfz maldetect-current.tar.gz
>> $ cd maldetect-*
>> $ ./install.sh
usage maldet [-h|--help] [-l|--log] [-e|--report] [-p|--purge]
...
When visitors to your web site request a page using a secure
_https://_ connection, a broken padlock icon may appear in the web
browser's location bar. Additionally, they may receive a warning
message:
* MOZILLA FIREFOX displays:
"The connection to thi...
Security Alert : New Malware in SSL 3.0 (Poodle) [INFO]
[https://247livesupport.biz/ticket/index.php?/News/NewsItem/View/625/security-alert--new-malware-in-ssl-30-poodle--info]
Posted by Haruto C. on 17 October 2014 10:35 AM
ATTENTION: All customers us...
ATTENTION: All SSL Encryption websites owners/admins using OpenSSL
Dear valued customers,
Our security team found out about new widespread of Encyption SSL bug
called "Heartbleed".
"Heartbleed Bug" vulnerability was discovered in OpenSSL library,
whi...
Posted in our 247LiveSupport News Post on 29th Sept 2014
ATTENTION: Hosting owners running on System Platform: Linux, Unix &
MaxOS X
Dear valued customers,
Our Security team has detected a massive vulnerability on bash shell
files for Linux, Unix an...
Posted in 247LiveSupport's News Post on 29th September 2014
ATTENTION: All local Malaysia users who are using Internet Banking.
Dear valued customers,
We have received an alert from CyberSecurity team about malware called
Zues which is targeting int...
ATTENTION: All Plesk Control Panel users/admins (Dedicated & VPS
server owners)
Dear valued customers,
We received a security alert from Parallels team regarding the
security patch which they have released for Plesk.
Check the link below for details: ...
ATTENTION: All Dedicated Server and VPS Server Administrators / Owners
Recently we received number of cases which involved Nitol Botnet.
For more information about this Nitol BotNet, check this Wikipedia
article:
[ http://en.wikipedia.org/wiki/Nitol_...
Shared by: Debian Security Advisory
Posted on: January 03, 2012
Package : FFmpeg
Vulnerability : several
Problem type : remote
Debian-specific: no
DESCRITION:
Several vulnerabilities have been discovered in FFmpeg, a multimedia
player, server a...
Microsoft recently released a Security Patch for a Remote
vulnerability in the Remote Desktop Protocol. The vulnerability allows
attacker to remotely code execution without authentication and thus
has all the ingredients for a class worm virus. On March 1...
Posted in 247LiveSupport.biz by Frederic N. on 23 June 2015 02:18 PM
ATTENTION: All Dedicated Servers hosting running on Windows Server
2003 platform.
Dear valued customer,
Kindly take note that MICROSOFT WINDOWS SERVER 2003 WILL REACH END OF
LIFE (...
If your dedicated server has suffered a mass defacement (def. most of
the websites hosted in your server has been defaced),
checking/scanning and removing the malware or changing password
methods will not resolve the issue permanently. This is because the...
Dear Customers,
We believe there are a few web defacement issues which had happened
recently and affected some of our Shared Hosting customers. We
understand that it has caused a great impact in some of your accounts.
Hereby, we would like to use this o...
[ Courtesy of http://www.makemagic.gr/node/234 ]
APF
What is APF (Advanced Policy Firewall)?
Advanced Policy Firewall (APF) is an iptables(netfilter) based
firewall system designed around the essential needs of today's Linux
servers. The configurati...
[ Taken from HP.com (Small & Medium Business) - Security Tips ]
ARE YOUR PASSWORDS STRONG ENOUGH?
If you wanted to hide some money, would you leave a bright yellow
post-it note stuck to the bottom of your keyboard, giving directions
of how to find it? ...
ATTENTION: TO ALL DEDICATED & VPS SERVER OWNERS/ADMINISTRATORS
Dear valued customers,
We have received a number of reports from our Security Team that some
of the VPS and Dedicated servers are being _INFECTED BY TROJAN
ROOTKIT._
Therefore, we would li...
BASIC SECURITY TIPS
(1) ALWAYS USE THE LATEST VERSIONS OF SOFTWARE
Avoid using older versions of software as they are insecure. Use the
latest release which includes new security fixes and functionalities.
(2) BE CAREFUL OF 3RD PARTY SCRIPTS AND COD...
ATTENTION: All users using BugZilla 4.2.1, 4.0.6 and 3.6.9 for web
development
Dear valued customers,
We received an alert from our security team that there are security
issues in BugZilla versions 4.2.1, 4.0.6 and 3.6.9:
1) When abusing the X-FORWARD...
For more information about the Sync Attacks, you may refer here:
[ http://en.wikipedia.org/wiki/SYN_flood
[http://en.wikipedia.org/wiki/SYN_flood] ]
FOR PREVENTION:
a) Change the SSH or RDC port to another port number.
b) Use proxy DDoS protection e....
WHAT IS SITELOCK?
SiteLock is a cloud-based security tool that scans your website for
malware and vulnerabilities. SiteLock not only detects threats, but
can also fix problems or security risks it encounters on your web
space.
-----------------------...
