On May 3rd, ImageMagick disclosed a serious Remote Code Execution vulnerablity (CVE-2016–3714) that allows attackers to execute malware hidden in image uploads. ImageMagick is widely used to process images, and is a part of PHP, Ruby, Node.Js, Python and many other language libraries. As of this writing, there are confirmed server hacks using exploits already in public domain, and it is best to secure your server ASAP. (more…)
Early today (3rd May 2016), OpenSSL released patches for two high severity bugs, and 4 low severity ones. The first bug, CVE-2016-2108 is a Memory corruption vulnerability, which could allow an attacker to crash a service or even execute malicious code.
The second bug, CVE-2016-2107 is a Padding oracle vulnerability, which could be used for Man-In-The-Middle (MITM) attacks to steal encrypted login passwords. (more…)
Isn’t it a great feeling when you see new sales orders coming in, after you’ve spent countless hours and dollars on marketing? It’d be awesome if you can convert all of those orders into your actual customers.
However, many web hosts are forced to turn down a few orders because customers request un-supported software or custom server configuration. (more…)
Containers are taking over the world. From VPSs to application hosting, more and more companies now use container technologies such as Docker, LXC and OpenVZ. The latest entrant to this list is rkt, pronounced as rocket.
Setting up a server can be time consuming. It involves installing an operating system, setting up networking, configuring various services and securing can take up to 2 hours per server. But what if you can deploy servers in a few mins? That’s what you can do with the open source tool called “MAAS”. (more…)
As they say, first impressions matter. Your next high value customer could be browsing your site right now.
What if your site fails to load? This scenario is not far from the truth for many websites, and very often it’s the database that fails. (more…)
Percona is a high performance alternative for MySQL. It uses a modified InnoDB engine called XtraDB, and uses Galera’s clustering technology to offer better performance and uptime than MySQL. Today, let’s take a look at how you can setup a Percona cluster, and migrate your databases from MySQL. (more…)
MySQL is the most popular database used in web applications. It is supported by all hosting providers, is easy to administer, and free. However, MySQL servers often face high server load due to high disk IOWait. (more…)
In an earlier post, we discussed how Percona XtraDB Cluster (PXC) can be used to achieve database high availability. PXC uses master-master replication, which makes each server in the cluster capable of making changes to the database. In such a system, data update conflicts are possible if servers are not in sync. Percona bootstrapping is a way to avoid conflicts when starting up a cluster.
A properly configured backup helps you bounce back from a server failure within minutes. However, backups impose a performance penalty and it is known to even bring down servers due to high load. So, backups should be setup such that it uses as little resources as possible. (more…)