Archive for February, 2009
We experienced a couple of hours of slow server access on ArchMage due to the system installed CLAM Antivirus. Once the system initiates the virus scan, it sometimes overloads the server depending on how much files are in queue in the mail server. When this happens, the load shoots up and the server freezes.
We are working on partially disabling Clam AV but this might also affect the performance of the system to detect and remove virus infected emails in all accounts. We’ve already tried to temporarily disabled it by it turns out that once it’s been pre-installed in the server, there’s no easy way to just switch it off. The system needs to be recompiled to remove Clam AV.
February 22nd, 2009
PHPBB has announced an injection vulnerability on their website. Those running PHPBB software are advised to update a patch on their installations:
Despite being among the easiest of vulnerabilities to understand, injection vulnerabilities are also among the most common. For most users, they will simply manifest themselves as an error when select characters are used, but a sufficiently adept user may be able to take that error and exploit it to their advantage.
Check more about it here.
February 13th, 2009
The Gnome server was temporarily shut down by the Data Center for a phishing site made by one of the new clients placed on this server. We were informed of the enforcement policy very late in the evening and was unable to act on it in two hours prompting the DC to disconnect the server so the site cannot do any damage.
We will be very vigilant to impose suspension on sites that could case a similar incident int he future. However, even if this problem was caused by a single client, it dragged along with it all other hundreds of clients in the server.
February 11th, 2009
Those who are running WordPress can now update their blogs to the latest version 2.7.1. This version fixes bugs and security holes in the software and everyone is advised to upgrade as soon as possible. Make sure to have a backup first before doing the updates.
February 10th, 2009
