Hosting | Hen's Teeth Network Blog

Archive for the ‘Hosting’ Category

Hacked! Company Loses 13 Years of Work

Filed under: Hosting — Art Zemon on May 16, 2009

Imagine this: You wake up to find that your web server and your backup server have both been hacked. You have lost all of the data that your company has spent the last 13 years accumulating. Because of poor choices for backups, that just happened to AVSIM.

I have been doing system administration for over 30 years and I can be fanatical about the backups. (Ask any of the folks who work for me how testy I get when their machines are not fully backed up daily.) I have been burned by faulty backups and know the pain. Back in 2001, my laptop was stolen and everything was backed up except my Zemon family genealogy research. It took years to recover from that disaster. My first hard lesson came in 1980 when our PDP-11/70 crashed and I had to fly from Los Angeles to San Jose so that I could use a sister project’s similarly equipped PDP-11/70 to rebuild our boot disk. That was an expensive crash: a dozen people lost use of their computer for three business days.

I chose Verio as our hosting partner for many reasons, one of which is the excellent backups provided with every hosting account.

All of the disk drives are “mirrored,” meaning that if one drive fails, the computer keeps running using the second drive; no data are lost.
Every night, the entire machine is copied to a backup disk and the backup remains available as “read-only” files until the next night when they are overwritten by a new backup. Anyone hosting a web site from us can recover files from these nightly backups for free. I cannot count the number of times these backups have saved the day when the phone rang and the panicked voice on the other end said, “I messed up and deleted a file….”
Every week, the entire machine is copied to tape and two or three weeks’ worth of tapes are kept in a vault. These, too, are accessible by clients though there is a fee to cover the labor of manually retrieving the tape from the vault. These, too, have saved several clients’ butts over the years.

For clients who want more security, we offer an add-on service, Nest Egg Backup for Web Servers, which provides 30 days of backups of every file on the server.

Few other hosting companies can help you if you accidentally delete a file or need to quickly put your web site back to the way it was yesterday. If you don’t know whether your hosting provider protects you, call and ask them.

Update: Scott and Candy just pointed out a problem with the home page of our site which had been there for several weeks without anyone here noticing it. (Who looks at the home page of his own web site?) Using Nest Egg Backup for Web Servers, I quickly restored the missing code from a file which has not been on our server since April 23, almost a month ago.

How important are backups to you? How would you feel if you lost your entire web site could not get it back?

Running a PCI Compliant E-Commerce Site

Filed under: E-Commerce, Hosting — Art Zemon on April 26, 2009

PCI compliance is all the buzz these days. If you are a shopper, it means that your credit card number is well protected by everybody and every machine and every network which handles it.

If you are a merchant, PCI compliance means that you meet the requirements of the Payment Card Industry Data Security Standard for protecting the credit card numbers which are entered into your e-commerce web site or used in your bricks and mortar store.

Here’s the good news:

If you are a shopper, you can feel a bit relieved that the credit card companies are doing things to protect you.
If you are a merchant, there are straightforward, well-understood ways in which you can bring your e-commerce site into compliance. We offer a PCI compliant bundle of web hosting and PDG Commerce software.

What is PCI Compliance?

The core of the PCI DSS is a group of principles and accompanying requirements, around which the specific elements of the DSS are organized. Learn more…

Build and Maintain a Secure Network: Requirement 1: Install and maintain a firewall configuration to protect cardholder data
Requirement 2: Do not use vendor-supplied defaults for system passwords and other security parameters
Protect Cardholder Data: Requirement 3: Protect stored cardholder data
Requirement 4: Encrypt transmission of cardholder data across open, public networks
Maintain a Vulnerability Management Program: Requirement 5: Use and regularly update anti-virus software
Requirement 6: Develop and maintain secure systems and applications
Implement Strong Access Control Measures: Requirement 7: Restrict access to cardholder data by business need-to-know
Requirement 8: Assign a unique ID to each person with computer access
Requirement 9: Restrict physical access to cardholder data
Regularly Monitor and Test Networks: Requirement 10: Track and monitor all access to network resources and cardholder data
Requirement 11: Regularly test security systems and processes
Maintain an Information Security Policy: Requirement 12: Maintain a policy that addresses information security

Web Hosting Optimized for PDG Commerce

Filed under: E-Commerce, Hosting — Art Zemon on April 23, 2009

I am very pleased that, in cooperation with PDG Software, we are now offering hosting plans with PDG Commerce pre-installed. These plans are optimized for PDG Commerce with everything set up at the same time that the account is provisioned. If you purchase one of these accounts, you will be running PDG Commerce 60 seconds after you receive the email message with your store-specific access information.

The accounts range from the Signature Enhanced at just $19 per month through the Virtual Private Servers and Managed Private Servers. The VPS and MPS plans can be configured to be PCI compliant.

PDG Commerce is an e-commerce solution with features that are second to none. It runs dramatically faster on even the Signature Enhanced account than on shared hosting accounts at other “name brand” hosting providers.

If you already run PDG Commerce and need more speed or better technical suppport, these PDG Commerce hosting plans are designed for you.

If you are looking for an e-commerce platform which is PA-DSS certified and PCI compliant, these hosting plans with PDG Commerce pre-installed are just the ticket.

New Hosting Family Now Available

Filed under: Hosting — Art Zemon on April 1, 2009

It is not often that I have the pleasure of introducing a completely new family of hosting accounts but today is one of those special days. See Verio CP/M for full details. While priced for today’s economy, these new plans remain surprisingly feature-rich.

Postini VS Spam

Filed under: Hosting, How To, This & That — Bert Dinkins on March 25, 2009

If you have an email address, you have been spammed.

Since I am usually the one that handle trouble tickets, I get several each month about spam. Customers wonder why they are getting spam from their own email address.

Basically spammers grabbed your email address and spam you with your own email address. You can look at the source code of an email see that it’s coming from a domain outside of the US.

Imagine someone mailing you a bunch of letters through the post office, but the return address is not really theirs. They put your return address on the letters.

Of course mailing through the post office costs money and email doesn’t.

Postini does a good job at blocking spam. The default settings for Postini will allow some spam to get through. You can always login into your account and adjust the settings.

Click “Manage Junk Filters”.

You will have a drop down for Overall Junk Filter:, the default setting is Strict. You can change it to be more aggressive.

Let me caution you about this. You may find more legitimate emails getting caught. Take a close look at your Quarantine reports.

Bert Dinkins
bert_dinkins

Cloud Computing and Virtualization: Buzzwords du Jour

Filed under: Hosting, This & That — Art Zemon on March 23, 2009

These days, everybody is talking about cloud computing and virtualization. I guess we should, too. This will be short, though, since I want to de-mystify the concepts.

Virtualization: We have been using virtualization for our hosting platforms for almost seven years. It’s old hat. When you get a Virtual Private Server from us, it is a virtual machine, living inside a larger physical machine.
Cloud Computing: We use cloud computing for our Nest Egg Backup for Web Servers and Cross Browser Testing products. These run “in the cloud” only when you need them and the computers to run them do not even exist when no one is using them.

Why don’t we hype the buzzwords all over our web site? Because we think that the actual solution provided by our products is more interesting that the underlying technology.

Pumped Up by the viaVerio Partner Summit

Filed under: E-Commerce, Hosting, This & That — Art Zemon on March 18, 2009

Candy and I just got back from the viaVerio Partner Summit in Reston, VA. My brain is full to overflowing with information about PCI compliance (good info for anybody who sells anything online), social networking (good info for anybody who has a web site and wants to communicate with prospects and customers), web hosting improvements at Verio (good info for anybody who has a web site), technical details about Verio’s hosting platforms (good info for geeks like me) and more. Better yet, when my brain fills up with stuff like this, I begin to bubble with ideas about sharing it all. Look for more on that in the next few days.

I am overawed by the openness and helpfulness of the people who attended. Kiyoshi Maeda, president and CEO of Verio, brought an impressive array of his senior staff. All were thoroughly approachable, open with new developments at Verio, and receptive to feedback. By crafting an exceptional conference, Verio brought together dozens of resellers like Hen’s Teeth Network and (it seemed like) almost as many movers and shakers from Verio itself. The result was three days of free-flowing information and exciting ideas.

Art Zemon, viaVerio Advocacy Award

I was gratified by Verio’s willingness to accept harsh feedback about our needs regarding PCI compliant hosting platforms and assistance in creating PCI compliant e-commerce sites. As Verio has so often done in the past, it returned my trust with solid information about positive steps it is taking to enable e-commerce merchants to be truly PCI complaint… and that means much more than simply passing an external vulnerability scan.

I also have to admit to being completely flabbergasted when I was awarded the viaVerio Advocacy Award. I do believe in the products we resell and this probably shoots any last vestiges of impartiality which I might have been harboring.

Today’s economic climate can well be described as “challenging.” The Verio products and services which we resell, and the tools and networking connections which I gathered in Reston will go a long way towards making you more successful in your business. Stay tuned.

P.S. For quick useful tidbits, follow me on Twitter.

Reliable Web Hosting

Filed under: Hosting — Art Zemon on February 18, 2009

If you have a web site, reliability is one of your primary concerns. Your customers should always have a great experience when visiting your site. You should always be able to check your email when you want to. We share that priority and do everything possible to assure that your web site and email are up, if not always, at least all of the time when you and your customers are awake. We seem to be doing pretty well with this and I want to share a few stories with you:

Last week, a client whose web site is currently with a competing hosting company (hint: they advertise on TV during the Superbowl) tried one of our Signature Hosting accounts and, within just a few hours, wrote to me:

Holy cow!
Check out www.AtTheOtherHostingCompany.com vs. www.EvaluationSignatureAccount.com
Amazing difference.

I have had a similar reaction from everybody who has tried our hosting accounts after being elsewhere. This guy was simply more succinct. (more…)