Canadian Web Hosting Blog and News
8Apr/140

Heartbleed Bug Targets OpenSSL

According to recent reports, there has been a vulnerability discovered with certain versions of OpenSSL. OpenSSL is a toolkit which implements SSL/TLS protocols as well as general cryptography for various operating systems. This vulnerability can provide a back door for attackers to gain access to confidential information.

Canadian Web Hosting is aware of this issue and we are taking the proper steps in order to mitigate the risk to our end users. We will be performing an update of the OpenSSL versions present on our shared servers. This will not be a service impacting upgrade.

For clients with VPS/dedicated servers, check your OpenSSL version using the following command through SSH:

openssl version

The output will determine if your version of OpenSSL is vulnerable.

OpenSSL 1.0.1 through 1.0.1f (inclusive) are vulnerable

OpenSSL 1.0.1g is NOT vulnerable

OpenSSL 1.0.0 branch is NOT vulnerable

OpenSSL 0.9.8 branch is NOT vulnerable

Further information can be obtained from the following link:

http://heartbleed.com/

Only CentOS 6.5 with OpenSSL 1.0.1e-15 is affected. It's recommended to patch any CentOS 6.x version.

CentOS 5.x are not affected.

CentOS released an update earlier today and can be updated by logging into shell and running

#yum update openssl

then run

#rpm -q --changelog openssl | grep -iE 'CVE-2014-0160'

and you should see "- fix CVE-2014-0160 - information disclosure in TLS heartbeat extension"

One thing to note is the rpm is backport number. Even though the version is -e (openssl-1.0.1e-16.el6_5.7.x86_64), look at the backport number "5.7" as that is the latest.

Then restart all the services that rely on the ssl library

cPanel recommends rebooting the server as a precaution.

You can test your website by going to Heartbleed Test or Heartbleed Test2

For other distros, contact our support dept.

NOTE: Window Servers are not affected.

____________
Iptable Rules

Here are iptables rules to block all heartbeat queries using the very powerful u32 module.

The rules allow you to mitigate systems that can't yet be patched by blocking ALL the heartbeat handshakes.

The rules have been specifically created for HTTPS traffic and may be adapted for other protocols; SMTPS/IMAPS/...

# Log rules
iptables -t filter -A INPUT -p tcp --dport 443 -m u32 --u32 "52=0x18030000:0x1803FFFF" -j LOG --log-prefix "BLOCKED: HEARTBEAT"

# Block rules
iptables -t filter -A INPUT -p tcp --dport 443 -m u32 --u32 "52=0x18030000:0x1803FFFF" -j DROP

 

Customer Support Team- Canadian Web Hosting

Toll-Free: 1-888-821-7888

Filed under: Uncategorized No Comments
28Mar/140

What is RAID?

When you are purchasing a NAS device or server, the term RAID probably have come up a lot. What does RAID stands for? It stands for Redundant Array of Inexpensive (or Independent) Disks. Basically RAID either improve the performance of a server or provide some level of fault tolerance for a server.

There are many RAID levels and there are a few things you need to consider before deciding which RAID level is right for you:

  • How many hard drives are going to be putted in the storage device
  • How important is fault tolerance
  • How important is optimizing the performance of the server
  • Which RAID is going to be used: Software RAID, Hardware RAID or both

Some of the popular RAID levels are:

RAID 0

Data is written across 2 or more disks thus improving the disk I/O

Advantage:

  • Increase the server performance
  • Supported by both software and hardware RAID

Disadvantage:

  • No fault tolerance

RAID 1

Data is mirrored simultaneously on 2 or more disks, so in the event of a disk failing, the server will automatically switch to read the normal disk. With software RAID 1, data can be mirrored between 2 or more partitions instead of physical disks. Note that by using RAID 1 configuration, it will cut the total storage in half.

Advantage:

  • Fault tolerance
  • Supported by software and hardware RAID

Disadvantage:

  • Slight lag on the server performance

RAID 5

Data are striped across 3 or more disks. Each of the disk will have space reserved for copying the data from the fail disk. In the event of a disk failing, the other 2 disks (or more) will automatically start copying the data of the failed disk in to the reserved space.

Advantage:

  • Fault tolerance
  • Hot swappable (meaning you can replace a failed disk while the server is still running)

Disadvantage:

  • Performance lag when there are many writing operation (ie. Many people accessing a database at the same time)
  • Not supported by software RAID

RAID 6

Identical to RAID 5 but instead of 1, you can have 2 disks failing and still have the server running normally.

Advantage:

  • Fault tolerance
  • Hot swappable
  • Can have up to 2 failing disks at a time

Disadvantage:

  • Performance lag when there are many writing operation (ie. Many people accessing a database at the same time)
  • Not supported by software RAID

RAID 10 (RAID 1+0)

Minimum of 4 disks. Data is written across 2 disks thus improving the disk I/O, and in addition, the 2 disks are mirrored simultaneously on the other 2 disks. It is recommended to do it on hardware RAID because software RAID will not have the increase performance like the hardware RAID.

Advantage:

  • Fault tolerance
  • Increase the server performance (hardware RAID only)
  • Supported by software and hardware RAID

 

Different levels of RAID have its own advantages, so it will depend on your budget and what benefits you want. If you have a server with important data, you will always want to set it up in a RAID configuration because you will be glad that you still have the data when a disk failed or corrupted. You can try to use hard drive recovery service to recover your data, but hard drive recovery can cost anywhere from $200~1000 and more, and the recovery is not always 100%. The moral of the story is, set up your server with RAID configuration to avoid loss of important data.

 

Jim Wu

 

Filed under: Uncategorized No Comments
28Feb/140

Lets Talk About Shared Hosting

WhatIsSharedWebHosting title=
easel.ly

 

What Is Shared Web Hosting?

Shared hosting can be compared to having an assigned seat on an airplane. When you purchase a ticket, you are given a certain amount of space within a plane, where you have access to the same amenities as most of the other passengers.

The same goes for a shared hosting account. When our clients pay for hosting fees, they are assigned an account within a server. Their account is able to access the same resources as other accounts within the same server. This is why shared web hosting is referred to a shared server, each account utilizes the same CPU and storage as the other accounts.

Should I Use Shared Hosting?

It is very common for individuals to question if shared hosting is the right option suitable to their needs. When in doubt, the first thing you need to ask yourself is: What type of website/services will you be offering? If your answer includes things like personal website, blog, small eCommerce, or a simple website, then I would suggest a shared hosting plan. However, if your answer includes things like a website for business purposes, large eCommerce website, detailed website or web applications, then you would be looking into hosting your site under a VPS (virtual private server) or a dedicated server.

Where Will My Website Be Stored?

Canadian Web Hosting is a 100% Canadian owned and operated company with data centers in both Vancouver, BC and Toronto, ON. For our local BC and western provinces, your data will be located in our Vancouver data centers. If you or your clients are located in Ontario or the eastern provinces, your data will be stored in one of our Toronto based servers.

Greg

Filed under: Uncategorized No Comments
21Feb/140

Google Glass in VanCity – Presented by Canadian Web Hosting

Over the past couple of weeks, Canadian Web Hosting went around Downtown Vancouver to get the locals to try on our Google Glass. It was a fun adventure where we filmed Vancouverites reactions to the Glass, everyone we met was very eager to test this new technology.

 

We asked our interviewee’s to take a picture, record a video and some other fun stuff…

Google Glass is an amazing yet fun technology that is opening many doors within multiple industries. We could be more excited for wearable technology, we can’t wait for when Google Glass is 100% ready for the public market.

 

Vrinda

 

31Jan/140

CWH Experience at Union Mission Gospel

Wednesday was an inspiring day for us at Canadian Web Hosting. We had the opportunity to volunteer at Union Gospel Mission, which is located in Vancouver’s Downtown Eastside. UGM is an urban relief organization that has several locations throughout Metro Vancouver. The establishment aims to transform local communities by overcoming poverty, homelessness and addiction.  The organization has locations based in Surrey, New Westminster, Mission, and Vancouver.

 

As volunteers, we had the privilege to tour their brand new facility. UGM offers a full range of services to men, women and children in the form of meals, outreach, emergency shelter, alcohol & drug recovery, employment, education, affordable housing, children & family programs, and more.

 

Our day at UGM started with a tour at the main facility led by Nicole Robson, who is the Senior Development Officer.  Robson described the services that are offered, and how the program has evolved over the last few years to meet the increasing demand of the DTES needs. Having the chance to learn about the reality faced by people living within this environment was an eye opening experience.

 

Following the tour, we were brought down to the kitchen where we assisted the kitchen staff in the preparation of lunch. We were immediately put to work by the chefs, along with the other volunteers. After preparing the food we helped serve around 200 meals. It was amazing to see how the process of feeding this amount of people flowed so perfectly. Although many of the people we came across are experiencing hardships in their lives, they were all extremely grateful and greeted us with warm smiles for the service we provided.

 

We at Canadian Web Hosting had an amazing experience volunteering at UGM. We are looking forward to volunteering in the near future, so we may bring along more of our employees to share this experience. If anyone is interested in volunteering in the DTES, we definitely recommend Union Gospel Mission, for they have an extraordinary facility.  If you’re interested in volunteering within Vancouver’s community, please email volunteers@ugm.ca for further information.

 

Vrinda

Marketing Specialist

 

Greg

Customer Support Specialist

Filed under: Uncategorized No Comments