This blog article is the first of several introducing the Openstack Cloud Software platform and it’s capabilities for customers looking for an enterprise grade cloud platform. In the months ahead Canadian Web Hosting will be releasing an updated CA Cloud powered by OpenStack. With this, our customers will have immediate access to a repeatable, reliable and massively scalable cloud service where customers can create, or move existing cloud workloads (including AWS) without vendor lock in. More importantly, customers have the ability for the first time to fully maintain control of where and how their data is stored and benefit from Canada’s rigorous security and privacy regulations. Once deployed the CA Cloud will deliver the first OpenStack Cloud platform that is 100% Canadian-owned and –operated.
So, what is OpenStack? At a high level, it is an Infrastructure as a Service (IaaS) platform built entirely of Open Source technologies. Listed below, are some high level descriptions of some of the key components within OpenStack as well as some of the tools and technologies that are supposed.
Canadian Web Hosting recently attended the OpenStack Summit in Portland, Oregon where the OpenStack community introduced its seventh major release of the cloud software named “Grizzly.” This new release added enhanced the software and brought almost 230 new features to the various aspects of the platform, including changes to the core OpenStack Compute (also known as Nova) components where support was added for managing distributed clusters as "Cells" and a new "NoDB" architecture that significantly reduces reliance on any type of centralized database. Because many companies and enterprises are using “proprietary technologies, OpenStack deftly added support for technologies ESX, KVM, Xen and Hyper-V hypervisors, which Canadian Web Hosting is offering and supporting our customers today. This will greatly increase the adoption rate and make it easier for enterprises and service providers like Canadian Web Hosting to remove vendor lock in and add services based on need rather than a specific technology. You also have new functionality for almost instant bare metal provisioning of nodes, protocols for shared storage, and hot add/remove support for network devices. So, let’s look at some of the specific features within the OpenStack Cloud platform.
There are two different types of storage available within OpenStack – Object Storage and Block Storage. With “Swift,” the Object Storage component of OpenStack now let’s us apply a specific quota to control the expansion of object storage and lets us streamline operations by performing bulk operations over large/many clusters. To achieve this, cross-origin resource sharing has been added to allow browsers to directly connect to resources in the storage cloud and improve the scalability of web applications which use the object storage as a content resource. Alternatively to Swift, “Cinder” or Block Storage technology, has acquired an intelligent scheduler to manage storage allocation based on workload and has added drivers for backend storage including Cep/RBDh, EMC, HP, IBM, NetApp, and even Red Hat's Gluster.
On the networking side, “Quantum” has seen its significant enhancements and has increased supported technologies grow from technologies like Open vSwitch, Cisco UCS/Nexus, Linux Bridge, Nicira, Ryu OpenFlow and NEC OpenFlow to now also include Big Switch, Hyper-V, Brocade and Midonet. Improvements in scalability have been achieved by utilizing a more dynamic approach to sacal and distributing L3, L4 and DHCP across multiple servers. One of my favorites is the addition of a new framework and API for Load Balancing as a Service (LBaaS), which has been included to allow further development on this theme. There has been some significant growth in networking and you now have many of the leading networking companies building code and looking to implement enhancements including within Software Defined Networking (SDN).
Within the "Horizon" dashboard, there is increased flexibility and customers will see better multilingual support with many subtle user improvements. You also have features like networking and the above mentioned Load Balancing as a Service features, now surfaced on the cloud. With any cloud service focused on the enterprise, authentication and security will continue to be a top priority. “Keystone” OpenStacks Identity technology has adopted a new token format, which has improved performance and no longer requires tokens to be authenticated online only. There are also been significant improvements multi-tenant support for groups, impersonation, role-based access, and more delegation capabilities so administrators have greater control over their services and users.
Over the weeks ahead, we will continue to dive into the technology and provide back ground on Canadian Web Hosting’s deployment of OpenStack and the significant advantages it gives our customers. We will also be announcing our participation in the OpenStack Foundation and some really great initiatives we are implementing with our customers to help build the community and foster Canadian principles as the OpenStack platform continues to grow. For more information on Canadian Web Hosting is doing with OpenStack, or to participate in our beta program, email us at firstname.lastname@example.org.
Vancouver, BC (PRWEB) March 20, 2013 – Web Hosting and Cloud provider, Canadian Web Hosting (http://www.canadianwebhosting.com), announced Wednesday that it is now offering multi-site cloud servers with high availability as part of its expanding CA Cloud hosting offerings. The launch of additional cloud hosting locations includes Vancouver, BC and Toronto, ON as available options. With this expansion, Canadian Web Hosting can further deliver scalable hosting services to its customers based on flexible geography and removes one of the biggest limitations of many cloud provides by maintaining customer data in Canada.
Back in September of 2012, Canadian Web Hosting launched its cloud services portal http://www.cacloud.com that provides customers with access to an easy-to-use cloud hosting environment that meets Canada’s strict privacy and security requirements. In doing so, new and customers are able certify their data is housed in Canada and meet the most stringent corporate governance requirements. Customers who are taking advantage of the CA Cloud platform include companies in a wide range industries including healthcare, finance, e-commerce, professional services, government and IT development. Every cloud server benefits from a fully redundant architecture, and with autonomous enterprise-grade cloud environments in Vancouver, BC and Toronto, ON, customers can easily achieve geographic diversity for their production sites that includes integrated backup and 100’s of prebuilt templates for almost instantaneous cloud server deployment.
“We’re pleased to expand our Canadian Web Hosting presence by improving our CA Cloud infrastructure by offering multiple geographic locations in Canada through a single portal.” said Canadian Web Hosting Director, Matt McKinney. “Our Canadian Cloud Hosting platform delivers high availability for critical business applications and this expansion gives every customer more choices and more options in meeting their cloud hosting needs. This is a very exciting time for everyone. In the months ahead, our cloud hosting customers will continue to see new features added and will benefit by having access to web hosting services currently unavailable in the Canadian market today.”
The expanded CA Cloud platform also includes additional managed services offering customers active server management by Canadian Web Hosting support engineers to help ensure production sites and workloads are always available and allows customers to reduce their IT and Server Administration burden. For businesses looking to move to the cloud, cloud consultants are also available and can help you create a migration plan that help with your capacity planning, migration roadmap and ensure a successful deployment to the cloud.
Canadian Web Hosting offers Shared Hosting, Virtual Private Servers (VPS) and Dedicated Servers with comprehensive security services and support including industry leading virtualization platforms Hyper-V, Xen and VMware. “With Canadian Web Hosting, it is now easier than ever for customers to achieve cost savings and remove high cost administration with a partner who is dedicated to the Canadian Value System and will help ensure that every customer has access to an enterprise ready hosting service and can meet a wide range of budget constraints.” Canadian Web Hosting’s CA Cloud infrastructure is built on best-in-class Dell hardware with industry leading virtualization and Juniper networking and security hardware. Every server is backed by service level agreements and industry-best 24/7 support that helps cloud hosting clients achieve nearly 100% uptime.
There is a new serious WordPress vulnerability in certain versions of two popular WordPress caching plugins, W3TC and WP Super Cache. The vulnerability allows remote PHP code to be executed locally on a server for anyone running either of the plugins. An attacker could then execute code on the infected server.
Canadian Web Hosting is working to apply rules to our network, however we highly recommend that you upgrade your plugins immediately.
You can upgrade here:
W3 Total Cache Upgrade:
WP Super Cache Upgrade:
We strongly recommend advising your customers to upgrade their WP plugins immediately. Email our support team at email@example.com if you have any questions or need assistance in getting through the process.Kevin Liang
CTO / SEO Guru
Some members of Canadian Web Hosting recently attended the OpenStack Summit in Portland, Oregon. It was a refreshing look at the here and now of the cloud industry and to get a better idea of where the industry is going. As an infrastructure company providing cloud services, it was exciting to see the growth of open-source software and users moving the “OpenStack” platform to the enterprise. If you don’t know, OpenStack was created for the end users and developers the ability to reshape how companies design, deploy and manage their infrastructure. The difference is rather than focusing on the back-end, the developers of the platform are focusing their efforts putting together the framework that allows end users to fully control deployments through heavy and predictable automation and become less reliant on their IT and platform providers. While there is a lot of momentum behind OpenStack, there is a long ways to go. Canadian Web Hosting is continuing to look at ways to support the community and large, as well as bring him some of our own development team to work on current projects. We want to help our customer’s access an infrastructure that can utilize the big public cloud and create infrastructure that is highly flexible, scalable and open with the ability to control where you data is and ensure governance requirements are met.
How does one know if OpenStack is for real? You just have to look at some of the companies today who have built out their technology structure using the OpenStack framework. Companies like Best Buy, Comcast and Bloomberg have fully adopted the platform into real world IT and are increasingly moving their entire IT framework over. Additionally, the keynote speakers for the CERN institute and NSA talked about how large entities that are not necessarily for profit have also benefited from OpenStack. Today, it isn’t for everyone but in a year or two companies like Canadian Web Hosting will have adopted and built out these infrastructures so that companies will repeatable, usable and reliable cloud hosting that also gives users the flexibility to work around their business needs rather than changing their product to meet the infrastructure needs.
This year’s summit attracted about 2,800 attendees with more than 50 corporate sponsors including industry heavy weights like IBM, HP, Dell and Juniper to name a few. While the big players are moving into the open source community it is also important to understand their perspective. While the OpenStack community works together to solve challenges, large enterprises have significant resources and the ability productize OpenStack into something that is highly consumable by today’s business or IT organizations. The OpenStack development model is now seen as technology infrastructure that includes servers, storage and networking that can easily be applied to business application development or even business organization and strategy. It will be very interesting to see where the next iteration will bring.
In the past week, a global distributed, brute force attack is occurring on WordPress installations around the world.
It is a well coordinated attack and it's currently hitting a large number of installs. They are trying to gain access to WordPress logins by using easily guessable passwords.
If you password protected your WordPress using something from a dictionary such as "password" or "123456" then your installation can be vulnerable. Once they gain accesss, they upload malicious files to the directory which enables them to spam or collect personal information.
We recommend logging into your admin panel and change the password to a stronger one as recommended by WordPress.
To mitigate this attack, we are putting extra security measures that will automatically ban the ip address for several 5 minutes after several failed login attemps.
The symptoms of this attack are sluggish access to your WordPress site, or an inability to log in. In some instances your site could even intermittently go down for short periods.
You can add another layer of protection by password protecting your wp-login.php file. That means the hackers will need to guess through two layers of authentication. To see this in action, check our admin login page by going to http://blog.canadianwebhosting.com/wp-login.php. There is now a popup prompt and if they pass the first layer, then they will need to guess the second one with thewp-login.php page.
To add this additional security, do the following:
1. Create a file named .wpadmin (note the period) and upload to your home directory (not your content directory which is accessible by everyone)
cPanel home directory: /home/username/ (where "username" is the cPanel username for the account.
Plesk home directory: /var/www/vhosts or /var/www/vhosts/domain
Open a new browser and type http://www.htaccesstools.com/htpasswd-generator/ and enter your username and password.
Copy the content to the .wpadmin file.
For example, my output is:
Then upload the file using ftp client or cPanel file manager.
2. Update the .htaccess file
Under your publicly accessible content directory (/home/username/public_html), there is a .htaccess file. Edit the file and add the following to the bottom:
ErrorDocument 401 "Unauthorized Access"
ErrorDocument 403 "Forbidden"
AuthName "Authorized Only"
Note: replace username with your actual cPanel 'username'
Update: CloudFlare also offers a free alternative to block these attacks.
CTO / SEO Guru