Is PEAR (PHP Extension And Application Repository) Provided With The Hosting Packages?

Posted on May 18, 2013 by Catherine

Yes this service is provided on all the hosting platforms as per the requirements.

Basically, PHP Extension and Application Repository is a structure and a distribution system for the PHP components that can be used again. The aim of PEAR is to provide with a structured library of open-source code and a method for distribution of the code along with package maintenance for the PHP users.

The code present in PEAR is partitioned in ‘packages’. Every package consists of a distinct project having its own development team, release cycle, version number, documentation and a connection with the other packages (including dependencies as well). The packages are distributed in the form of gzipped tar files consisting of a description file inside. They are installed on your local system with the use of the PEAR installer. All the PEAR packages are registered and uploaded in a central database present at pear.php.net. The open-source third party applications can also be registered and uploaded.

What do you mean by PEAR library?

PEAR (PHP Extension and Application Repository) is an object based PHP library that consists of distinct classes for a wide range of functions comprising of database interactivity, mail, encryption, date and time, HTTP, images and much more. For instance, the HTML_form class is utilized in the automatic creation of the HTML forms. There are more useful classes that include the File class that is used for reading and writing the files present on the file system through which the PHP application is executed. One of the most interesting classes present in the PHP library is the File_Search replace class. This class finds and replaces the operations for the files where you would like to find certain strings and replace them in a specific file.

The PEAR library is extremely resourceful and robust. There is no need to use the PEAR library for connecting to and interacting with the databases, as there are in-built functions and extensions in the PHP language comprising of the object oriented PHP Data Objects Extension that is extremely easy to use.

728x90 Is PEAR (PHP Extension And Application Repository) Provided With The Hosting Packages?

 

Posted in PHP MySQL Hosting, Web Hosting | Tagged , | Leave a comment

Error retrieving pid file logs/httpd.pid – Apache Error Solved

Posted on May 10, 2013 by Barb

You might run into a situation where while trying to restart apache service while using linux web hosting services, you receive an error :

(20014)Internal error: Error retrieving pid file logs/httpd.pid
Remove it before continuing if it is corrupted.

There is nothing to worry about, you must run the following commands to get apache working again.

Rename httpd.pid or remove it from the logs directory of apache (/usr/local/apache/logs/) and restart the apache service.

================================================

root@server [~]# cd /usr/local/apache/logs/
root@server [/usr/local/apache/logs]# mv httpd.pid httpd.pid.bak
root@server [/usr/local/apache/logs]# /etc/init.d/httpd restart

================================================

The Apache service would start work fine after this.

Posted in Apache Web Server | Tagged , , | Leave a comment

Say NO to Trespassers, DDoS Attackers and Hijackers from your WordPress Site by Restricting Access to wp-admin

Posted on April 17, 2013 by Barb

Late last month the Internet faced one of the biggest DDoS attacks in the history. With not even a month passed, BBC reported news about WordPress website being targeted by hackers. Chills ran through the spines of many website owners who run their sites over WordPress CMS, after reading the news. The site reported about attacks by a botnet of “tens of thousands” of individual computers for a week almost where the sites with WordPress usernames were “admin”.

It’s a rough estimate that nearly 17% of the total websites over the World Wide Web are powered by WordPress today. This has offered a greater playground for people with false intentions to initiate activities such as DDoS attacks.

Precaution is Better Than Cure

So How Can You Protect your WordPress Enabled Website from hackers trying to crack your WordPress credentials? How can you avoid attackers use your website to point a DDoS against a network or website

Well, there are number of ways to tighten the security of your WordPress installation. Let’s take a look at it one-by-one.
Small arrow right icon Say NO to Trespassers, DDoS Attackers and Hijackers from your WordPress Site by Restricting Access to wp admin Use a plugin namely ‘Limit Login Attempts’ to limit the number of login attempts for your website. This plugin allows you to set a maximum number to failed login attempts for a particular IP and informs you about every failed attempt, hence making you aware much early to any occurrence of a destruction.

Small arrow right icon Say NO to Trespassers, DDoS Attackers and Hijackers from your WordPress Site by Restricting Access to wp admin Another way to restricting unauthorized access is by limiting the login access altogether. You can do this by white listing certain known IP addresses and blocking all others.

Here are the steps you must follow :
Step 1 : Go to the root of WordPress Installation over the server. Look for a folder named wp-content

Step 2 : Edit the .htaccess file by adding the below :

<Directory /wp-admin >
<files wp-login.php>
AllowOverride None
order deny,allow
# whitelist
allow from xxx.xxx.xxx.xxx (IP 1)
allow from xxx.xxx.xxx.xxx (IP 2)
allow from xxx.xxx.xxx.xxx (IP 3)
deny from all
</files>
</Directory>

Note: Remove (IP 1), (IP 2), (IP 3) from the code. You can add as many IP addresses as you want in a similar way.

With this small modification, only the IP addresses that you’ve authorized would be able to access the wp-admin page i.e. login page of your website.
If you need any help in this regards, please contact our technical support department, we’d be glad to help tighten the security of your WordPress based website.

Other Tips:

Small arrow right icon Say NO to Trespassers, DDoS Attackers and Hijackers from your WordPress Site by Restricting Access to wp adminUse a Complicated Username which isn’t easy to guess.

Small arrow right icon Say NO to Trespassers, DDoS Attackers and Hijackers from your WordPress Site by Restricting Access to wp admin Use Complicated Password, something which is a mix of upper and lower case alphabets, special characters, numbers. The longer it’d be the harder it is to crack.

Posted in Security, Web Hosting, Wordpress Hosting | Leave a comment

Steps To Find And Delete The Empty Directories And Files In UNIX

Posted on March 25, 2013 by Dorothy Smith

We’ve been receiving frequent queries asking about the ways to find and delete empty directories in UNIX / Linux. The reason it needs to be identified and deleted is because they might face issues with processing with multiple utilies which may also include rm command.

The following command would help you find empty files & directory
find . -type d -empty — for directory
find . -type f -empty — for files

Delete all empty directories under the current directory using the following command :
find . -type d -empty -exec rmdir {} \;

To see the count of files users have in use the following command :

wc -l find . -type f -empty | wc -l
&
For non-empty files count :
find . -type f -not -empty | wc -l

In all the above examples replace the ( . – dot) with directory absolute path under which you would like to search the files.

Note: It is not recommended to remove empty directories from any system directories.

Posted in Linux Hosting | Tagged , , | Leave a comment

Commands Of CSF

Posted on March 21, 2013 by Dorothy Smith

Config server firewall (CSF firewall) is a more sophisticated firewall compared to others as there are more configuration options. Installation and configuration are easy to do – even for inexperienced administrators. This article will take you through the steps to install and configure CSF firewall with its security plugin Login Failure Daemon (LFD)

CSF Command Line Options

A. Ip specification in Config Server Firewall:

* To check is the Specific IP is Blocked OR Allowed :-
root@vps16669[/]# grep 92.48.65.28 / etc/csf/csf*
/etc/csf/csf.allow: 92.48.65.28 # Manually allowed – Wed Mar 20 11:30:04 2013

* To Allow Specific IP :-
root@vps16669[~]# csf -a 10.20.30.96
Adding 10.20.30.96 to csf.allow and iptables ACCEPT…
ACCEPT all opt –in !lo out* 10.20.30.96 ? 0.0.0.0/0
ACCEPT all opt –in * out !lo 0.0.0.0/0 ? 10.20.30.96

*To Block Specific IP :-
root@vps16669[~]# csf -d 11.21.30.86
Adding 10.20.30.96 to csf.deny and iptables DROP…
DROP all opt –in !lo out* 11.21.30.86 ? 0.0.0.0/0
DROP all opt –in * out !lo 0.0.0.0/0 ? 11.21.30.86

* After Allow or Block an IP, you must reload the rules with the following command :-
csf -r

B. Configuration files:-

Users must check in /etc/csf for all the configuration files for csf:
csf.conf : The main configuration file, it has helpful comments explaining what every option does
csf.allow : A list of IP’s and CIDR addresses that should always be allowed through the firewall
csf.deny : A list of IP’s and CIDR addresses that should never be allowed through the firewall
csf.ignore : A list of IP’s and CIDR addresses that lfd should ignore and not not block if detected
csf.*ignore : Various ignore files that list files, users, IP’s that lfd should ignore.

Restart csf after modify any of the files listed above to have them take effect.

Users can comments after the both IP address listed csf.allow and csf.deny. But make sure that the comments must be on the single line as the IP address else the IP rotation of csf.deny would ignore them.

You should put a # between the IP address and the comment like this:
e.g :- 10.20.30.96 # blocked because of Abuse Complaint

You can also include comments when utilizing the csf -a or csf -d commands, but in those cases you must not utilize a # like this:-
e.g :- csf -d 11.22.33.44 blocked because of Abuse Complaint.

C. csf command line options :-
root@vps16669 [~]# csf -h
Usage: /usr/sbin/csf [option] [value]
Option Meaning
-h, –help Show this message
-l, –status List/Show iptables configuration
-l6, –status6 List/Show ip6tables configuration
-s, –start Start firewall rules
-f, –stop Flush/Stop firewall rules (Note: lfd may restart csf)
-r, –restart Restart firewall rules
-a, –add ip Allow an IP and add to /etc/csf.allow
-ar, –addrm ip Remove an IP from /etc/csf.allow and delete rule
-d, –deny ip Deny an IP and add to /etc/csf.deny
-dr, –denyrm ip Unblock an IP and remove from /etc/csf.deny
-df, –denyf Remove and unblock all entries in /etc/csf.deny
-g, –grep ip Search the iptables rules for an IP match (incl. CIDR)
-t, –temp Displays the current list of temp IP entries and their TTL
-tr, –temprm ip Remove an IPs from the temp IP ban and allow list
-ta, –tempallow ip ttl [-p port] [-d direction]
Add an IP to the temp IP allow list (default:inout)
-tf, –tempf Flush all IPs from the temp IP entries
-c, –check Check for updates to csf but do not upgrade
-u, –update Check for updates to csf and upgrade if available
-uf Force an update of csf
-x, –disable Disable csf and lfd
-e, –enable Enable csf and lfd if previously disabled
-v, –version Show csf version

Users can easily manage the csf with the above options.

Posted in Security | Tagged , | Leave a comment

Snort settings on Linux server

Posted on March 14, 2013 by Dorothy Smith

Snort is an open source lightweight intrusion detection system for Linux servers, which can log packets coming across your network. Users can utilize snort program mainly for the small networks. In case of large networks, with Gigabit Ethernet, snort can at-times unreliable. It is essential to have root level privileges to the server if you intend to use snort program. There is no need to recompile kernel or add any software or hardware to the existing distribution.
If users want to have normal security measures in place which allow them to log and analyze the traffic to their network, then snort can be an ideal program to choose. Running Snort along with a firewall can strengthen your measures of network security.

Installing Snort on Linux :

First download Snort’s latest version “snort-2.9.1.2.tar.gz” using the following command :

wget http://www.snort.org/dl/snort-current/snort-2.9.1.2.tar.gz -O snort-2.9.1.2.tar.gz

Run the following commands to proceed with installation: Linux Snort settings on Linux server

tar zxf snort-2.9.1.2.tar.gz

cd snort-2.9.1.2
./configure
make
make install

While installing Snort you may get following error:

ERROR! Libpcap library/headers (libpcap.a (or .so)/pcap.h) not found

To fix the above error you need to install the following libpcap, libpcap-devel modules:

yum install libpcap libpcap-devel

Once the above modules are installed, please re-run the snort installation process.
It will successfully Install Snort in Server.

Once the installation is complete, you need to copy the configuration files <snort-2.9.1.2>/etc/snort.conf to /etc/snort/snort.conf in your server. Alter the configuration as per your requirements.

The default rules for Snort can be found here . You can download the rules and add them to the /etc/snort/rules folder in server.

Posted in Linux Hosting | Tagged , | Leave a comment

The Recognition And Defense Of A DDoS Attack : An Overview

Posted on March 8, 2013 by Catherine

The Recognition And Defense Of A DDoS Attack An Overview The Recognition And Defense Of A DDoS Attack : An Overview

Your website determines your online presence; however internet has a wide horizon that brings vulnerabilities along with possibilities and progress. The DDoS attack is one of the most dreadful things that directly affect the functioning of your website. Although DDoS attacks have become relatively uncommon; they do occur. If you are aware about the implications of the DDoS attack and how the server can be protected from this attack, the risk of potential downtime and damage can be reduced. The main reason for a DDoS attack is weak security policy and lack of proper and timely server monitoring. When any machine is under attack, it affects the entire server and thereby there are possibilities of downtime in order to deal with the DDoS attack, this affects the functioning of the website and for online business websites this might also mean loss of business.

How a DDoS attack works?

A DDoS attack is created from multiple dynamic networks that are already infected. The aim of this attack is to make it impossible for the services and functions to run efficiently thereby resulting in a complete loss of system stability.

A DDoS attack consists of three parts. The master monitors the entire process and decides which machines will be used for initiating the attack and how they will be used. DDoS attacks consist of co-ordinated attacks that provide the master with the capacity to infect the Slave networks for attacking the destination machine through multiple sources. The entire operation comprises of a complex network that is specially assigned the task to disable the destination machine. There might be various reasons behind a DDoS attack. The main motives include just taking down a website or simply disrupting the flow of information. A DDoS attack can take down the entire network.

Two Stage Attack: Intrusion and Distributed DoS Phase

DDoS attack comprises of two main stages. The preparation stage tries to locate weak machines that have security vulnerabilities. The websites that are functioning on perfectly secured servers are not at risk. The initial phase tries to locate the machines that can be infected and used for the purpose of attacking the target machine. The Distributed DoS phase comprises of the actual attack of the destination machine thereby affecting the reliability of the website.

Understanding the security Vulnerabilities

As a result of the security issues, the attackers can get to the root and plant a DDoS attack. In case there are any softwares or applications that are not updated to the latest versions, the system can be exploited further and utilized for the purpose of planting a DDoS attack. The servers that are setup with an open network and do not have a firewall, make it easier to compromise a machine. Also, a website server that is not monitored on a regular basis is highly secured and if there are any intrusions, they are detected immediately.

Preventing a DDoS attack:

The Web Hosting Platform

This is the first factor that one must look at in order to prevent the website getting compromised. It is important to have an efficient network and great processing power, so that your website can withstand the DDoS ‘flood’. It is crucial to find a web hosting platform that is synchronized with the best technology and where all the security measures are in place. The web hosting provider must have a secure and powerful hosting platform and efficient techniques for dealing with a DDoS attack. It’s important to ensure the following factors:

It is crucial to have a backup mechanism in place so that the main functions of the website are not affected in case of attack

Implementing caching systems through which simpler web pages can be created instead of complex feature-rich web pages otherwise the application resources might be strained

A perfect system architecture that separates the ‘front end’ from the ‘back end’ processing systems for minimizing the effects of the attack on the web server

728x90 The Recognition And Defense Of A DDoS Attack : An Overview

Firewall Installation And Configuration

While setting up the firewall; ensure that the ‘Anti DoS’ procedures are in place. A firewall is the first defense mechanism against the hackers. The firewall should be capable of preventing the unknown and unauthorized users and hackers from installing the DDoS components. The settings and functioning of a firewall might be difficult to understand; therefore it is important to consider a good managed hosting platform that takes care of all the security measures for you.

The Solution : Prevention Is Better Than Cure!

It is a difficult task to prevent a DDoS attack by someone who is bent upon infiltrating and taking down your system. Having said that, a DDoS attack can be mitigated if the basic security measures are in place, this will avoid the possibility of a successful DDoS attack. If an attack becomes so serious that it poses a threat to the hardware of the server, then you might have to shut down the server. At this point, you will have to analyze the logs of the system and also the incoming IP’s trying to infiltrate the system. The best thing is to talk to your web hosting company about the audits being conducted on the server, if this is done on a regular basis, a lot of damage can be prevented.

Posted in Web Hosting | Leave a comment

WHUKs Dell PowerEdge R410 Rack Mount Dedicated Server Specifications

Posted on February 7, 2013 by Barb

R410 PowerEdge rack mount enterprise ready dedicated servers from WHUK is supposed to be Dell’s 11th generation hardware equipment. This 1U rack server is an ideal choice for SMB’s with an extended capability to serve various highly advanced computing technology mechanisms such as grid computing. Comes with Windows and Linux OS compatibility.

DELL R410 Open Server by WHUK WHUKs Dell PowerEdge R410 Rack Mount Dedicated Server Specifications

Here are the specifications of Dell R410 :-

Details
Part Code PowerEdge R410
Continue reading
Posted in Dedicated Servers | Tagged , , | Leave a comment

The Process Of Reinstalling An Application In Softaculous

Posted on February 5, 2013 by Catherine

If you would like to reinstall your script, first it is essential to remove the current installation. This will help in avoiding any errors that can be caused by the existing files present in the installation directory. This goes on to say that the application has to be deleted completely. In case you require any of the old data, it is recommended that you must create a backup for it before deleting it.

The uninstallation process consists of the following steps:

* Go to your cPanel and follow the link to Softaculous through the ‘Software / Services’ tab

* From the top right menu select the ‘All Installations’ button

* On the new page you will come across a list of installed applications. Locate the one that you would like to uninstall and then click on the ‘Remove’ button

* Install the application back by selecting it from the left hand side menu

This completes the process of reinstalling the application in Softaculous.

468x60px The Process Of Reinstalling An Application In Softaculous

 

Posted in Web Hosting | Tagged , , | Leave a comment

WHUKs Dell R210 Rack Mounted Dedicated Server Chassis Specifications

Posted on January 28, 2013 by Barb

Dell Branded R210 and R410 are the Rack mounted Chassis we use to offer to our customers. They are few of the best hardware’s that offer reliability and are few of the best power efficient servers.

dell poweredge r210 rackmount server WHUK 300x120 WHUKs Dell R210 Rack Mounted Dedicated Server Chassis Specifications

Here we’ve listed the specifications of Dell R210 chasis :-

Details
Part Code PowerEdge R210 II
Motherboard and Processor
Motherboard Intel C202
Number of Processor Sockets 1
Instruction Set
32 Bit
64 Bit
x86
Chipset Intel C202
Core Configurations
Dual-Core
Quad-Core
Compatible Processors
Intel Core i3
Intel Xeon E3
Intel Pentium
Memory Cache
Cache Type
L1 Cache
L2 Cache
L3 Cache
Maximum Cache 8 MB
Physical
Server format Rack
Server configuration 1U
Memory
RAM capacity 32GB
Memory type DDR3
Storage
Hard disk configuration 2 x 250GB Dell SATA 3Gbits/sec hard disks in cold-swap carriers
Total hard disk capacity 500GB
RAID module Dell PERC H200 S100 S300 H200 S100 S300 H800 RAID
RAID levels supported 0, 1, 5, 10
Compatible 3.5″ Simple-Swap Drives SAS, SATA, SSD
Networking
Gigabit LAN ports 2
Power supply
Power supply rating 250W
Noise and power
Idle power consumption 44W
Peak power consumption 130W
 Operating System
Microsoft
Windows Server® 2012
Windows Server 2012 Essentials
Windows® Small Business Server 2011
Windows Small Business Server 2008
Windows Server 2008 R2 Foundation SP1
Windows Server 2008 SP2, x86/x64 (x64 includes Hyper-V®)
Windows Server 2008 R2 SP1, x64 (includes Hyper-V v2)
Windows HPC Server 2008		 Novell® SUSE® Linux Enterprise Server Linux
CentOS 6.x
Fedora Core 10, 11, 12
Debian 5.0
FreeBSD 6.x, 7.x
Ubuntu 9.x
RHEL 5.x		 Virtualization options:
Citrix® XenServer®
VMware® vSphere® ESX™ and ESXi™
Red Hat Enterprise Virtualization®

WHUKs Dedicated Servers1 WHUKs Dell R210 Rack Mounted Dedicated Server Chassis Specifications

Posted in Dedicated Servers | Tagged , , | Leave a comment