BlueThunder Blog

We have now updated our WebsitePanel hosting control panel to version 1.2.1 in our UK data centre.

Customers without a support contract who manage their own servers will need to also apply the WebsitePanel 1.2.1 to their server.

Customers with a support contract who are using our WebsitePanel may open a support ticket and request for us to do the update at their convenience.

This update does not affect customers on our Amsterdam facility.

This morning Microsoft has released their increases for the July price changes.

SPLA pricing is set to increase by 33.4% on 1st July.

Only corporate pricing is going to be increased; academic will remain the same.

As a result we will need to increase our own SPLA pricing for all Microsoft products. Customers paying monthly will therefore notice a change on their invoices as from July 1st. Customers paying yearly will not see any chance until their next invoice.

Our old billing and hosting control panel caled “HELM” is finally being retired after many years being discontinued and unsupported by the original vendor.

We have replaced it with 2 new systems.

WHMCS – a dedicated billing system

WebsitePanel – a dedicated open source hosting control panel

Both of these systems have considerably more features than HELM and address most of the areas where HELM was weak, here is a small taster.

WHMCS

• More flexible billing options,-  we can now do billing for anything not just hosting
• Ability to do promotions and special offers
• Affiliate system – for customers who want to make money from our services without having to become a reseller or do support
• Domain management. You no longer need to go through www.bluethunderdomains.net, you can do all your billing in one place
• Multiple users – add multiple users to your acocunt and control their permissions, what they can see and do.
• SMS alerts – Be alerted via SMS when invoices become overdue or when changes are made to your acocunt
• Integrated shopping cart – allowing you to orde rmore services online without having to contact us
• more….

WebsitePanel

If you have a dedicated server or VPS hosted with us then please read the following security announcement.

Microsoft recently released a Security Patch for a Remote vulnerability in the Remote Desktop Protocol. The vulnerability allows for remote code execution by an attacker without requiring authentication and thus has all the ingredients for a class worm virus. On March 15th, 2012 a proof of concept exploiting this vulnerability has already been released by securitylab.ru. We urge you to apply the patch the vulnerability as soon as possible.

On the following page you can find more information regarding this Remote Vulnerability and instructions on how to patch this security issue.

- http://technet.microsoft.com/en-us/security/bulletin/ms12-020

Through Windows Update you are also able to patch this Security risk.

APPLIES TO:
- Windows Server 2003
- Windows Server 2003 R2
- Windows Server 2008
- Windows Server 2008 R2
- Windows XP
- Windows Vista
- Windows 7

We also  recommended to change passwords of all your Remote Desktop Accounts after applying the Security Update. Additionally if you are connected behind a firewall we advise you to restrict connections to your RDP port to specific IP addresses.

If you have a managed server then we will performing this update for you automatically.

Due to the number of customers having issues with emails being rejected or going missing due to Greylisting we have now disabled this anti-spam measure by default for all new and existing users on our SmarterMail server.

Greylisting is effective because many mass email tools used by spammers do not queue and reattempt mail delivery as is normal for a regular Mail Transport Agent. They do not queue and resend email as this requires the expenditure of resources (spamming normally operates on very narrow margins). Since the advent of Greylisting spammers have taken to rerunning their mail delivery tools to resend the same email again without having to expend resources queuing the email. This approach still requires them to expend additional resources resending the email the second time though. As of 2011 spammers have been using this technique for many years.

Delaying delivery also gives real-time blackhole lists and similar lists time to identify and flag the spam source. Thus, these subsequent attempts are more likely to be detected as spam by other mechanisms than they were before the Greylisting delay.

The reason for the issues some customers have experienced is because some SMTP clients and SMTP servers acting as clients may interpret the temporary rejection caused by Greylisting as a permanent failure. Old clients conforming only to the obsolete specification (RFC 821) and ignoring its recommendations may give up on delivery after the first failed attempt—RFC 821 states that clients "should" retry messages rather than using the word "must". RFC 2119 dictates that "should" means recommended and to ignore at your own risk, and it is a violation of the current SMTP standard for the client to fail to retry. The current SMTP specification (RFC 5321) clearly states that "the SMTP client retains responsibility for delivery of that message" (section 4.2.5) and "mail that cannot be transmitted immediately MUST be queued and periodically retried by the sender." (section 4.5.4.1).

If you still wish to use Greylisting then you can re-enable it via the webmail interface. We also have a selection of SmarterMail video tutorials on our support helpdesk HERE if you need help configuring your optional email settings and spam filters.

Over the last year we have found that more customers want/need premium support of some sort on an occasional or regular basis but don’t really have the budget to pay for it.

Being a support centric company we have put considerable thought into a solution that would work for the majority of customers and decided that our usual “keep it simple” approach was the best solution here too, as a result we now have some brand new easy to understand support options that cover “everything” with a single plan.
So no more separate support contracts for servers, email and websites etc, now you just need one contract which you can use for everything and at a budget that suits everyone.

Why would you need a support contract anyway ?

• If you have a dedicated hosting solution such as a VPS but do not have the technical skill to manage it yourself or the budget to hire full time techs.
• You have a website that needs ongoing maintenance/support such as bug fixes, adding new features, optimising your database etc and do not have a full time web developer. Do you even have a backup of your website or database for example in case something happens to it?
• You require managed support with your Google Apps for business solution, managing applications, importing emails/users, setting up your cloud storage etc.

The biggest advantage with a support contract is that you save money, by having a support contract you pay far less than you do when paying per incident. The hours of support time included with all our contracts are 25% less than our normal rates if you do not have a support contract. We also give a discount on any additional hours your purchase.
The second big advantage is that you get priority support. Customers with a support contract will get priority over those who do not.

Here are the new options

All support contracts cover the following, which must be hosted with us.

• VPS/Server support (windows, IIS, mail, FTP, RDBMS, firewall, etc)
• Website/Database Support/migration
• Backup Management 
• Google Apps support/migration and management
• Remote assistance for connecting your desktop to our services (email, ftp, VPN, RDBMS)
• Full time  tracking and reporting
• Billing by  the minute

Further discounts are applied when paying quarterly, bi-annually and annually)

Today we would like to reach out to you with some interesting news. BBVA, Spain’s second largest bank, has gone Google. They will move their 110.000 employees to the Google Apps enterprise solution. This are outstanding news and a milestone in the young history of Google Enterprise. It shows that they are on the right path and demonstrates the opportunity and the value Google Apps bring to customers all over EMEA.

The second reason for this post is to tell you about a new innovative tool to make the switch easier from MS Exchange or Microsoft 365 to Google Apps.

The change from on premise (that means you run your own local mail server in your office) to the cloud can be hard, especially if you are dealing with traditional MS users. To help customers see the value of the cloud and overcome objections with data, the CloudReady tool can be very useful. It will answer such questions as:

• how many of my users are power users?
• what features of Exchange/Outlook are actually being used
• what are my actual costs
• how much will I save

I also highly recommend watching this video to gain some insight as to whether the move to Google cloud is right for you.

For more info on our Google Apps solution please go HERE.

If you are looking for a new/alternate domain then now is the perfect time to buy it with our new domain registration promotions for 2012

*£GBP pricing based on exchange rates at time of writing, may differ slightly at time of ordering.

.PRO Domain Names: Your Professional Identity on the Internet

PRO is an exclusive top-level domain reserved for use exclusively by licensed business and service professionals and entities internationally. All applicants meeting the following qualifications may register a .PRO domain name:

• Provides professional services.
• Admitted to or licensed by a government certification body or jurisdictional licensing entity recognized by a governmental body that regularly verifies the accuracy of its data.
• In good standing with the licensing authority.

In addition, registrants will be asked to provide the following information related to their professional eligibility:

• Identification
• Contact information.
• Profession-specific information such as license number.

BUY NOW

.info means information the world over.

Now your Web address can be in the one domain that means information to everyone everywhere: .info. It’s the fastest-growing domain on the internet, because it offers millions of short, easy-to-remember names for registration. And since the word “info” is understood the world over, .info is becoming a global standard across the Web.

Many of the world’s most valuable brands have registered their .info domains – companies like Mercedes, Sony, and Coca-Cola. So join the hundreds of thousands of businesses, individuals, and organizations who have registered their .info names. And get the address that tells the world where to find info about you.

Register your .info name today while the best names – and your name – are still available!

BUY NOW

 

Tell your story on the Internet with .ME, the Top-Level Domain that’s all about you, your product, your world!

Individuals:

• Carve out a place on the Internet that’s all your own (includes FREE email address with your .ME domain name in it)!
• Perfect for blogs, resumes, and personal pages.

Businesses:

• Personalize your product or service for Internet-savvy younger visitors by launching a .ME Web site with your product name in it.
• Protect your brand from competitors who might wish to take advantage of the name recognition generated by your popular .COM.

BUY NOW

 

 

A new frontier for opportunity online

.CO is a new globally available domain extension that is a credible destination for businesses, blogs, informative sites, and more. Rapidly becoming one of the most popular domain extensions, here are some reasons to consider .CO as your next home online:

• .CO is a credible extension with many names already obtained by top name brands.
• Now you don’t need a long domain name with dashes! Get a better, shorter .CO!
• .CO has excellent SEO potential and is considered the same as a .COM in Google searches.

With many short, desirable names still available, .CO is a new landscape for ideas and business online!

BUY NOW

Big companies like BMW, Ferrari, Hilton Hotels, ESPN, Maxim and Go Daddy have expanded their reach with their own .MOBI sites — now you can too!

When you register a .MOBI you can:

• Launch a mobile-friendincluding ly companion to your main Web site. .MOBI sites are smaller, faster and more concise so they can be easily accessed via a variety of mobile devices, cell phones, SmartPhones, Windows Mobile Devices, RIM devices and more.
• Make it easy for people who are ‘on-the-go’ to find you. Perfect for restaurants, movie theaters, hotels, mechanics, stores or any other business that wants to be easily accessible to local residents and travelers alike.
• Make things convenient for your customers. With a .MOBI site, your customers can make reservations, get directions, buy tickets, arrange deliveries, access special offers and more — all from their mobile phone!
• Protect your brand from copycats and competitors. Don’t let someone else register the .MOBI version of your existing Web site. Plus, enhance your brand by expanding to a different audience.

BUY NOW

If your web site moves, it belongs on .tv.

.tv is the address for rich and dynamic media on the web. It’s the preferred destination for video, film, animation, user-generated content and rich media of all kinds. It’s also a great choice for product demonstrations, how-to videos, keynote addresses, plus training and educational content. So, whether you are in the business of creating videos or just use videos in support of your business, a .tv domain name is the natural place for your rich media content to live.

Everyone’s at home on .tv

• Film, video & animation
• User-generated content
• Interactive gaming
• Portfolios & exhibitions
• Music broadcasting
• Sports channels, clips & highlights
• Education and training
• Retail and business promotions

.tv memorability
A .tv web address stands out. It’s easy to remember because it’s different. It’s easy to say, and it says exactly what it is. When users see a .tv domain name, they know to expect video, film and other rich media content. On the Web, easy memorability means hits, eyeballs, mindshare and action. .tv adds value, period.
Room to explore
Customers with established websites have lots to gain from .tv. A .tv address gives you room to explore, take risks and store rich media content. Augment your main web site with a microsite, film channel, video gallery, portfolio and more with a .tv domain name.

BUY NOW

ColdFusion on the server vorlon-h9 has been updated to 9.0.1 cumulative hot fix 2 which fixes a number of issues.

more details here: http://kb2.adobe.com/cps/918/cpsid_91836.html

the update resulted in ColdFusion being down for approx 5 minutes.

Unfortunately a very large number of websites are vulnerable to malware and this problem is even more rife over the Christmas period as hackers know full well that website owners are usually  not monitoring their websites and are less likely to notice any problems until the new year, by which time the damage has been done.

GeoTrust Web Site Anti-Malware Scan helps you identify malware strains that could affect your site and also assures your customers that their sites are safe and have been scanned for malware by displaying an anti-malware seal from GeoTrust, which we all know is one of the most popular SSL and web security brands on the planet.

With This Affordable & Effective Solution, You Get:

• A daily scan of your site for malware
• An expert analysis of your site for any known malicious code and additional monitoring of any malicious activity
• It provides easy clean-up instructions if your site is infected
• It provides instant alerts when malicious code is found, for fast removal
• On-demand scanning capabilities, to confirm a clean site instantly
• Avoid potential blacklisting by browsers & search engines
• To display the GeoTrust trust mark, which is the #1 brand of SSL for the top 1 million most visited domains on the web

What is malware?

• Malware is a general term for malicious software and is a growing problem on the Internet.
• Hackers install malware without your consent by exploiting security weaknesses in your website and gaining access to your web site code and database.
• The malware code is not visible or easily detected, and may infect your customers’ computers when they simply browse your web site.
• Hackers use it to spread viruses, hijack your computer or steal sensitive data such as credit card numbers or other personal information from you and your customers.

Features

• Protect customers’ web site
  • Assure customers that your site has been scanned
• Find out fast if they get hacked
  • Avoid getting blacklisted by search engines
  • Get daily anti-malware scans for up to 50 pages
• Non-invasive daily scan
• Immediate email alerts when malware is found
• Simple Workflow
  • Minimal contact data is collected
  • No Vetting required enables immediate activation
  • Order contacts are notified first scan will be run within twenty four hours
• Site Seal included.

How do I know if my web site is free of malware?

Malware is rarely visible on your web site; it is hidden in your web page code. A malware scan by a malware detection tool can help you identify infected code. The GeoTrust Web Site Anti-Malware Scan includes a daily malware scan. If malware is detected, you will be notified and directed to a list of infected pages and the code causing the problem. Your web site administrator can find and delete all instances of the code and request that your site be rescanned within 24 hours.

Could web site malware scanning slow down my web site?

No. Web site malware scanning is equivalent to having 10 visitors navigate your web site.

How can I protect my site from malware?

Like most thieves, malware hackers look for easy targets such as a web site where malware will go undetected for as long as possible. The GeoTrust Web Site Anti-Malware Scan includes a daily malware scan to detect malware and alert you with detailed information to respond quickly to the attack. Posting the GeoTrust Web Site Anti-Malware Seal on your web site is like posting an alarm security sign in your front window. It shows hackers that your site is scanned daily to detect malware.

What happens if malware is detected on my web site?

If malware is discovered, the GeoTrust Web Site Anti-Malware Seal no longer displays. You receive an email alert warning you of the malware infection with instructions to sign in to the End User Portal. The End User Portal services tab shows a list of infected pages and the code causing the problem. You or your web site administrator can find and delete all instances of the malware and request that your site be rescanned within 24 hours. When the scan confirms that all instances of malware are removed, the seal displays again.

What does the GeoTrust Web Site Anti-Malware Seal mean to my customers?

As consumers become more concerned about identity theft, they look for signs that a site is safe before doing business. By posting the GeoTrust Web Site Anti-Malware Seal, you show customers that you care about their safety and that your site has passed the GeoTrust Web Site Anti-Malware Scan within the past 24 hours.

In addition we also offer full security audits of your website to check for and fix known vulnerabilities, as well as application firewall solutions to protect your site from common attack vectors which will help to stocp your website from being hacked in the first place. We offer a  FREE basic scan of Coldfusion websites to identify several common issues.
for more information please contact us.