DNSstuff.com
Oct
23rd

BlogRush – Bums Rush?

Filed under General | 1 Comment

Up until recently I had a BlogRush widget on this site. However, for some reason which they didn’t even bother to tell me, they decided that The Dedicated Server Doctor didn’t meet their quality guidelines.

This led me to do a search and see how many others of the 10,000 or so they ‘deactivated’ felt that their was something not quite right. What I found really surprised me. Many comments from other BlogRush members, many of who had either removed the BlogRush widget weeks ago, saying that they had received the ‘congratulations’ email for having a quality blog. There were also some really excellent blogs that were unceremoniously dumped. In one case where a blog had been re-instated there was apparently an apology from BlogRush owner John Reese because the  blog had been deactivated ‘due to a typo’.

Whilst I’m not going to lose any sleep I’ll make a few points and then I’ll get over it 🙂

* Many blog owners received emails that basically said ‘you don’t meet our guidelines’ but didn’t mention the actual reason, so it’s like ‘you don’t meet our guidelines .. go read them and work out why’. Personally I think that’s just a little bit rude. I know I certainly couldn’t work out which guideline I supposedly wasn’t meeting.

* When ex-blogrushers started complaining, Reese locked comments on his blog, the Warrior forum deleted posts about BlogRush and a thread that Reese started to ‘explain’ was locked once warrior members started replying.

* It is abundantly obvious that the ‘quality control review team’ is a group of individuals who are all interpreting the guidelines in their own special way.

That’s all I have to say about that!

Oct
13th

Server Tuneup – Email

This is the first in a series of tips that will delve into CPanel and soem of the options you have. The first one I’m going to look at is the ‘default email address’.

If you look in the email section of CPanel you’ll see this option. Depending on which version of CPanel is installed, you may see it as a ‘Default Address’ icon or you may need to first click on ‘Email Accounts’ to see it.

You should have 3 or options (you might need to click on ‘Advanced’ to see the third option) but we will look at the main three. In CPanel 11 you can ‘pipe’ messages but that is for advanced users and rarely used.

First, lets talk about what this ‘default address’ is. The default address is a ‘catch all’ address that will receive email for any email address that isn’t actually defined. So, you may have a few addresses like bob@… and sally@… but what happens if an email comes in for fred@…? That’s where the default address comes in. The email to fred@… will be delivered to the ‘default address’.

There are a few reasons why you may want these messages delivered into a mailbox, but generally speaking you will want to discard them. This is mainly because many spammers will send emails to non-existent addresses at your domain in the hope that they are delivering to a real person. This is called a dictionary attack where they take a list of several thousand names and send email to all of those names at your domain.

Bouncing the messages is considered to be the technically correct thing to do though there are some who frown on this as it simply creates more email out on the Internet and if the incorrectly addressed emails are coming from spammers then they aren’t going to even read the bounce messages anyway. Also, there will probably be a time when a spammer forges an address at your domain as the reply address on spam emails in which case your server will receive many bounce messages as well … which it will then respond to with more bounce messages.

Fortunately, CPanel allows you to deal with these message without creating more messages. The option (in CPanel 11) is ‘Discard with error to sender (at SMTP time)’. This looks at the address that someone is trying to send to and if the address does not exist it simply responds with an error message ‘no such user here’ and closes the connection. It’s basically like when you ring a wrong number on the telephone. The person at the other end picks up, tells you that the person you are calling is not at that number and the call ends.

The one exception to this option is if you are experiencing a sustained, heavy flow of emails to invalid addresses. In this case you may want to select the option that says ‘Discard (Not Recommended)’. In earlier versions of CPanel this is the ‘:blackhole:’ option. Discarding with no error response will lower the amount of CPU and resources required for each invalid messages and may prevent your server from slowing right down or even crashing. If this does happen and is sustained for more than an hour or two then you really should contact your host or a server professional to take further steps in preventing these email messages from getting to your server.

Oct
10th

Help! I’ve Been Hacked!

It’s a cry for help that I’m hearing more and more lately. That is due in part to there being several organised groups on the Internet who are very actively defacing websites. You may have even seen some of the defaced sites. One of the most active groups is a Turkish group that has, on some days, been able to deface thousands of sites with their automated scripts. Fortunately this type of ‘hack’ is generally fairly easy to repair and a script update will usually ‘plug the hole’. Still, it can be a scary experience to open the home page of your website and see a totally different page.

That’s the good news! The bad news is that if you have a dedicated server then the remedy may not be so easy. Particularly if someone has managed to get root access. The only safe way to ‘repair’ your server in that case is to do a full, clean re-install of the operating system and all of your files after identifying exactly how the intruder managed to get root access. This can be costly and time consuming depending on how successful the intruder was at hiding his tracks. This is also one of the main reasons we at The Dedicated Server Doctor monitor our customers’ system log files in real time. All system logs are archived into a database so that if an intruder does manage to get in, we may be able to see where they came from and which service they were able to exploit.

Remember, your server is only as secure as you make it. Weak passwords and outdated scripts and services will almost certainly lead to a compromised server.