Archive for February, 2007

Disaster Recovery

Posted by Blaze in Reminders on February 7th, 2007

First of all, I’d like to say thank you to all of you for your patience during this weekend’s problems. Your patience and understanding is greatly appreciated.

While the initial response was happening, I was out trying to hunt down information on who and/or what had hit us, so that we could assess the degree of damage done. In addition to finding that the attack was relatively harmless, I discovered 2 things: 1) there’s only 1 place where this attack is even mentioned, 2) there are a bazillion sites that are infected. We’re all very fortunate that our admins are observant and noticed it as quickly as they did.

With the exception of a couple bits of user-inflicted “panic damage”, we appear to have everything cleaned and back to normal. If you notice any problems, please let one of us know right away.

In response to the events this weekend, I’d like to make a few comments.

  • While Geek Niche does perform backups to all the sites, these are for “catastrophic recovery”. We can’t restore a specific file; it’s the whole site or nothing. This means that any changes made since that backup will be lost forever. In the case of this weekend, we had no way of knowing how long the invading code had been sitting on the server, so using the backups could have deleted a lot of information without solving any of the problems.
  • WordPress is one of the applications that can possibly be vulnerable to the type of attack we encountered. The latest version of WordPress is immune to this attack, and I strongly encourage you to upgrade. If you don’t know how, let me know, and one of our staff will do the upgrade for you. Upgrades to WP 2.1 will be done for free until Feb 16th. After that, there will be a $10 charge.
  • While we can help you recover from a catastrophic failure on your site, there’s a few things you can do to protect yourself.
    • If you make changes to files on your site, save a copy to your local computer. Saving a “default” set of files is always a good idea, and having a local copy of any customized files makes it really easy to recover from a minor problem.
    • If you’re using WordPress, you can back up all of your data using the “WordPress Database Backup” plugin. This plugin allows you to create a copy of all of your data and either save it to a file on the server (fast, but the least safe), e-mail it to any e-mail address, or save it directly to your computer. You have to go in and manually tell it to create a back-up each time, so remember to do so regularly. If you need help either installing this plugin or restoring data after a problem, let us know. We can provide either service for a $10/instance fee.
    • WordPress also has an export/import feature. This is good for saving only the data (posts, comments, etc.), and is easy to use, but is less able to handle a catastrophic failure.

No Comments

February 2007 Newsletter

Posted by Blaze in Newsletters on February 3rd, 2007

Yeah, yeah… I know. I missed the January 2007 Newsletter. But it’s not my fault. Honest. It’s Stella’s fault. Stella Artois. Far too many pints of Stella Artois. :) But… to massacre a cliche: “When in Canada, do what the Canadians do.”

Now, some of you may get picky and point out that I’m late with the newsletter for this month, too. Nope. I planned it this way (that’s my story and I’m sticking to it!). You see, today is the Feast of St. Blaise. So, to celebrate, I’m writing the newsletter.

So… anyway… It’s now February (Happy New Year!) and things have been going well here at Geek Niche. While there hasn’t been anything huge or “flashy” going on, there have been some tweaks and adjustments and minor upgrades behind the scenes. Most notably, we’ve upgraded Plesk again. Included in this version were some changes to the Application Vault. There have been some upgrades and additions to the applications in there, so you may want to take a peek and see if there’s anything new or interesting.

A couple random points:

  • I got a question from one of our clients recently regarding a letter he received telling him it was time to renew his domain. Being fairly sure that I hadn’t done any somnambulist mailings, I checked it out. It was, as I suspected, a ploy by another company to steal his business away from us (and charge him twice as much for it!). Geek Niche uses GoDaddy as it’s registrar. If you’ve registered through us, the only notices you should pay attention to will come from Geek Niche or GoDaddy.
  • Many of you us WordPress on your sites. Over the past year, the WordPress team has been working very hard to improve their product, and they’ve released a number of updates. The latest “stable” release (meaning it’s passed all the testing stages) is 2.1 (Ella). To find the current version of your installation, log into your Dashboard and scroll down to the bottom of the page. It should say something like “2.0.2 — 0.13 seconds”. The first part of that is your version number. If it’s less than 2.1, I recommend upgrading. If it’s less than 2.0, I strongly recommend upgrading. To upgrade, all you need is the ability to FTP to your account. Just download the new version and follow the instructions that are included. It’s easy to do and will make your blog more secure. If you have any questions, just e-mail me.
  • As always, if you’re looking to do something special with your site, Geek Niche has designers and programmers for hire. Whether it’s a custom WordPress theme or plug-in, an e-mail submission form, or an online database, drop us a line and we’ll find someone who can handle you project.

That’s all for this month.


M Blaze Miskulin
President
Geek Niche, Inc.

No Comments