InterServer’s InterShield system is able to stop many attacks and updates daily based on new data including new possible malware, known exploits and other Common Vulnerabilities. However, sometimes even with all these a new type of malware comes up.
In a recent case a site was redirecting to a pharmacy website but only when coming from a google search engine result. The site initially passed all scans of known vulnerabilities, the url did not exist in the code or database and it was reproducible. In this cases advanced debugging is needed. So xcache with trace was enabled which determined some interesting results. Follow this brief analysis and walk-through of our debugging process!
Starting here we load a normal WordPress file:
However, here the include is for a file not found in WordPress, so we continue to debug. We soon find that the URL being called was /privacy-policy/. We then execute a ‘wget’ to a remote URL. The wget then gives this information which does the redirect:
In the vars file we find:
The @require_once is hidden after a comment.
Using this data the our staff was able to to create virus signatures in order to detect these. Class.wp-include.php signature is available at:
InterServer’s virus db detects most common malware and is available from https://interserver.net. InterServer will continue to provide security updates to our customers so stay tuned for more on the expansion of our powerful InterShield.
The month of February brought yet another scare to the hosting world. A WordPress vulnerability was exposed which allowed hackers to initiate what is known as a denial of service (DoS) attack on ones website. Ultimately, under a DoS attack, your website becomes unreachable by anyone including you. The technical understanding of performing the DoS attack is rather simple.The flaw begins under the well-known “/wp-admin” directory. Every WordPress site is assigned this path as an administrative source. It was discovered that while loading this path there exists a script which fetches a number of JS/CSS files. This can be a heavy load on the server when performed repeatedly. Of course, DoS attacks found their roots and hackers began exposing this exact flaw. Due to its simplicity, the population of attempts are greatly increased and essentially adds more to the scare. Fortunately, any downtime is not acceptable by InterServer.
InterServer was able to mitigate these attacks through mod_sucurity. Therefore, it is NOT possible to exploit this on our shared hosting services. While there is an alternative for individuals who may not have their site hosted with InterServer, it is not guaranteed success. The alternative is to modify the “/wp-admin” as a sub-directory which will free you against common WordPress admin scans.
As an InterServer customer, you can rest assured that your WordPress site will be safe from the newly exploited DoS attack flaw.
You may have heard of terms like Meltdown and Spectre in recent tech news. Both exhibit a hardware vulnerability exposed by a small team in Austria. Through software, both are able to access private data on a server, but how is this possible? The vulnerability begins at the most inner core of a computer, the Central Processing Unit (CPU). By observing micro processes and transactions, these programs were able to access other parts of the computer that may not be relevant to the actual programs running. For instance, e-mails, files, browsing history, etc. were all subject to vulnerability. While the technical understanding of Meltdown and Spectre is extremely high level, it is important to understand that InterServer took immediate action.
InterServer CTO, John Quaglieri kept up to date with all Linux distributions and their kernel updates that would directly target Meltdown and Spectre. Fortunately, John was able to update our Linux machines immediately and efficiently to ensure that all data is secure. From our Shared Hosting to VPS, all kernels have been updated up to par based on their respective Linux distributions. He allowed our customers to keep track with his progress in a frightening situation by logging any updates on our forum page.
Here is the forum URL link which tracks any updates regarding Meltdown and Spectre in InterServers infrastructure – click here.
In recent news, you may have noticed the subject popularity on Bitcoin. The following questions may come up,
We will help you get a clear picture of the internet currency without getting into the nitty gritty details that may confuse most people.
Firstly, Bitcoin is an internet currency or better known as, a cryptocurrency. It offers a way to make transactions without the common use of the U.S dollar. A fair comparison would be to having your wallet full of cash and harddrive full of bitcoin. In both scenarios, you possess a currency worth some value. Right now, one bitcoin is worth 16,207 dollars. Other companies exist that offer cryptocurrencies, a few of them being : Ethereum, LiteCoin, Neo, Monero.
Unfortunately, Bitcoin isn’t offered as an hourly wage nor can you earn it through a typical job. There are two ways it is possible to acquire Bitcoin:
The first option is rather simple. You trade 1 Bitcoin for 16,207 dollars. In 2009, you were able to purchase 5,000 bitcoins for as low as 27$.
The second option is where the Bitcoin story gets complicated. For simplistic reasons, we will keep the explanation concise and to the point. You may have heard of the term ‘mining’ related to the technology field. When pertaining to Bitcoin or a cryptocurrency, the term mining isn’t what we might initially imagine. Instead of digging into the Earth’s crust in hopes to find some Bitcoin, we dig deep into CPU utilization. Powerful computers solve Bitcoin designed ‘problems’ or ‘equations’. As a reward, Bitcoin assigns a bitcoin to the host who solved the equation. The entire process has a snowball effect. The more value a Bitcoin gains the harder the equations are to solve.
The hype begins around the fact that the new currency is completely unregulated by government agencies. While it is bannable by governments, it is not regulated. A major component of Bitcoin popularity is also the delicacy of Cryptocurrency and its worth. It’s like taking a gamble. Dedicating time, money, and effort to gain Cryptocurrency can profit in thousands to millions of dollars while in some cases, very little to none.
In most recent news, Bitcoin proved to be a very profitable business as its value skyrocketed in just a few months.
Unfortunately for the common consumer, investing in Bitcoin is not so realistic anymore because of its value. As previously stated, today, one Bitcoin is worth 16,207 dollars. So, to invest in Bitcoin at its current value is rather pricey. If you are just learning about the hype-train, it is unfortunately a little late to hop on. This doesn’t mean that you can’t explore other cryptocurrencies. Other companies still compete with Bitcoin and have proven their potential of exponential growth in the following years.
While the Cryptocurrency world is still very unpredictable, it is important to consider its expansion and potential. Keep an eye out and enjoy the evolution of Cryptocurrency unfold!
Magento 2 is a complex and highly configurable eCommerce platform. It supports endless level of customization. It lets you create a website with almost any functionality you can think of.
The price you pay for such a flexible eCommerce solution is performance. Magento 2 (M2) might be quite slow. I am sure you have seen people on the web searching for ways to speed it up.
I am going to share with you my 5 easy steps to fix a slow M2 site. You don’t need to have programming skills to implement them. Follow me.
Magento 2 functionality could be extended with custom 3rd-party plugins. You can develop your own extensions or buy them from various vendors. Most plugins are poorly coded. Unlike Magento core which was written by experts, custom extensions are coded by average programmers at most. With average skills and no appreciation for performance benchmarks. It is no wonder some 3rd-party extensions slow down a Magento 2 site. You need to do an audit to identify those plugins that affect site performance.
First get a list of all custom extensions. Go to Magento backend menu Stores > Configuration > Advanced > Advanced. You will see an output like this:
Those are all extensions that are installed on your Magento 2. Ones that start with Magento_ are core plugins and you should ignore them. Others are 3rd-party modules. Copy them to a special list ‘Custom Extensions’. Now go through ‘Custom Extensions’ list and disable modules one by one. How do you disable a module? You will need SSH (Secure Shell) for that. Use SSH to login to the server and navigate to Magento root folder:
Then issue a command to disable a module:
php bin/magento module:disable Vendor_ModuleName
After you disable an extension benchmark site speed. You can use an online tool WebPageTest.org. Do you see a difference in page load time? If you do than that plugin is an abuser. Contact its vendor and ask for help. Or uninstall it or find an alternative. If there is no speed difference move to the next plugin. Sooner or later you will find a few extensions that are performance hogs.
Magento 2 requires powerful hosting to deliver decent performance. If your M2 is running consistently slow it might be just screaming out loud – I need more CPU and RAM!
Here is a simple trick I use to determine whether a poor hosting plan is the reason for poor M2 performance:
If you find out you need a better hosting plan – contact your hosting company and ask for one. If you were using a shared plan – go with VPS. If you were using VPS go with a dedicated server. Explore your options.
There are three Magento 2 modes: default, developer and production. Magento 2 is designed to be fast only in production mode. You might be surprised how many M2 sites are slow only because they are in developer mode. The reasons vary: a developer forgot to switch M2 to production, a data entry specialist turned on developer mode for testing purposes and never turned it off. You need to make sure you run M2 site in production mode only. You can find out what mode you are in now by running this simple SSH command inside Magento root folder:
php bin/magento deploy:mode:show
You can turn on production mode with this command:
php bin/magento deploy:mode:set production
Contact your hosting and ask if they support HTTP/2. Let them enable HTTP/2 for your Magento 2 store.
Magento 2 comes equipped with Full Page Cache. It means M2 can cache whole pages making time to first byte (TTFB) for cached pages around 500ms i.e. half a second. This is good news. You need to make sure Full Page Cache is always on. Go to backend menu System > Cache Management and double check. You might be surprised to see all your cache disabled. Your developer might have turned it off for testing purposes and forgot to put it back on. No wonder you are experiencing performance problems!
Magento 2 supports Varnish out of the box. Varnish is a special software that caches and serves static content. It helps with making TTFB as low as possible. Contact your hosting support team to have Varnished installed and configured on your server.
You can enable Varnish for Magento 2 Full Page Cache at backend menu Stores > Configuration > Advanced > System:
Those were my 5 tips to speed up Magento 2. They are field-proven and tested. I used them many times to optimize performance of slow M2 sites. I hope you find them useful.
About the author: Konstantin Gerasimov is a Magento Certified Developer with Goivvy.com. He specializes in backend development, speed optimization and extension creation.