Insecure versions of Adminer disabled

Some of our customers use a script called Adminer (aka adminer.php) that allows them to modify MySQL database entries. It’s similar to phpMyAdmin.

This is fine, except that old versions of Adminer have a serious security vulnerability that allows “hackers” to take control of sites that use it. If you’ve put an old version of the adminer.php script on your site, then you never updated or removed it, your site is vulnerable to hackers. A couple of our customer’s sites have been “hacked” this way in the last week.

To make sure this doesn’t happen to more customers, we’re disabling any old vulnerable versions of adminer.php (versions earlier than 4.7) and replacing them with a link to this page.

If you try to use a copy of Adminer you’ve previously installed, but you get referred to this page, you should simply install a new version from the Adminer website. Be sure to keep it updated in the future (or delete it when you’re finished using it).

Free SSL certificates added for all parked domain names

We’ve previously added free wildcard Let’s Encrypt SSL certificates for all our customers who use our web hosting service. Now we’ve added free certificates to all “parked” domain names, too!

If you have a parked domain name on our servers that’s set up to redirect to another site, you can now use https:// URL addresses for the parked domain name and the redirect will work securely, with no problems.

MariaDB / MySQL updated to version 10.1.41; Debian updated to 9.11

We’ve updated the MariaDB / MySQL database software on all our servers to version 10.1.41. This was part of a general update of Debian Linux to version 9.10 and then 9.11.

This upgrade should not be noticeable to our customers in any way, but of course, don’t hesitate to contact us if you have any questions or difficulties.

Brief MySQL scheduled maintenance February 8, 2019 (completed)

Update 9:32 PM Pacific time: the maintenance described below has been completed, and all services are running normally.

Between 9:00 PM and 11:59 PM Pacific time on Friday, February 8, 2019, the MySQL database software on each of our servers will be upgraded from MariaDB version 10.0.37 to 10.0.38 (equivalent to MySQL 5.6.43). This will cause an approximately 60 second interruption of service on each MySQL-using customer website at some point during this period.

This upgrade is necessary for security reasons and to fix bugs in MySQL. We apologize for the inconvenience this causes.

Brief MySQL scheduled maintenance April 20, 2018 (completed)

Between 9:00 PM and 11:59 PM Pacific time on Friday, April 20, 2018, the MySQL database software on each of our servers will be upgraded from version 5.6.39 to 5.6.40. This will cause an approximately 60 second interruption of service on each MySQL-using customer website at some point during this period.

This upgrade is necessary for security reasons and to fix bugs in MySQL. We apologize for the inconvenience this causes.

Update 9:44 PM Pacific time: The maintenance was completed as planned and all services are running normally.

Brief MySQL scheduled maintenance March 30, 2018 (completed)

Between 9:00 PM and 11:59 PM Pacific time on Friday, March 30, 2018, the MySQL database software on each of our servers will be upgraded from version 5.6.38 to 5.6.39. This will cause an approximately 60 second interruption of service on each MySQL-using customer website at some point during this period.

This upgrade is necessary for security reasons and to fix bugs in MySQL. We apologize for the inconvenience this causes.

Update 9:36 PM Pacific time: The maintenance was completed as planned and all services are running normally.

Brief scheduled maintenance January 8, 2018 (completed)

Between 9:00 PM and 11:59 PM Pacific time on Monday, January 8, 2018, each of our hosting servers will be restarted. This will cause a brief interruption of service (less than 5 minutes) for each site at some point during this period.

Read the rest of this entry »

Brief MySQL scheduled maintenance October 27, 2017 (completed)

Between 9:00 PM and 11:59 PM Pacific time on Friday, October 27 2017, the MySQL database software on each of our servers will be upgraded from version 5.6.37 to 5.6.38. This will cause an approximately 60 second interruption of service on each MySQL-using customer website at some point during this period.

This upgrade is necessary for security reasons and to fix bugs in MySQL. We apologize for the inconvenience this causes.

Update 9:55 PM Pacific time: The maintenance was completed as planned and all services are running normally.

Brief MySQL scheduled maintenance September 8, 2017 (completed)

Between 9:00 PM and 11:59 PM Pacific time on Friday, September 8, 2017, the MySQL database software on each of our servers will be upgraded from version 5.6.36 to 5.6.37. This will cause an approximately 60 second interruption of service on each MySQL-using customer website at some point during this period.

This upgrade is necessary for security reasons and to fix bugs in MySQL. We apologize for the inconvenience this causes.

Update 10:21 PM Pacific time: The maintenance was completed as planned and all services are running normally.

Brief scheduled maintenance June 29, 2017 (completed)

Between 11:00 PM and 11:59 PM Pacific time on Thursday, June 29, 2017, each of our hosting servers will be restarted. This will cause a brief interruption of service (less than 5 minutes) for each site at some point during this period.

Read the rest of this entry »