Category Archives: Web Hosting

Letsencrypt, Free, Automated SSL certificates for life!

Programming, Systems Administration, Web Hosting
Letsencrypt automated SSL
Letsencrypt automated SSL – No click SSL!

We’re pleased to announce that we’ve fully automated our LetsEncrypt SSL installation process for all of our Managed VPS customers.

What does this mean?  This means that every Brownrice Managed VPS customer receives UNLIMITED FREE SSL certificates for every web site on any Managed Brownrice VPS.  Forever!

And the other great thing about this is that our SSL process is 100% seamless and 100% automated.  How seamless and automated you ask?

  1. Sign up for a Brownrice Managed SmartVPS ($9.95 w/ 1GB RAM & 40GB disk)
  2. Login to responsive, fantastic dashboard and set up new web site by clicking a few buttons.
  3. Point DNS to your new web site (i.e. make it live!) by clicking a couple more buttons.
  4. Wait 1 hour.
  5. Done. (SSL certificate issued and site secured without email verification.)

Repeat above steps 2 through 3 for as many sites and subdomains as you like.  Zero additional charges.

No hands SSL!

By the way this SSL certificate will be renewed every three months, automatically, without you touching a thing.

Want to start?  Sign up here and we’ll have your VPS up and running in minutes!

(More questions?  See our SSL FAQ.)

 

 

Announcing VPS Auto-Tune!

Datacenters, Programming, Systems Administration, Web Hosting
Brownrice Internet
Brownrice Internet VPSs

After a full year in development and testing Brownrice Internet has just released our revolutionary VPS Auto-Tune Service.

What is VPS Auto-Tune and why do you need it?

One of the secrets of hosting companies and systems administrators world-wide is that web and database servers that are left in their default configurations run horribly slow.

Continue reading Announcing VPS Auto-Tune!

Shared Hosting Vs VPS Hosting?

Systems Administration, Web Hosting

While Shared hosting ($8.95 per month) can be great, affordable solution for starting web site or blog, a VPS (Virtual Private Server: $19.95 per month) offers significant advantages for web site owners who place a premium on speed, security and scalability.

A few advantages of VPS’s over Shared Hosting account:

  • Guaranteed Speeds.  A Shared Hosting account must share the CPU’s and Memory (RAM) of its server with up to 150 other web sites (other hosting companies will pack up to 300 sites on a shared server.)   This is not the case with a VPS.  A VPS receives guaranteed CPU and RAM so other web sites will not slow it down.
  • Enhanced Security.  On a shared server we have to loosen our security measures since we are protecting up to 150 other web sites. With a VPS we are able to tighten security measures because we are only protecting one web site.  Its the difference between protecting one person verse protecting a group of people.  Its a whole lot harder to protect the group.
  • Instant Scalability.  With a VPS we can immediately increase the amount of visitors that it can handle to accommodate a sudden an increase in traffic.  For example, when your site is linked from a popular site like CNN.com.   Instant scalability is not possible with Shared Hosting as the site would actually taken offline in the event of a large spike in traffic so that it doesn’t slow down the other 150 sites on the same server.
  • Unlimited site hosting.  With a Shared Hosting account you can host one web site.  With a VPS account you can host as many as you like without increasing your monthly cost.
  • More tools for your developer.  Since a VPS is your own server your developer has access to everything on the server, which makes them happier and more productive.  On Shared Hosting, since its a shared server, this is not possible.

 

Hope this helps!

~ Oban

Target Hack Phishing email scores a 9.00!

Systems Administration, Web Development, Web Hosting

I’m super impressed with this Phishing email.  Its the best I’ve seen and if it weren’t for just a couple of easy-to-fix mistakes it would have scored a perfect 10.00!

Here’s the back story:  Target was hacked early last month.  That was big news that most people are aware of.  My wife and I were even sent new credit cards as a result.  But what you might not have heard of was the impressive level of phishing emails that are being sent out now targeting (heh, get it?) these customers.  So read along and I’ll dissect this particularly good one using our Olympic, Sochi-style scoring.  First, a screen shot of the original email:

 

Continue reading Target Hack Phishing email scores a 9.00!

This blog has seven days to get hacked

Programming, Systems Administration, Web Hosting

I’m speaking at Wordcamp Albuquerque 2013 a week from today.  My session is called Hacked!  How they hack it and how you clean it where I’ll dissect a real-life WordPress hack and show everyone how I suavely and bravely root out the hacker, sleuthily determine how he got into the site, and then kick him out and slam the door behind him.

However, there’s a problem.  I figured there would certainly be a WordPress hack on one of our hosted customer sites between when I signed up for the talk a few months ago and now.  I’ve waited and waited, and shockingly, all of our customers have listened to us and have been keeping up with their WordPress updates.   So we haven’t had a single WordPress hack to clean up.

So I need this blog to get hacked.  The sooner the better.

Oh, and to speed this thing along and I’ve reverted this blog’s WordPress code back to WordPress 3.0.  This blog currently has more vulnerabilities than a president asking congress to approve a bombing on a mideast country.

I’ll update this blog and our twitter account with daily updates on my situation.  Stay tuned.   This could get interesting.  Or embarrassing.

How many visits can a virtual server handle?

Datacenters, Systems Administration, Web Hosting

 

There are a lot of variables that go into how many hits and visits a virtual server can handle; from how efficient the site’s code is, to how beefy the host server is, to how over-sold the host server is (among other things.)   Regardless, I still thought you might be interested in seeing some real numbers from a popular web site that we host on a virtual server:

Month Total Visitors Visitors per Day Unique Visitors Unique Ratio Pages Hits BW
April 2013 285,598 9,519.9 183,722 64% 3,521,151 31,729,312 1,149.2G

 

In April, on a 4GB RAM virtual server, this site served pages to 285,000 visitors and had 31.7 million hits.

Breaking this down further we might assume that a similarly coded web application could handle about 70,000 visitors on a 1GB RAM ($39.95 per month) virtual server and about 35,000 visitors on a 512MB RAM ($19.95 per month) Brownrice virtual server.

 

What security tools do we use?

Datacenters, Systems Administration, Web Hosting
Clamav
Clamav

 

What tools does Brownrice use to alert us to a compromised hosted web site or server?  Let me show you:

OSSECA great open source tool that constantly monitors server log files and file systems in real-time. OSSEC’s log monitoring helps with an important part of PCI Compliance, it can be configured to automatically block bad guys from doing bad things, and its a fantastic tool for post-mortem hack analysis.  We have OSSEC installed on all of our hosting servers, virtual servers, and managed customer servers.  It reports back to a mother-ship server so we can keep an eye on things from a central location.

Continue reading What security tools do we use?

Remember rootkits?

Systems Administration, Web Hosting

Five years ago we were constantly fighting off hackers who would hack an insecure web site then try and install a rootkit so that they could own the server. Now? Nothing. They don’t even try and attack the server. We have all sorts of rootkit detection software on our servers (rkhunter, OSSEC, etc.) and I’m starting to wonder why we bother when a hacker has everything they need when they’ve compromise a web site.