Kernel Upgrades

A new kernel vunlerability was discovered in kernels below 2.4.25 and 2.6.3. All virtual hosting servers are being upgraded to 2.4.26-grsec-tfadmin currently. For more information please see
http://isec.pl/vulnerabilities/isec-0015-msfilter.txt


Dedicated/colo machines please contact support to be upgraded.

Server Upgrade: Vision (vs117 NFS)

The Vision (vs117 NFS) server has been upgraded from a Dual AMD MP 1700 to a Dual Xeon 2.4 with hyperthreading. The operating system has also been upgraded from RedHat Linux 7.3 to Enterprise Linux 3.0. These upgrades will improve the stability on this server.

Outage - 3/27/2005

On 3/27/2005 at approximately 10:30am we have notice sever packet loss and found out that we were a target of quite large Distributed Denial of Service Attack. We have been able pin-point the destination of the attack within minutes, however the amount of traffic sent towards our network caused sever outages throughout Allegiance Internet backbone.

After finally reaching high level engineers at Allegiance at approximately 12:20pm the attack has been block and our and Allegiance network are fully operational now.

We apologize for the inconvenience and are working with Allegiance to prevent and/or minimize effects of such attacks in the future.

Apache 1.3.29 Released

Fixes security issue CAN-2003-0542

Please contact support if you are unsure how to upgrade your Apache software.

OpenSSH Exploit

http://www.securityfocus.com/archive/1/337662/2003-09-13/2003-09-19/0 [securityfocus.com]

An OpenSSH exploit has been found where a remote user can potentially gain root access. Fixes for RedHat servers are available and have already been applied if we have access to your server. To find out for sure run rpm -q openssh. If the version is not openssh-3.6.1p2-tf1 run /admin/upscripts; /admin/latestssh

Fixes are available for 6.2, 7.2, 7.3, and 9. If your RH version is not supported contact support or run up2date. Patched SRPMS are available at http://mirror.unmeteredserver.biz/openssh-3.6.1p2-tf1.src.rpm. Other distros can get the latest source (3.7) from http://openssh.org/portable.html

[ DDOS Attack ]

At 9:50 PM EST a large Distributed Denial of Service attack began on a server in our network. Our head network engineer immediately came in and began working on blocking this attack. Incoming traffic was severely slowed during the attack. Working with our Upstream Providers we were able to block the attack by null routing the ip address which was being attacked. The network was back to normal at 10:45 PM EST. We are currently still investigating this situation.

Important Network Move Information

On Friday June 13th there was an outage on the Verizon circuit. Verizon claims the fail over circuit did not take over when the main
circuit failed. A week later we have learned the situation has still not been resolved and there are still lingering network issues.


As an owner and person that is responsible for all the businesses located on this premises, I can not take a risk to allow
another major downtime while we wait for the issue to be fixed. I have spoken to several people and found out Verizon employees are
planning on going on strike soon due to lack of contract.

I have made arrangements to move the entire operation to a near by
carrier hotel, this will eliminate the loop and any point to point failure. The location is 15 minutes from our current location. This
move will improve our network by eliminating the Verizon loop as a point of failure, improve our network by increasing the amount of
available bandwidth, and create a stable foundation for future growth and stability.

This move will take place on Friday June
20th between 12 and 1am EST and are taking all the steps necessary to insure a smooth transition.