RSS Feed
News
Mar
10
UPDATED: Openhost support 0800 temporarily down
Posted by Tim Botherway on 10 March 2018 11:37 AM

Dear Customers,

We are facing an issue with our 0800 Openhost number not reaching through to the support extension(Ext 1) correctly.  While this is being remedied please feel free to reach us on the sales line (Ext 2) to reach our technical support, as this is working.

We thank you for your understanding and apologise for any inconvenience.

 

UPDATE: Now resolved as of 12:48 PM

 

 


Read more »



Jan
26
Customer OpenVPN connectivity
Posted by Will Fifield on 26 January 2018 11:33 AM

If you are experiencing issues connecting to our customer OpenVPN service, then please first try upgrading your client version and reconnecting:

https://customervpn.webhost.co.nz

If you continue to experience issues after upgrading your client, log a ticket with our support team and we will investigate further.

 


Read more »



Jan
24
UPDATED: Kernel Memory Issue - Spectre and Meltdown
Posted by Aliesha Ellington on 24 January 2018 11:04 AM

UPDATE 
24/01/18 11.03AM

Our engineers have successfully applied all the relevant operating system patches across our Microsoft hosts.
Linux servers are approximately 50% done, and completion will progress during the course of the week.
Unfortunately hardware firmware updates are constantly being released and revoked due to stability issues they are presenting.
As per recommendation from Intel, its advisable to not apply their current release. We subsequently took the decision to hold back on any firmware updates until the “fixes” have matured in stability.

 

 

UPDATE 
12/01/18 2.49PM

In response to the global Kernel Memory Leakage vulnerability issues that have circulated throughout the last week, we have worked closely with our hardware and operating system vendors to initiate remedial actions.  

As there is no single fix to cover all the variants of Meltdown and Spectre, we are completing our patching in a phased approach, as outlined below.

Virtualization Platform

  • Our virtualization platform has been patched up to the current vendor issued baseline.
  • There are 2 remaining specific patches which are pending. These depend on the availability of a vendor firmware patch, which we expect to be released in the coming days.

Infrastructure Hardware

  • The majority of our vendors have already released firmware patches, and patching is in progress.
  • For the few still outstanding we are actively tracking availability with the vendor.
  • For hardware that does not have applicable firmware patches, we are also patching the overlying Operating Systems for additional mitigation.  

Operating System Patches    

  • Microsoft have released patches for Windows Operating Systems. Over 50% of our systems are already patched, with the remaining systems being completed next week.
  • The majority of Linux distributions have already released their OS patches, but there are a few who we are still waiting on. We plan to address these patches in our next patch cycle at the beginning of February, so we can include all outstanding patches.
  • We are investigating the possibility of bringing the patch cycle forward, depending on the availability of the Linux patches.

Read more »



Jan
12
UPDATED: Kernel Memory Issue - Spectre and Meltdown
Posted by Aliesha Ellington on 12 January 2018 02:50 PM

UPDATE 
12/01/18 2.49PM

In response to the global Kernel Memory Leakage vulnerability issues that have circulated throughout the last week, we have worked closely with our hardware and operating system vendors to initiate remedial actions.  

As there is no single fix to cover all the variants of Meltdown and Spectre, we are completing our patching in a phased approach, as outlined below.

Virtualization Platform

  • Our virtualization platform has been patched up to the current vendor issued baseline.
  • There are 2 remaining specific patches which are pending. These depend on the availability of a vendor firmware patch, which we expect to be released in the coming days.

Infrastructure Hardware

  • The majority of our vendors have already released firmware patches, and patching is in progress.
  • For the few still outstanding we are actively tracking availability with the vendor.
  • For hardware that does not have applicable firmware patches, we are also patching the overlying Operating Systems for additional mitigation.  

Operating System Patches    

  • Microsoft have released patches for Windows Operating Systems. Over 50% of our systems are already patched, with the remaining systems being completed next week.
  • The majority of Linux distributions have already released their OS patches, but there are a few who we are still waiting on. We plan to address these patches in our next patch cycle at the beginning of February, so we can include all outstanding patches.
  • We are investigating the possibility of bringing the patch cycle forward, depending on the availability of the Linux patches.

Read more »



Jan
5
UPDATED: Kernel Memory Issue - Spectre and Meltdown
Posted by Christian Derrington on 05 January 2018 11:22 AM

UPDATE 
12/01/18 2.49PM

In response to the global Kernel Memory Leakage vulnerability issues that have circulated throughout the last week, we have worked closely with our hardware and operating system vendors to initiate remedial actions.  

As there is no single fix to cover all the variants of Meltdown and Spectre, we are completing our patching in a phased approach, as outlined below.

Virtualization Platform

  • Our virtualization platform has been patched up to the current vendor issued baseline.
  • There are 2 remaining specific patches which are pending. These depend on the availability of a vendor firmware patch, which we expect to be released in the coming days.

Infrastructure Hardware

  • The majority of our vendors have already released firmware patches, and patching is in progress.
  • For the few still outstanding we are actively tracking availability with the vendor.
  • For hardware that does not have applicable firmware patches, we are also patching the overlying Operating Systems for additional mitigation.  

Operating System Patches    

  • Microsoft have released patches for Windows Operating Systems. Over 50% of our systems are already patched, with the remaining systems being completed next week.
  • The majority of Linux distributions have already released their OS patches, but there are a few who we are still waiting on. We plan to address these patches in our next patch cycle at the beginning of February, so we can include all outstanding patches.
  • We are investigating the possibility of bringing the patch cycle forward, depending on the availability of the Linux patches.

UPDATE
08/01/18 2.28PM

Vendors have started to classify the risk impact on their products and are slowly releasing patches remediating some of the vulnerabilities.  We will be patching our virtualisation environment with the recommended baseline versions for protection.  Once the final fixes are made available, we will be deploying them accordingly.

If you see browser updates, we strongly recommend that you run these and as per usual, we strongly recommend checking, and applying operating system security updates as they become available.

Browser patch references from respective software houses are below:

Firefox statement release to media: https://www.mozilla.org/en-US/security/advisories/mfsa2018-01/

Google chrome statement release: https://www.chromium.org/Home/chromium-security/ssca

Opera browser statement release: https://blogs.opera.com/security/2018/01/opera-mitigates-critical-cpu-vulnerabilities/

Microsoft Edge / Internet Explorer: Patches were made available Wednesday last week, but automatic updates will run from next patch cycle.  (Wednesday 10th Jan NZ time).

==============================================================================================================

You may be aware of the global Kernel Memory Leakage issue relating to CPU vendors which was announced to the public yesterday by international media. 

We have outlined all you need to know below and are actively working with our hardware vendors and operating system vendors to assess impact and remedial action.

We will be updating you as further information becomes available via this Status Page however, please be assured that we are doing everything possible to remediate any potential impacts immediately. 

 

FAQ’s:

What is the issue?

On Jan 4th, it was announced in the media (theregister.co.uk) that numerous industry wide vulnerabilities in Intel, ARM and AMD (alleged) CPU's had been identified in relationship to Kernel Memory Leakage, known as Meltdown and Spectre. These vulnerabilities impact all compute running Windows, Linux, macOS (including server OS) and operating systems will require a patch to resolve the vulnerabilities.  These vulnerabilities allow for side channel exploits in rogue malicious applications to be able to read data stored on a computers system memory.  It is yet unknown the impact of the operating systems patch on operating system performance, however we will continue to monitor our platforms and make the necessary adjustments where needed. 

 

Am I affected by the vulnerability?

Yes. This is a global issue with CPU chip sets. The full extent of the impact is yet to be established and we will communicate further as more information is received. Right now, we are doing everything possible by working with our vendors to rectify and remedy the known vulnerabilities.

 

What could be leaked?

If your system is affected by a malicious application, an exploit could read the memory content of the host server. This may include passwords and sensitive data stored on the system.

An attacker able to execute code with user privileges, can gain access to data in memory space, thus bypassing KASLR: (kernel address space layout randomization). This is a defence mechanism used by various operating systems to place components of the kernel in randomized locations in virtual memory. 

 

Which systems are affected?

Desktop, Laptop, and Cloud computers may be affected by Meltdown/Spectre. More technically, every Intel (and potentially ARM and AMD) processor which implements out-of-order execution is potentially affected, which is effectively every processor since 1995 (except Intel Itanium and Intel Atom before 2013).

 

What is the difference between Meltdown and Spectre?

Meltdown breaks the mechanism that keeps applications from accessing arbitrary system memory. Consequently, applications can access system memory. Spectre tricks other applications into accessing arbitrary locations in their memory. Both attacks use side channels to obtain the information from the accessed memory location. For a more technical discussion we refer to the papers (Meltdown and Spectre).

  • Meltdownis Intel-only and takes advantage of a privilege escalation flaw allowing kernel memory access from user space, meaning any secret a computer is protecting (even in the kernel) is available to any user able to execute code on the system. 
  • Spectre applies to Intel, ARM, and AMD processors and works by tricking processors into executing instructions they should not have been able to, granting access to sensitive information in other applications’ memory space

 

Is there more technical information about Meltdown and Spectre?

Yes, there is an academic paper and a blog post about Meltdown, and an academic paper about Spectre. Furthermore, there is a Google Project Zero blog entry about both vulnerabilities.


Read more »



Dec
7
Web Drive Scheduled MySQL Server Maintenance - December
Posted by Matt Hair on 07 December 2017 10:40 PM

Dear Customers,

We are writing to advise that we have scheduled security patching that will require reboots on our MySQL servers during the following period.

Start Time: 07/12/2017 22:00 NZDT
End Time: 08/12/2017 02:00 NZDT

The following database servers will be affected

mysql3.webhost.co.nz
mysql55.webhost.co.nz

We thank you for your understanding while this working is completed and apologise for any inconvenience caused.


Read more »