Bash Code Injection Vulnerability via Specially Crafted Environment Variables (CVE-2014-6271, CVE-2014-7169)

A serious bash vulnerability has surfaced for all Linux systems, please update your systems as soon as possible.

This vulnerability CVE-2014-6271 could allow for arbitrary code execution. Certain services and applications allow remote unauthenticated attackers to provide environment variables, allowing them to exploit this issue.

For detailed info please visit https://access.redhat.com/articles/1200223

Updates are available for all major distributions. Please feel free to contact us if you require assistance with patching your systems.

 

Credit Card Processing Back In Service

Our credit card module is now fully functional. Thank you for your patience and understanding in this matter.

Please contact us if you have any questions or concerns.

Issue with Credit Card Processing

We are currently experiencing an issue with our credit card processing module. We expect to have this issue rectified within the next day or two.

Until then, please do ignore any credit card declined messages. Any pending invoices should be processed by August 5th.

Please let us know if you have any questions or concerns. We’ll send another post out once everything is sorted out.

Thank you for your understanding in this matter!

– vanVPS Staff

Heartbleed and vanVPS

We have audited our systems for the Heartbleed vulnerability and we have concluded that have not run any of the affected OpenSSL versions, on any of our systems. This includes our client portal and remote console systems.

However, VPS clients should audit their own systems for the vulnerability.

The Heartbleed Bug is a serious vulnerability in the popular OpenSSL cryptographic software library. This weakness allows stealing the information protected, under normal conditions, by the SSL/TLS encryption used to secure the Internet. SSL/TLS provides communication security and privacy over the Internet for applications such as web, email, instant messaging (IM) and some virtual private networks (VPNs).

For more information see:

http://heartbleed.com/

Happy New Year from vanVPS

Wishing Everyone a Joyous and Safe 2014!

September 22nd 2013 – Non-Service Impacting Network Upgrade – Vancouver

Details:

Non Service Impacting Turning up backbone and iBGP mesh between Vancouver and
Seattle
Maintenance Window: September 22th from 01:00 to 02:00am PDT
Anticipated Impact: None. However, customers are advised to take precautions
due to the sensitive nature of the work being performed.

Please contact us if you have any questions or concerns.

Re-Stocked September 8th

We are currently out of VPS stock and are expecting hardware to be ready for Sept 8th! Never be oversold.

Thank you for your patience.

In the meantime, check out the 888 Motorsports Type-R:

P1000995

Windows 2012 Now Available

We are proud to announce that we now have Windows 2012 available as an OS choice!

Featuring high performance virtio disk and network drivers.

Happy New Year from vanVPS!

Wishing everyone a Fun and Safe New Year 2013!

vanVPS is Proud to Support the Oregon State University – Open Source Lab

 

vanVPS would not be possible without the projects and assistance which come from the OSUOSL. An annual donation schedule has been setup to help give back to the open source community.

Check out their site when you get a chance!

The Open Source Lab is a nonprofit organization working for the advancement of open source technologies. The lab provides hosting for more than 160 projects, including those of worldwide leaders like the Apache Software Foundation, the Linux Foundation and Drupal. Together, the OSL’s hosted sites deliver nearly 430 terabytes of information every month to people around the world. The OSL is the most active organization of its kind, offering world-class hosting services, professional software development and on-the-ground training for promising students interested in open source management and programming.