• Happy thanksgiving! Have lots of (tofu) turkey #

• Check your internet connection speed http://pingtest.net/index.php very cool! #

• RT @denverhunter Posted a handy FAQ/KB/Q&A on MailFoundry to answer some common questions we’re getting here @idologic: http://bit.ly/1ViIh0 #

• RT @denverhunter Cannot reach your Idologic reseller account? We’re not down, chances are you’re in the firewall http://bit.ly/39bCIn #

In lieu of the tired old press release, Idologic is rather pleased to announce the introduction of MailFoundry to its awesome lineup of services. MailFoundry is the name for a new anti-spam and anti-virus solution that will indeed keep your inbox clean. We noticed that many of our customers were running into various issues with the existing cPanel software. These issues resulted in missing emails and general frustration with spam-fighting capabilities. We decided to find a solution and we think we’ve found the best!

So what makes this tool any different from other (non-working) solutions? As you may know, cPanel and DirectAdmin both use a combination of ClamAV and SpamAssassin to fight spam. The latter name gives you a good idea as to how the software works, it kills. Traditional spam fighting literally seeks out and destroys spam. The software relies basically on guesswork and a complex scheme of scoring to determine the “spamminess” (pretend it’s really a word) of an email. The obvious issue is that artificial intelligence concepts like this remain rather simple-minded; that’s not to say the existing software is ineffective or poor by any stretch. However, the existing software is made to handle the average shared account as opposed to handling larger amounts or particularly critical email correspondence. It will miss spam, and it may land a few false positives.

This is where MailFoundry steps in. The software is actually hosted on hardware exclusively devoted to MailFoundry, so this literally takes some of the load off of your server and frees it up for things like processing website pages. Beyond that, though, MailFoundry uses a system called MessageIQTM which is basically a system of real people who monitor global email. These folks staff a datacenter 24×7x365 simply looking at email and finding spam. (Good times!) This makes this setup pretty darn effective against image spam and other devious spammer tricks. In fact, the software catches 99% of all spam and 100% of all viruses. Those are pretty good odds for you non-gamblers out there. The really nifty aspect of the software is that it updates roughly every 5 minutes. As you can imagine, these details make it quite effective. It further boasts a one-in-a-million shot of a false positive!

This new MailFoundry service does come at a cost. We’ve managed to make it a very small one, though. Right now, you can protect 10 mailboxes (per domain) for just $1/month! We’ve created a handy PDF reference sheet for the software that you’re welcome to peruse. If you’re interested in signing up, please contact our helpdesk, which is available 24/7 for help and information! Feel free to ask questions in our forum community as well.

• MailFoundry appliance is awesome; one of my oldest domains was receiving 80% spam, now I get none and no false positives either,I checked #

• RT @Just__J__ you just gotta love these guys @idologic – best web hosting company I know. Before them all was nightmares w/ other providers. #
• MailFoundry spam filtering now available! Contact sales for more information. http://bit.ly/3WiBwJ #

• RT @denverhunter If you are an @idologic customer that runs subversion(svn), you probably want to read this http://bit.ly/QYE4m #
• An engineer’s guide to bandwidth http://bit.ly/9HuNP #

It is not all too often that the word “exploit” will be found within quotations in an Information Technology setting. In a vulnerability recently discovered by Anton Isaykin and 2comrades, we have one of those rare situations. Enter Subversion (SVN), the popular revision control system that makes version management of any web project a dream. Well, quite sadly that dream can become a nightmare when the same tool that makes your life easy makes it easy for others to steal your work. When improperly managed, information about your website (notably the file structure and source code) can easily be gleaned from SVN by users with malicious intent.

To understand this security hole, let’s look at how SVN works. In a simplified nutshell, SVN stores information in a secret sub-directory in each existing directory. One file in particular, entries, contains information about the whole shebang – your file structure. Furthermore, it links to the file repository, contains developer logins, file-sizes, and dates for modification. Even worse, text-based directories contain actual text files. These files are not parsed by any code and are the source code to your project.

The good thing to know is that this problem is rather quickly addressed. Here at Idologic, we use the Apache web server, and it is a simple fix in the form of a few lines added to an .htaccess file in your website’s root directory (/home/username/public_html/):

<Directory ~ ".*\.svn">
Order allow,deny
Deny from all
Satisfy All
</Directory>

This code is pretty simple, and does what it looks like. It will deny anyone from accessing those .svn directories where the information is stored via port 80 (Apache).

The other fix is to simply use svn export, which many scrupulous employ developers already employ. This does not leave those .svn files in the web root.

So now you can see the reasoning behind the quotes. This security flaw is really a matter of bad practice more so than it is poor software code. Two effective fixes are readily and easily available. The good folks that found this flaw wrote up an interesting article about it, and you can check that out at Smashing Magazine – SVN Server Admin Issue – Fix it! It contains a little more detail and information on how the flaw was found as well as striking examples as to how easy it can be accessed. We will also pass along our thanks to our vigilant customer Shi for passing along the article!

• RT @ericsizemore Looking for hosting? I recommend @idologic http://bit.ly/dLPJ5 #
• RT @denverhunter The new forum looks is online at http://forums.idologic.com/ – fixed-width and expanded styles are both available. #
• Just committed to a new MailFoundry anti-spam appliance (http://bit.ly/TXYHm Good stuff! More info to follow… #