Monthly Archives: January 2013

This is how many services we host…

Last week, a collegue and I attended LARV (a career day for students at Luleå university in Sweden) and met a lot of curious students. It was a day with many rewarding conversations with the students. Who knows, we might … Continue reading

Posted in Careers, Events | Tagged | Comments Off on This is how many services we host…

UPnP Vulnerability

On Tuesday, computer security firm Rapid 7 released information that they found approximately 23 million products connected to the Internet that are susceptible to being completely taken over by anyone with bad willed intent, and another 40 million can be … Continue reading

Posted in IT security, Trends | Tagged , , | Comments Off on UPnP Vulnerability

High risk Ruby on Rails vulnerability

Most users tend to run Ruby on Rails 3.2 these days, but some still run Rails 3.0 or 2.3. Those who do can not update their application to run Rails 3.2 and need to run Rails 3.0 or 2.3 are … Continue reading

Posted in IT security | Tagged , , | Comments Off on High risk Ruby on Rails vulnerability

High Risk WordPress vulnerability

WordPress pushed out version 3.5.1 of its open source blogging platform yesterday, fixing 37 bugs including several cross-site scripting (XSS) errors and a vulnerability that could have allowed an attacker to expose information and compromise an unpatched site. Until yesterday, … Continue reading

Posted in IT security | Tagged , , | Comments Off on High Risk WordPress vulnerability

Basic inventory of HyperV virtual machines using PowerShell

Here at Basefarm we operate at a large scale with thousands of servers running for our customers. Quite often a customers asks for a list of machines with various properties for each machine. Most of the time the customer want … Continue reading

Posted in Data center | Tagged , , | 4 Comments

LinkedIn Phishing mails

There’s been a couple of reports this week about a mail arriving that looks like it’s from LinkedIn. It’s quite a good fake; unless you mouse-over the links inside it and look at where they go before clicking, you might … Continue reading

Posted in IT security | Tagged , , | Comments Off on LinkedIn Phishing mails

Sweden’s best sites from a hosting perspective

Tonight, the winners in the Swedish web competition Topp100, arranged by the magazine Internetworld, will be designated and here is the list of all nominated sites in all categories. Eight of our customers have been nominated in the competition and … Continue reading

Posted in Events, Our weekday | Tagged , | Comments Off on Sweden’s best sites from a hosting perspective

High Risk Drupal Vulnerability

New vulnerabilities have been disclosed for Drupal versions lower than 6.28 and 7.19. It is strongly advised to update your installations if you have any, as there is (amongst other things) the possibility of being the victim of XSS-attacks if … Continue reading

Posted in IT security | Tagged , , | Comments Off on High Risk Drupal Vulnerability

Ruby on Rails Vulnerability

On January 8th, Aaron Patterson announced CVE-2013-0156, multiple vulnerabilities in parameter parsing in Action Pack allowing attackers to: Bypass Authentication systems Inject Arbitrary SQL Perform a Denial of Service (DoS) Execute arbitrary code That means that anyone running Ruby on … Continue reading

Posted in IT security | Tagged , , | Comments Off on Ruby on Rails Vulnerability

High Risk Java Vulnerability

A new year has arrived, as has a new Java 0-day vulnerability. The vulnerability is present in all Java version up to version 7 update 10. There is currently no patch available for this, and it has already been integrated … Continue reading

Posted in IT security | Tagged , , | Comments Off on High Risk Java Vulnerability