TCH-Blog

The following is a write up on popular FTP clients built for the Mac and how to set them up with your TCH account. FTP, or File Transfer Protocol, allows you to view, download and upload files to your server / website. It also allows you to edit your server’s file structure and system remotely. In order to utilize this protocol you’ll need a FTP Client. We tested a wide range of FTP Clients available and decided to review the select few that we found to be the best. First, Cyberduck. Version: 4.2.1 Developer: Swiss Made Software Price: Free / $23.99 (donation through Mac App Store) Platforms: Mac OSX and Windows. Download: Cyberduck 4.2.1 Cyberduck has long been the preferred by most Apple users. It is built for fast and easy use with a fast connection making bookmarks list and a clean layout. Though this application was made to be a File Transfer Protocol Client, some features you can enjoy with this app are, WebDAV (Web-based Distributed Authoring and Versioning), Amazon S3, Windows Azure, Rackspace Cloud Files and even Google Drive. While this application is free, you can remove the pop-up ads by either buying it through the Mac App Store or donating through their site. SETUP: 1. Open Cyberduck and click on “Open Connection.” 2. When prompted, enter your information (Host, Username, and Password) into the designated boxes. For Host you should enter ftp.****** (replacing ****** with whatever your real domain name is) and then enter your created Username and Password. When completed, Cyberduck should look like this. 3. If asked to change to FTP-SSL over FTP, click either change or continue depending on whether your server supports FTP-SSL. Most servers, especially web-severs, do. I recommend choosing “change” because it is a more secure connection protocol. 4. There you go! You should now be able to view your server’s files. Second, FileZilla Version: 3.6.0.2 Developer: The FileZilla Project Price: Free Platforms: Mac OSX, Windows, and Linux. Download: FileZilla 3.6.0.2 FileZilla is a reliable but seemingly barebones competitor. Unlike Cyberduck, you can’t enjoy the same compatibility features of WebDAV (Web-based Distributed Authoring and Versioning), Amazon S3, Windows Azure, Rackspace Cloud Files and Google Drive. While it always does its job as an FTP Client well, FileZilla seems to lack some tidiness in it’s user interface. However, some may prefer this user interface to others because it has a very “all out there” look, meaning that basically everything (with a few exceptions) you need to see or use to complete your transfer or edit, is right in the main window of FileZilla’s interface. This can be a pro or a con depending on the user, some may describe its interface as busy, while others describe it as space saving and efficient. Another great aspect of FileZilla is that its cross-platform, so there is no need to learn how to use FTP clients across multiple operating systems. At the end of the day FileZilla does a great job of being a FTP client. SETUP: 1. Open FileZilla and enter your information (Host, Username, and Password) into the designated boxes. For Host enter ftp.****** (replacing ****** with whatever your real domain name is) then enter your Username and Password. Enter 22 under “Port:” for FTP-SSL (recommended) and 21 for standard FTP. When completed, FileZilla should look like this. 2. Once you’ve completed step 1, click the “Quickconnect” button. There you go! You should now be able to view and edit your server’s file system. Third, Secure FTP Version: 2.6 Developer: Glub Tech Price: Free Platforms: Mac OSX, Windows, and Linux. Download: Secure FTP 2.6 “Secure FTP is a Java-based FTPS client application that allows for a 256-bit AES encrypted secure connection to be made to a server that supports FTP over SSL (or FTPS).” As boasted on Glub Tech’s website, Secure FTP takes security as its main priority while not having sacrificed any features. However, just like FileZilla, it does not offer the same compatibility features as Cyberduck. Furthermore, Secure FTP has a very organized and clean interface that is very comparable to Cyberduck’s interface. Just like FileZilla we found Secure FTP to be very reliable and fast. SETUP: 1. Click the Green and White + button. 2. When prompted, enter your information (Host, Username, and Password) into the designated boxes. For Host you should enter ftp.****** (replacing ****** with whatever your real domain name is) and then enter your created Username and Password. When completed, Secure FTP should look like this. 3. Now, all you have to do is click connect and there you go! You should now be able to view and edit your server’s file system. The Bottom Line: All three of these Applications are very good at what they do. Therefore, the “winner” may not be clear cut to you, so I recommend picking one based on your needs and likes. However, my recommendation is FileZilla for reliability and simplicity of its interface, because whenever I use FileZilla I see what I need to use right in front of me, and that cuts down on time significantly. If you would like to comment or view the full blog post, please visit: http://blog.totalchoicehosting.com/2013/02/macosxftpclient/

Hello TCH Family, We are very excited to announce that we are re-introducing TotalChoice Hosting family contests! Each contest will be free to enter and the winner will receive an aforementioned prize. Contests, prizes and rules will vary from by contest and winners will be selected either by random or specifically, depending on the contest. To kick off our first re-born contest with style, we have decided to keep it simple and give away a new, exciting prize. The prize is a brand new Nexus 7 Tablet running the Android Jelly Bean operating system! Prize: Nexus 7 Android Tablet! With the stunning 7-inch display and up to 10 hours of battery life, the Nexus 7 is a perfect tool to maintain your TCH hosted website and e-mail from anywhere. The Nexus 7 is built by ASUS and comes with a NVIDIA® Tegra® 3 quad-core processor so everything is faster, pages load quickly, gameplay is smooth and running multiple apps is seamless and effortless. Specs: 16 GB Internal Storage 1 GB RAM NVIDIA® Tegra® 3 quad-core processor 7” 1280×800 (216ppi) – HD IPS Wi-Fi 802.11 b/g/n Android 4.2 (Jelly Bean) 4,325 mAh battery Bluetooth NFC (Android Beam) 1.2MP front-facing camera Accelerometer GPS Gyroscope Microphone Magnetometer Rules / How To Enter: How about we give you one of these? Entering is simple, all you need to do is ‘Like’ TotalChoice Hosting on Facebook. You may also ‘Follow’ TotalChoice Hosting on Twitter to double your chances. The contest is open to everyone – clients and non-clients. Simply click the links below. The winner will be chosen at the end of February. Like us on Facebook One winner will be chosen completely at random and will be contacted by me (Mike Ford). You will have 7 days to respond once contacted. If we don’t hear back from you within 7 days, a new winner will be selected. We ask that the winner share their experience on Facebook and our forum after being contacted. We will ship the tablet anywhere in the continental United States, free of charge. If you live outside of the continental United States you will have to cover the cost of shipping. Spread The Word: Make sure to spread the word to all of your friends and family members! Use the links below to share this contest! Remember, everyone is eligible! Best of luck, get ready for your new tablet! Thank you for your time and remember, choice does matter! You can see the full post here.

Hello TCH Family, There are a lot of new and exciting things happening here at TotalChoice Hosting. We are constantly looking to improve our products and services and your satisfaction is our main concern. Here’s what’s new and exciting at TCH! We have recently invested a great deal of resources into upgrading the hardware at our data center. Our recent upgrades include state of the art equipment that will improve stability and speeds. We are excited to introduce you to the latest member of the TotalChoice Hosting staff, Mike Ford. Mike has joined the team as our Customer Service Manager and is here to ensure you with the highest quality customer service. If there are ever any issues or concerns with the service you are receiving, please feel free to contact him at: Phone: 1-800-930-0485 ext: 212 Email: mike[at]totalchoicehosting.com AIM: TCH Mike CSM Yahoo: TCH Mike CSM Gtalk: TCHMikeCSM Remember a few years ago when we were giving away free stuff? It’s time to start doing that again. We are re-introducing TCH’s Family Contests where we will be holding entertaining contests which will result in free prizes. You can see more info here. In our continued effort to improve our service and communication with you, our clients, we are introducing our monthly newsletter. Every month we will be sending a newsletter filled with TCH related news, information regarding the current months family contest and more. We must be in a giving mood because we are also very excited to kick off our monthly Social Coupons! Each month we will be announcing coupons to help clients and non-clients save money on our many services. All you have to do is stay current with TotalChoice Hosting on Facebook and Twitter. Use the bottoms below to follow us on Facebook and Twitter and be sure to check them regularly. https://www.facebook.com/TotalChoice @totalchoicehost You can see the full post here.

Many of our clients use an iOS device as their primary mobile phone or Tablet. So to make it easier for you, our valued clients, we have created a guide on how to add your website’s unique e-mailbox to your iPhone, iPad or iTouch’s mail application! Here you go! Steps: 1. First, press the Settings application, it should be a grey/silver color that has gears as an image/icon. . 2. Once you have the application open, scroll down until you see “Mail, Contacts, Calendars.” 3. Press the “Mail, Contacts, Calendars” tab to bring you to the next screen. 4. Now, press “Add Account.” When you are prompted to pick the type of account, choose the “Other” tab on the bottom of the list. . 5. Press “Add Mail Account”, (it should be the first option on the screen). 6. Now enter your name, your email account you’d like to receive mail from, your password, and a description such as “My Website Mail” to properly identify the account. 7.Enter your name, e-mail address, and description. Under “Incoming Mail Server”, next to “Host Name” enter: “mail.******“, substituting ****** with your actual domain name. If your domain name is thehostguru.com, enter mail.thehostguru.com. Next to “User Name” enter your e-mail address, and next to “Password” enter your password. 8. Under the “Outgoing Mail Server” section, please enter the same info as you did in the previous step under “Incoming Mail Server.” 9. When you have entered all information, click the “Next” button on the top right. A message will pop up that reads “Cannot Verify Server Identity.” Simply push Continue. (you may have to push it again in a few seconds) And there you go! You should now, be able to view your mailbox from the stock iOS Mail Application! View the full article here

Hello TCH Family, Just a brief notice about continued infrastructure upgrades here at TCH: We will be upgrading our Intrusion Detection System (IDS) hardware on Friday 1/27/2012. This hardware is dedicated to behind the scenes work that reviews all inbound traffic to our entire server farm and helps us sanitize bad or unwanted traffic to our servers. As our network traffic increases, so has the requirements of the IDS system, this is why we are upgrading the hardware. We do not anticipate any network downtime during this upgradation to our IDS hardware. This is simply a notice of our continued improvements to the services we provide to our clients. In addition, on 1/27/2012 we will be performing upgrades to our private network switching hardware. This will be a multi-step process and will take us several maintenance windows to complete. If your servers are relying on our private network, you should receive an email from us with the maintenance window for your servers. In this process we will be replacing each distribution switch with new units. These new switches will feature the same 1Gbps server to switch speed but will feature a 10Gbps switch to switch speed. We will also be upgrading our backup server’s network interfaces to 10gbps. There are many more improvements coming, but the above are the issues we have on the planning board for this week. Today is a great day to be a TCH GURU! View the full article

Hello TCH Family, Over the past 6 months TCH has experienced some really amazing growth. In the last two months alone we have shattered month to month sales records! November 2011 marked our best all time month in the company’s history. We ended 2011 with our best December in over ten years. Even more amazing is the fact that we just broke our best 15 day period for new sales records. Thousands of new TCH family members have joined us in the past few months and we are very proud to have them in our family. We owe this all to our clients and staff. I wanted to personally thank everyone that has made TCH such an amazing company. With this explosion in growth we are making some changes to our internal infrastructure. All of these changes are happening behind the scenes and should be totally transparent to our clients. This morning around 6am EST, we brought on a new cluster of servers to handle our support desk. We have never had the need for such dedicated hardware to handle our support system, however with all the growth we started to notice a decline in the performance of our help desk and decided to take action. This new boost in speed also translates into allowing our desk to handle a larger volume of clients help requests per day. Over the past few days we have also brought on new cluster of DNS servers to handle our new clients Domain Name Resolution. This allows us to not overload our existing DNS Servers and most importantly allows us to continue to grow and not affect the performance of our current hosted domains. We are also bringing on new servers at an amazing rate. Just this past week we added several more servers to our growing server farm. Unlike other small hosts, we actually own and operate all our own hardware. We have our own IP allocations and maintain our very own Data Center Presence. We do not rent servers from other providers and resell other providers servers. We are truly independent and rely on only ourselves to reboot your servers or upgrade your servers ram. If our tech team sees a server that needs more ram, we just take action and do not have to sit around and wait for our vendor to send a technician to work on our rented server. We have much more to announce and will be doing so right here in our family forums. Many of you have been asking for a new web site with improved services and we are very close to doing so. Please stay tuned for more announcements and in the meantime enjoy the improved infrastructure here at TCH. Thank you again for all your support. It’s a great day to be a TCH GURU! View the full article

Dear TCH Family, As many of you are aware, we started enforcing a new policy for password rotation. In theory this was a splendid idea from both a security and administrative view point. Over the past 24 hours we have had a wide range of customer comments regarding this new policy. These have ranged from this is the best new policy ever all the way to TotalChoice has gone to the dogs. The largest concern about this new policy came from our reseller client base. This is due to the fact that the new password change can not be effected from WHM. It can only be effected from cPanel logins. This is a flaw or bug that we did not realize was present in cPanel until our reseller clients started running into it. We are working with cPanel in an effort to correct this issue. As many of you are aware I take customer service very serious and I also do not beat around the bush with my clients. It appears that this policy has become more of a nuisance for clients and that is something I would never want to promote. It is with that in mind that I have chosen to revert this change and forgo this new policy. I would like to thank all the clients that have reached out in both support of and against this issue. As always thank you all for making TCH what it is today and most importantly…. Happy Hosting! View the full article

Dear TCH Family, TCH takes security very seriously and we are always looking at ways to improve the security for our internal infrastructure and for our client’s web presence. In an ongoing effort to provide our clients with the most secure environment possible we are enforcing the following new password rotation rules. Effective immediately, every shared and reseller hosting client upon their next login to cPanel will be prompted to change/update their user passwords. You will not be able to utilize your old password during this new password update. Once this is completed, users will then be prompted every 180 days to once again rotate their passwords. We would suggest you implement at a minimum, an 8 character long password with combinations of upper/lowercase, number and special characters. We believe this new policy will insure that the hosting environment provided to our clients will become more secure. This will also promote password security that will hopefully pass down to the way all users handle their passwords not only here at TCH but overall. As always we appreciate your business and look forward to providing our clients many more years of happy hosting! Thank you Bill Kish TotalChoice Hosting View the full article

The issues with our internal databases have been corrected and we are back online without any issues to report. View the full article

We are currently working on a MySQL issue that is effecting all of the TCH sql driven pages. The RAID array that powers our SQL pages has failed and we are in the process of restoring service. This does not effect any servers across the TCH network. This only effects the main totalchoicehosting.com pages. This issue cropped up at 2:38PM EST. We are working as quickly as possible to restore services in full. Update 3:56PM EST: All databases have been restored from backups. The website and back end services (billing, forums, helpdesk) are all back online. View the full article

As some of you know last week TCH was the victim of a ddos attack on two different days. We have learned quite a bit about the attacks and how to fight them in the future. I think our biggest lessons came in the way of customer support during any sort of outage. What I learned from this past attack is that customers start calling us about 10 minutes into the outage. As everyone knows, we simply have had no major outages at TCH in several years. The last network outage that lasted more than 15 minutes was at least 3 years ago. Enough of my rambling, everyone that hosts at TCH knows about our budget hosting with excellent up time and services. Even with the two outages of last week our network up time is still 99.982%. In fact, TotalChoice is ranked #1 by Hyperspin for hosts with more than 50 servers monitored. Number #1 uptime of all monitored hosting companies. This is quite a feat for a budget hosting company. I am really proud of TCH and its staff. Whilst our up time is excellent , we have learned something from our short periods of down time. We need to move our network status page and blog to another Data Center. Currently if the TCH Data Center goes off line, so do our status pages. This is going to change. We are in the process of preparing to do just that. I have a friend that owns and operates another data center on the West Coast. He was looking to do the same and wanted to host his status pages off network. So we have struck a deal. A server for server type of barter. We expect to roll out these changes in the next 48-72 hours. I will be sending out a mass email to our client base informing them of this after we have done a bit of testing on it to make sure everything is working as it should. Happy Hosting!  View the full article

I am not going to beat around the bush on this, the last couple of days have been a little hectic here a TCH while working to deal with a series of web application vulnerabilities that are being taken advantage of by attackers. The purpose of this post is to explain a bit about what is going on, how these attacks effect you and what we have done to prevent further abuse. The first thing we need to understand is what is being attacked; as the post subject implies, it is primarily Joomla being attacked as the software has had a series of 9 vulnerabilities released since the 1st of September of which a number of more in depth attacks have formed around. The intended purpose of most of these attacks is to taint web sites with injected javascript, that code takes advantage of a number of client side browser vulnerabilities that if not patched or stopped by an antivirus can cause further issues for web site visitors. Now, at a glance you might be thinking that if someone fails to patch web site software then it is there own problem, how does this affect me? That is where the dl() function comes into play, the dl() function is essentially a dynamic loader for php modules or 3rd party extensions. To simplify this a bit, the dl() function when enabled allows anyone to add extensible features onto php, generally these are all well to do features but if someone so desires they can create a dynamic loader module with malicious intent. The scenario we are looking at is that attackers have gained entry to vulnerable web sites, primarily through joomla then they upload a series of malicious scripts including a dynamic loadable module for php that once enabled through dl() has the ability to inject javascript code into pages. The code usually finds itself placed before the body tags and executes its payload on a visitors first visit to a site, a cookie is then set that expires every 2hours then the payload executes itself again on a new visit. This attack though had far reaching implications, only affected 4 servers on our network (denver, dantooine, alderaan, chewbacca) of which only about half the sites on the given servers or in some cases less were being tainted by the attack. As alarming as this situation is, we need to stress that no content was actually modified on sites except the joomla sites themselves that were compromised. The way we have come to deal with this situation is a layered approach, we have first and foremost made increased efforts to identify compromised sites on our servers and suspend/remove them. The next step was to cut off the enabling function of the attack, which is the dl() function. This function was actually something we used to disable on servers for its malicious implications but over time that procedure was phased out in the interest of allowing users to install custom dynamic loadable modules from their home directories such as ioncube. However, now that ioncube is standard server-wide on all servers, there is little in the way of other commonly installed packages that depend on dl(), php.net has even went as far as to declare dl() deprecated as of php 5.3. With dl() disabled on servers, the effects were immediate and all reports of tainted sites stopped, now when I say stopped I do not just mean that that lightly. We literally sat around all evening bashing the f5 key on our keyboards trying to get the javacode injections to reappear on sites, between myself, Bill and Dick we must have done over 6 hours of combined keyboard kungfu in this effort. It was with great relief that we were not seeing anymore reports or issues ourselves first hand but it was still not quite enough to actually be confident that we had done enough. We are continuing to be extra vigilant with compromise assessment on the servers to prevent any further malicious content from being injected into sites, in addition to this we have on some servers started to use suPHP as a basis for new php security standards. Essentially, by using suPHP we enforce php code to run as the user who executed it instead of as the web server but it goes beyond that by enforcing strict permissions on content and not allowing anything to run above mode 755 (such as world writable data) and also making sure that executed content is owned by the user. This might seem problematic however since the code is now executing as the user, there is no longer a need for data to be set to mode 777 (world writable) or its ownership set as the web server user, which reduces support issues and vastly increases security. The suPHP changes are something we have only rolled out to about 6 servers so far but the support issues it has generated are minimal for the advantages it provides, in the future we will be looking to roll this change out to more servers on a slow but steady basis. That is where we are at, if you have any questions or concerns regarding this blog or the topics discussed please feel free to comment or head to the TCH forums for further dialog. View the full article

We have the last 3 days been tracking a local root vulnerability in the Linux kernel, the core element of all Linux operating systems. This vulnerability is unprecedented in scope, effecting Linux versions going as far back as 8 years which prompted extra consideration in how we handle it. Here at TCH we operate a network that is dominated by Linux, to say we took this matter very seriously would be an understatement. It was decided after evaluating the threat this vulnerability poses to our network, dedicated servers, and shared/reseller clients, that waiting any longer on an upstream update was not reasonable. Originally there was an estimate of Saturday 1900GMT for upstream updates but this fell through prompting us to take action. In addition to a lack of a reliable upstream update for this issue is the fact that this vulnerability is being actively exploited in the wild with publicly available attack code on many security and underground web sites. At this moment, we are rolling out to all Linux servers on our network an updated kernel version that will close this vulnerability while maintaining version compatibility with future upstream software updates. This effort in retaining version support will allow our dedicated clients in addition to our own support team to resume normal update practices with tools such as ‘yum’ or ‘apt-get’ and not have to worry about conflicting versions against our in-house kernel update. Please do not be alarmed if you experience an outage temporarily on dedicated, shared or reseller servers, we thank everyone for understanding the urgency of this matter and if you have any questions or comments please feel free to submit a help desk ticket at https://www.tchhelp.com. UPDATE:Aug 18, 2009 We will be conducting reboots again this evening to push out a revised version of last nights kernel that corrects issues with r1backup agent, local firewall services and the network driver on certain servers. In addition, this new kernel revision is binary compatible with CentOS/RHEL 4 kernels being that it was built off the same kernel source tree as the standard kernels. View the full article

The payment portal Authorize.net, which is used by TotalChoice Hosting and many of our clients, has been offline for hours, meaning that its merchants have been unable to process credit card payments through their web sites. Your account will not be affected due to this incident and we will be extending our payment grace period to insure your sites stay online. Update: Authorize.net is now back online. You will be able to make payments. We will update you if this or any other changes arise. View the full article

At 3:34 PM EST, we begin to see intermittent packet loss to some of our network due to an inbound Denial of Service attack. We then experienced a core router crash while working to mitigate the attack. This resulted in a wide spread network outage until 3:46 PM EST, when we were able to switch over to our redundant core router. We continued to experience intermittent outages until 4:03 PM EST, at which time all services were returned to normal. We are sorry for any inconvenience this causes you. View the full article

April 24, 2009 4:05 PM TotalChoice Hosting Total Choice is currently experiencing a wide spread network outage. We have networking engineering personnel on site in investigating this issue. At this time we do not have a estimated time for when normal network conditions will return. We will keep this site updated as this unplanned outage moves along. We are very sorry for this issue and are working to correct the networking issues as quickly as possible. Thank you for your understanding during this outage. TotalChoice Hosting April 24, 2009 4:24 PM All services have now been returned to normal. We had a core router crash due to a failed supervisor card, however it did not switch over smoothly. The router was brought back online, switched to the backup supervisor card, and then a replacement card was installed. We apologize for the inconvenience and thank you for your patience. View the full article