Category Archives: Company Blog

Raleigh, NC Web Hosting Now Available!

 

We’re pleased to announce the latest addition to our web hosting locations: Raleigh, North Carolina. This new location is in addition to our current services in Lenoir, North Carolina which will make 2 locations for service in the state of North Carolina.

We have expanded our shared & reseller hosting to the Raleigh area as of March 2014. Soon to follow will be Virtual Server (VPS) & Dedicated Server solutions.

Shared Hosting (USA): http://www.veerotech.net/shared-web-hosting

Reseller Hosting (USA): http://www.veerotech.net/resellers

 

 

ClientExec – Content Disclosure Vulnerability

Our friends at Rack911 & HostingSecList have released the following advisory for ClientExec.

ClientExec is a comprehensive and flexible web hosting billing solution that will help you manage and expand your existing base of hosting clients. ClientExec was conceived and built with small to mid-sized hosting companies in mind. ClientExec was built to enable business owners to effectively manage their hosting clients and web hosting billing using one convenient and powerful platform.
Vulnerability Description:

A malicious user can obtain the product details (name / domain) belonging to any other user when they submit a ticket by carefully crafting the request.

Impact:

We have deemed this vulnerability to be rated as MEDIUM due to the fact that other users information can be obtained.
Vulnerable Version:

This vulnerability was tested against ClientExec v4.6.8.
Fixed Version:

This vulnerability was patched in ClientExec v4.6.9. We thank ClientExec for their commitment to security by providing prompt updates!

 

If you are a VeeroTech Systems reseller & currently utilize ClientExec, please log into the account management portal and download the latest release found under Support > Downloads.

Bandwidth restrictions removed. Resellers increased.

Effective immediately, we will begin removing all bandwidth restrictions from our shared web hosting accounts & packages. After careful review, we have found that the majority of our shared hosting accounts technically do not need hard set quotas.

Over the next few days, we will be updating our servers with the restriction removals for each hosting plan. This means inside of your cPanel account, you will see a “oo” slightly above the bandwidth usage statics on the left side of your cPanel.

We’d also like to let you know that allowing “unmetered” bandwidth does not mean “unlimited”. We have implemented a “fair use” policy, which can be found in our terms of service as well as below this article.

We also want you to know that this does not mean our quality of service will drop; our servers will continue to be monitored and maintained to continue performing as they are currently. Frequently, people get the terms “bandwidth, traffic, resources” mixed up & become confused. We’re simply removing the hard set quota to allow our customers to focus more on building their sites vs watching their bandwidth limits.

Our storage allocations will remain the same; we do not offer “unlimited” disk space or storage space. Each plan has a hard set quota for storage.

Reseller Plan Bandwidth Increase

In addition to removing the hard set quotas for shared web hosting, we have also increased our bandwidth allocations for resellers, both traditional “single-server” reseller hosting plans as well as our cloud hosting plans. Our website will be updated over the next few days with the new specifications for all shared & reseller hosting plans.

SpamExperts SPAM Filtering: Now Available!

We’re proud to announce the launch of SpamExperts Incoming SPAM filtering for VeeroTech Systems customers. We’re including 1 domain for free for each customer. Each additional domain is $3.99/month and we’re offering discounts for bulk domains – 5, 10, 15+ domains.

To claim your free account, please log into the Account Management portal in your dashboard as shown below. Under “Order New Services” you’ll see the option to add SPAM filtering. Once submitting the order, we’ll waive the fee for the 1st domain for you, then provide you with your dashboard login information.

 

Once your account has been created, you’ll need to update your MX records as described inside the informational email. If you’re unsure how to do this, just open a ticket and our support team will assist in making sure the correct MX records are entered. From there, you’ll then have access to the Spam Panel dashboard where you can adjust the SPAM threshold, view quarantined messages, whitelist/blacklist options & more!

Have questions? Open a service ticket at any time or email us at info@veerotech.net

Want SPAM filtering, but not yet a VeeroTech Systems customer? Sign up today and experience the VeeroTech difference! www.veerotech.net

WHMCS Cookie Exploit

From the WHMCS Blog: http://blog.whmcs.com/?t=81138

 

We are aware of a post that is circulating in which the author proposes an exploit via a cookie variable. However the proposed vulnerability is only possible if the attacker has gained access to a valid admin login session already through other means. For this reason, we feel that the viability of the vulnerability is not immediate nor is of a critical risk to installations.

We can confirm this vulnerability vector does exist as we have already identified and resolved it in our currently in progress internal security audit. We have in fact also prepared a refinement to the code that will negate the proposed attack vector and we anticipate publishing a new release of the software next week that will include this change along with others found during our internal audit.

In the meantime however, you may download the hook file below and upload it to the /includes/hooks/ folder of your WHMCS installation to negate any potential attacks based on this – although please note this will also prevent admin list ordering from working fully in certain places.

Cookie Override Hook – http://go.whmcs.com/262/cookie_override_hook

 

 

If you currently have WHMCS, we recommend that you follow the instructions for this patch. You’ll need to upload the file to your /includes/hooks folder as mentioned above & in the post made by WHMCS.