20 Mar

Important: Password Security Policies

The password is the single most common security measure for digital systems, both online and off-line. The problem is that it is becoming increasingly less secure as hackers gain more and more powerful tools to simply crack them. A great deal of attention has gone towards the creation of secure passwords, what constitutes them, and whether or not it is feasible to retain a bunch of random alphanumerical strings inside your head all the time.

How are passwords cracked?

Most accounts that have their passwords compromised are not done so by another human being directly. Instead a computer will be tasked with guessing your password, so planning should go in to understanding and then deterring a computer from cracking your password. A hacker has a variety of malicious tactics available to them when trying to crack your password. These would be the two most common attacks you see on the Internet today:

  • Brute Force Attack: The attacker runs a script that tries again and again to randomly crack your password by sheer brute force. A long password with multiple character sets is the best protection. The higher your password entropy the less likely your password will be compromised by a brute force attack.
  • Dictionary Attack: The attacker utilizes dictionaries of known words or passwords and a script to try them in thousands of combinations until one matches up with the correct password. Don’t use common words, or keystrokes such as anyone’s name or phone number. Use a combination of multiple character sets to reduce the likelyhood of multiple entries pulled for a dictionary matching up successfully.

In recent time, We have been working on having more security on our cPanel servers and have applied few new security policies.

Password Strength – An password of any kind must set to 80% strong at least. System will not accept your password until it matches the security policy. To setup an strong password, you can use Lowercase/Uppercase letter, signs/symbols and number.

Password Age – Passwords must be changed every 90 days. Our system will automatically ask user to change their password every 90 days.

These two measures should allow you to secure your cPanel and related services. In the meantime, if you have any questions about account security, please contact us at TetraHost Support.

07 Mar

Announcement: Free Let’s Encrypt SSL With Hosting

We’re delighted to announce that Let’s Encrypt certificates are now available at TetraHost.

Let’s Encrypt is a free, automated and open certificate authority (CA) that offers free SSL certificates for the public’s benefit. Just like a paid for SSL certificate, a Let’s Encrypt certificate provides HTTPS protection for your website. You can find it by login into your cPanel and navigating to the Security section or simply by typing Let’s Encrypt in the search field.

What is Let’s Encrypt?

Let’s Encrypt is a free, automated and open certificate authority which provides domain-validated security certificates. Run by Internet Security Research Group (ISRG) Let’s Encrypts primary goal is to create a more secure and privacy-respecting web by making https more accessible and user friendly.

Here’s how Let’s Encrypt Certificates work:

  • – It’s free(Absolutely)
  • – Easy installation(Very)
  • – Enables https
  • – Domain validated
  • – Trusted by major browsers
  • – Renews automatically every 90 days

What is https?

Hypertext Transfer Protocol Secure (HTTPS), unlike its http counterpart is a communications protocol which provides a secure connection between a site and a visitor’s web browser, meaning any data shared is encrypted and safe from prying eyes.

Why HTTPS is important?

For security and Google.

First and foremost, https makes your website secure for your users. If your website does not use https, data sent between it and your users can potentially be intercepted, monitored or even altered by a 3rd party as it traverses the internet.

Security is a top priority for Google and back in August 2016 they announced https would to be used as a ranking single to encourage webmaster to use encryption. Continuing their mission for a safer web, from this month Google will highlight all sites which collect passwords and credit card data without https encryption as ‘Non-secure’ to visitors. You can learn more about this update here.

How to install Let’s Encrypt SSL?

With Let’s Encrypt you will be able to receive a certificate for your website without filling out any information details and by clicking a single button. Just choose the domain/subdomain you wish to cover with a certificate to and click on the Issue button next to it.

For more information about the Let’s Encrypt project and how it works, visit their official website.

If you are having any issue with SSL install or want us to install the certificates for you, please submit a ticket at support [at] tetrahostbd.com

31 Dec

TetraHost Wishes You a Happy New Year to You & Your Loved Ones!

It means a great deal to me to be able to wish all of our customers here at TetraHost a Happy New Year. I hope all of you find time to spend with your family and friends so that you can celebrate and enjoy the good company and cheer that comes along with New Year Eve.

We had an awesome 2016 and hoping to have even better 2017. I want to pause and thank all of those who have been a part of our success. I feel lucky to have clients like you as part of this company. TetraHost turned 9 this year, We might not be able to travel this far without your support. Thank you again 🙂

You can definitely expect better service from us and We promise to meet your expectation.

May your dreams continue to grow and prosper in 2017.

Happy New Year.

Ashraful Insan Siddiquee
Founder, CEO TetraHost

02 Feb

Notice: .NET Price Increase

We are sorry to be composing this post to advise you that as of Feb 1st 2016, VeriSign, the Registry Operator for the .NET domain, will be increasing its annual registration price. To match the price, TetraHost will be increasing it’s prices of .NET Domain Registrations, Renewals and Transfers effective February 1st, 2016.

The new price for the .NET domain is:

BDT: 900tk/year .NET (Registrations, Renewals, Transfers)
USD: 11$/year .NET (Registrations, Renewals, Transfers)

If you have any query, please contact or support desk:
http://www.tetrahostbd.com/contact

30 Jan

Important Announcement – Server Migration – hera.ihostman.com

We would like to inform you that we have moved our server with hostname hera.ihostman.com” to new hardware. The migration is already completed. We have also updated the nameservers IPs so that all active clients gets new server as soon as possible.

Below is the server hardware details:
====================================
Processor: 3.5ghz Hexa-Core E5-1650 V2 Ivy Bridge Xeon
Memory: 64gb Ddr3
Primary Hard Drive: 960gb SSD
Second Hard Drive: 2TB SATA HDD
Public Connection: 1GBPS
====================================

As you can see we have moved to Solid State Drive which will give faster data transfer for our client. This server is four times stronger then our previous server and we expect our clients will have more smooth service from this server.

New Server Shared IP: 104.156.55.181

Our clients are requested to use IP URL to access cPanel, Webmail and WHM to avoid any confusion until the DNS propagation is completed on your end. Please ping your domain and if it shows the new IP, it means the propagation has completed on your end. Clients are also requested not to update the MySQL Databases for next 48 hours, once the propagation is completed on your end, you can update else you might face data loss.

Login URLs:
===========
WHM: http://104.156.55.181:2086
cPanel: http://104.156.55.181:2082
Webmail: http://104.156.55.181:2095
===========

We have done our best to move every single data from our old server to new server so we expect all site will work fine and there will be no data loss. But if you face any problem with your site loading or see data loss please contact our support desk by sending email to following address: support@tetrahostbd.com or visit the following URL: http://www.tetrahostbd.com/contact

We appreciate your patience during this work and welcome any feedback.

 

Thank you,
Network Engineering, TetraHost

24 Jul

Price increase for .INFO and .ORG

Public Interest Registry is raising the prices on .ORG domains by 10% come August 1st 2015. We regret to inform you that prices on .INFO domains was also increased by Afilias Registry previously. This new pricing was/will hit all registrars, and will affect new registrations, transfers, and renewals.

Below is the revised pricing for both .ORG and .INFO domain:

.ORG – 900tk or 11$ per year (will be effective from 31st July, 2015 by Registry.)
.INFO – 900tk or 11$ per year (was effective from 30th April, 2015 by Registry.)

TetraHost is going to increase price for both the domain with immediate action. As we are having same domain pricing for single domain registration or reseller domain registration, increased pricing will affect both party.

On this occasion, we would like to inform you that, we might have to increase prices for other domain TLDs as well in future as .COM and .NET prices were already increased by the registry for few months now. We are still able to sell those domains in current price thus the price wasn’t increased even though registry price was increased.

If you have any query, confusion or want to know more, please submit a ticket/email to following emails:

sales@tetrahostbd.com (Open for all)
support@tetrahostbd.com (Only for registered customer of TetraHost)

Our Contact Details:
http://www.tetrahostbd.com/contact

You can also reach us by using Livechat service by visiting our website at http://www.tetrahostbd.com or give us a call at +88 019 13377417

08 Jul

Compose an HTML Message in Web Based Mail

cPanel Webmail provides instant access to your email without the use of a local email client. You will need to login to cPanel and use the tool “Email Accounts” to view the username for your specific email account. The password needed to login should be already noted. If not, the password will need to be reset.

Visit the following URLs to access cPanel Webmail directly:

http://www.domain.com/webmail
http://www.domain.com:2095
http://webmail.domain.com

We provide three different web based mail client which you can use to access mails. The Three mail clients are:

Squirrelmail
Horde
Roundcube

The mail client will allow you to incorporate typical word processor functionality such as Bold, Italic, bullet points, images, font color, etc. By default HTML Compose options isn’t enabled and to enable it, follow the steps below for your preferred web based mail client:

Inside Roundcube:
1) Click the plus icon to create a new message
2) Select HTML from the “Editor Type” dropdown(available below Subject Line)

Inside Horde:
1) Click “New Message”
2) Enable “HTML composition” by ticking the option from right side.

Unfortunately, cPanel do not have HTML Composing enabled for Squirrelmail thus it is not available. We request our client to use Roundcube or Horde to have the ability to use HTML compose.

13 Sep

Paid Domain Privacy Protection Service

According to ICANN regulation, whenever a domain is registered, accurate contact information must be submitted along with that registration. This information is then made publicly available through a WHOIS search. All domain owners are required to maintain accurate and valid personal or business contact information in their WHOIS data; however, you can keep this information private by enabling WHOIS Privacy Protection or Domain ID Protection.

The Privacy Protection service was Free with any domain registration service from TetraHost but now customer will have to pay for the Domain Privacy Protection service as our main domain service provider has applied this.

Domain Privacy Protection service will cost 5$ or 400Tk each domain and needed to be paid while registering the domain name. By paying for domain privacy protection, you will be able to have privacy protection for 1 year. Currently registered domain with privacy protection will not be affected and they will not have to pay. On their next renewal, they will have to pay the Domain Privacy Protection fee with renewal if they want to renew privacy protection service.

If you have any questions or if you require further assistance, feel free to contact us via phone, live chat or support ticket. We will be happy to assist you!

21 Jul

Using a Custom PHP.ini File and Make PHP Changes

The php.ini file is the default configuration file for running applications that require PHP. It is used to control variables such as upload file’s size, timeouts, and resource limits. We use suPHP(pronounced sue-p-h-p) environment in all our servers which allows our user to have their own custom php.ini file and change certain PHP settings as per their CMS requirement.

Below are some of the most common lines that are altered when making custom PHP changes:

  • memory_limit
  • upload_max_filesize
  • post_max_size
  • max_execution_time
  • max_input_time
  • register_globals
  • magic_quotes_gpc
  • date.timezone

 

To being creating your very own custom php.ini file:

php.ini Setup Process:
1. Create a file called php.ini from your local machine with the PHP values you want to modify.
2. Upload the newly created php.ini file to your cPanel account under the public_html folder.

Note: Make sure the file name is correctly setup which is php.ini

suPHP Path Setup Using .htaccess:
Create a .htaccess file and put the following code: suPHP_ConfigPath /home/username/public_html and upload the file to your cPanel account under the public_html folder.

Note 1: Make sure to change the cPanel username with the actual account username.

Note 2: If you already have an .htaccess file then you can just modify the .htaccess file by accessing it using File Manager and setup the path. FYI .htaccess is an hidden file so please make sure you enabled the option that says “Show Hidden Files(dotfiles)” while accessing File Manager.

 

Once you have completed the above steps your php.ini file will be active. Any entries you placed in the file will be used in place of the entries from the server’s main php.ini file.

Some examples of what may be changed by using a custom php.ini file are:

upload_max_filesize = 10M
post_max_size = 10M
max_execution_time = 30

Should you require any further assistance with creating a custom php.ini file then check in with one of our fantastic support people at http://tetrahostbd.com/contact.

14 Apr

TetraHost Launches New Website

TetraHost, a leader in Shared Hosting, Reseller Hosting and Radio Hosting Servers from Bangladesh, announced today the launch of its new corporate website. We are very excited to finally launched our new website design which was in development for last three+ months. The new site features more intuitive navigation, faster loading pages, and a more vibrant color scheme which represent TetraHost own branding and it’s all been completely re-coded from the ground up.

We have tried to follow the international trend of web-hosting site design to design our new site of 2014. We hope both our existing and new customer will like the design. We have also added new Hosting Product with the release of our new website. From now on we will be offering Dedicated Servers and Bulk SMS Service. We will be offering Domain Reselling Service to non-hosting client as well.

On this occasion of launching the new website and Bangla New Year 1421, we would like to offer 25% discount to our new clients. Discount will be applicable for new client with our Shared, Reseller and Radio Hosting Clients.

You are invited to check our new website and give us feedback: http://www.tetrahostbd.com

Regards,

Ashraful Insan
Team Head, TetraHost