Redirects and add on domains

Salam

An Issue which comes up quite a lot and is that one may register a few domain names and point it as an add-on domain to the main account

So for example

I register the following accounts

a.com

b.com

c.com

a.com is my main account

b.com and c.com I add as an “add in account” to a.com through the control panel which means that all 3 accounts share the same space and bandwidth

Now 1 year later a.com expires b.com and c.com have been renewed

So at this point

a.com WILL NOT WORK

b.com WILL WORK

c.com WILL work

Because a.com Server account is still active it has not been deleted yet so b.com and c.com still use the space despite the domain name not working

With MPADC generally after 45 days we tend to run checks on accounts to see what IP addresses resolves to domain and whether these domains are still active or not, if they return with “DOMAIN DOES NOT RESOLVE” these accounts are deleted

So with this happening b.com and c.com vanishes too!

So best practise to avoid this?

Either Create seperate accounts for this, we can do this for you too

OR

Renew the domain name!

Advertisements

Infiltrated and Viruses on your site

Salams

Many times we get helpdesk tickets asking we got a virus on our website help!

You know that annoying RED PAGE from google you get saying this site is dangerous..blah blah blah

The cause of this is that your PC is infected, and it being infected has infected your website

This virus ties itself and embeds itself in PHP files, basically searches your PC for any PHP files and hides itself in it, then when you upload the files unknowingly then it infacts your website and everyone thats visits it!

So how can you be safe?

1) Ensure you virus scanner is uptodate on your PC

2) Regularly scan your PC for any viruses trojans etc

3) Check the source code of your files you are uploading if all of a sudden you find something like

<script>slk;dsdlghdfkljghdfklghdfkl;-0r8309rtlghndfg </script>

Something like the above not exactly the same or anything that looks dodgy then its likely to be a virus – remove this code then reupload it and check all your other files

any problems contact us on helpdesk

http://support.mpadc.com

Whats the point of this blog?

Salams

Someone asks, what is the point of this blog

1) to keep you guys updated and informed of things

2) if MPADC does go down then since this blog is hosted externally we can post updates here

3) Posting interesting tips and tricks!

simple 🙂

The Dark Mailer….Strikes

Salams

Been an Interesting Eid Weekend (btw Eid Mubarak to all)

Emails being sent to domains on the server were being rejected by folks like Hotmail, Yahoo etc

So after trying to figure why..infact it took us 5 days to finally discover what was causing this we finally caught the slug hiding !

So i login via Root today and shocked to see the following processes running by doing a ps -aux in Shell

31510 (dark.cgi) /usr/bin/perl /home/XXXXX/public_html/cgi-bin/rocker
/usr/bin/perl dark.cgi 31558 (dark.cgi) /usr/bin/perl
/home/XXXXX/public_html/cgi-bin/rocker /usr/bin/perl dark.cgi 31559
(dark.cgi) /usr/bin/perl /home/XXXXX/public_html/cgi-bin/rocker
/usr/bin/perl dark.cgi 31560 (dark.cgi) /usr/bin/perl
/home/XXXXX/public_html/cgi-bin/rocker /usr/bin/perl dark.cgi 31561
(dark.cgi) /usr/bin/perl /home/XXXXX/public_html/cgi-bin/rocker
/usr/bin/perl dark.cgi 31562 (dark.cgi) /usr/bin/perl
/home/XXXXX/public_html/cgi-bin/rocker /usr/bin/perl dark.cgi 31563
(dark.cgi) /usr/bin/perl /home/XXXXX/public_html/cgi-bin/rocker
/usr/bin/perl dark.cgi 31564 (dark.cgi) /usr/bin/perl
/home/XXXXX/public_html/cgi-bin/rocker /usr/bin/perl dark.cgi 31565
(dark.cgi) /usr/bin/perl /home/XXXXX/public_html/cgi-bin/rocker
/usr/bin/perl dark.cgi 31566 (dark.cgi) /usr/bin/perl
/home/XXXXX/public_html/cgi-bin/rocker /usr/bin/perl dark.cgi 31567
(dark.cgi) /usr/bin/perl /home/XXXXX/public_html/cgi-bin/rocker
/usr/bin/perl dark.cgi 31568 (dark.cgi) /usr/bin/perl
/home/XXXXX/public_html/cgi-bin/rocker /usr/bin/perl dark.cgi 31569
(dark.cgi) /usr/bin/perl /home/XXXXX/public_html/cgi-bin/rocker
/usr/bin/perl dark.cgi 31570 (dark.cgi) /usr/bin/perl
/home/XXXXX/public_html/cgi-bin/rocker /usr/bin/perl dark.cgi 31571
(dark.cgi) /usr/bin/perl /home/XXXXX/public_html/cgi-bin/rocker
/usr/bin/perl dark.cgi 31572 (dark.cgi) /usr/bin/perl
/home/XXXXX/public_html/cgi-bin/rocker /usr/bin/perl dark.cgi 31573
(dark.cgi) /usr/bin/perl /home/XXXXX/public_html/cgi-bin/rocker
/usr/bin/perl dark.cgi 31574 (dark.cgi) /usr/bin/perl
/home/XXXXX/public_html/cgi-bin/rocker /usr/bin/perl dark.cgi 31575
(dark.cgi) /usr/bin/perl /home/XXXXX/public_html/cgi-bin/rocker
/usr/bin/perl dark.cgi 31576 (dark.cgi) /usr/bin/perl
/home/XXXXX/public_html/cgi-bin/rocker /usr/bin/perl dark.cgi 31577
(dark.cgi) /usr/bin/perl /home/XXXXX/public_html/cgi-bin/rocker
/usr/bin/perl dark.cgi 31578 (dark.cgi) /usr/bin/perl
/home/XXXXX/public_html/cgi-bin/rocker /usr/bin/perl dark.cgi 31579
(dark.cgi) /usr/bin/perl /home/XXXXX/public_html/cgi-bin/rocker
/usr/bin/perl dark.cgi 31580 (dark.cgi) /usr/bin/perl
/home/XXXXX/public_html/cgi-bin/rocker /usr/bin/perl dark.cgi 31581
(dark.cgi) /usr/bin/perl /home/XXXXX/public_html/cgi-bin/rocker
/usr/bin/perl dark.cgi 31582 (dark.cgi) /usr/bin/perl
/home/XXXXX/public_html/cgi-bin/rocker /usr/bin/perl dark.cgi 31583
(dark.cgi) /usr/bin/perl /home/XXXXX/public_html/cgi-bin/rocker
/usr/bin/perl dark.cgi 31584 (dark.cgi) /usr/bin/perl
/home/XXXXX/public_html/cgi-bin/rocker /usr/bin/perl dark.cgi 31585
(dark.cgi) /usr/bin/perl /home/XXXXX/public_html/cgi-bin/rocker
/usr/bin/perl dark.cgi

XXX stands for the account the culprit as we like to call it!

infact there were hundreds of these processes running.

Basically what happened someones computer was infected a client of ours and whilst uploading files to his site, that got uploaded too and a trojan virus was installed in that directory, this trojan then sent out 100s of phantom spam emails to random email addresses using our server as a platform

eventually the spam busters caught on and decided to black mail our IP meaning any email that got through bounced back! So if you had email problems this was the reason

Glad to say we have deleted this account and cleared the virus and everything is back to normal now alhumdulillah!

So for those that have a server and finds themselves repeatedly being blacklisted by CBL complaining about Dark Mailer Script all you do is login to SSH type in ps -aux and if you find entries like the above then you will find your culprit, it creates a directory called Rocker under the CGI-BIN folder which contains all the files that generates the spam!

so delete this and reboot and you should be good to go! and yeh don’t forget to delist yourself too!

talktalk….ISP

Salams

One ISP in UK TalkTalk all of a sudden decided to 404 any websites hosted on our Server as well as several servers hosted by our main datacenter liquidweb.

Why this happened all of a sudden is beyond me! Since we have several customers in the UK who use TalkTalk as their phone line these customers found that they could not longer access nothing! Their Website nor the Main MPADC Website!

Checking the web logs it went down in the morning – decide to come back on again briefly for about an hour or so then down again then up again until kicking the bucket around 2pm!

So after spending the last 8 hours trying to figure this out still t he site is inaccesible

Since im Using Virgin as the main ISP everything is working fine and cool!

After having several discussion with our techies as well as the Systems administrators (The Top guys over at our Datacenter) There was absolutely nothing wrong with our servers or network despite being convinced it was our firewall blocking this ISP out – this wasnt the case since the server must have gotten checked through by atleast 4 different people!

So we ring talktalk after being on hold for 30 mins then someoen appeared on the other line for about 30 seconds then she vanishes again and returns back after 37 minutes and say “Problem at our side, will check with our security company will call you back”

Now whether they call back is another mystery since in past experience talktalk have been awful!

Do a google on Talktalk reputation and you see how awful they are………

Backups…backups…..

Someone asks us…….

“What are your backup methods”
We have 3 backup retention methods
Daily (Runs everynight)

Weekly (Runs once a week)

Monthly (Runs once a month)

These backups are done within the same Datacenter
+ Once a month we do an offsite backup to a totally different Datacenter

We backup everything the full account…files/databases/emails etc

However we would still recommend people do their own backups as well just incase anything goes wrong,

Remember always to make Backups

and backups are not for WIMPS!

Behind the Scenes when your website goes down!

Salams

Thought id write a bit about what happens when sites and server goes down – as with any webhosting company this tends to happen!

All of our servers at the moment are monitored 24X7 which means basically someone is watching it – not literally but it is being watched by a system and that system is being watched by humans!

The monitoring services are PING and HTTP

Ping is basically the protocol which determines to see if the Server is online!

HTTP is the protocol for your websites which keeps then running

If ping goes down then nothing nada will work because with ping going down it usually means that the server has fell off the network, someone has unplugged it or the network is down then it means we start to panic!!!

if HTTP is down its not the end of the world – well for clients it maybe as its their website but luckily from a techician view its not because if ping is working then we can login remotely to the server and restart http service

Soo what does this have to do with anything?

Alot – If our servers or services goes down we are automatically notified, it could be 9am in the morning or 2am on a sunday morning servers are unpredictable it can go down anytime for unknown reasons at times!

Soo the server goes down we are notified we being to panic…once we know about this we are aware of the problem the next thing is to rectify the issues

our core network technicians are based in the states.

So if the server goes down….we either get an email (if we are online) or get a text message if we are asleep…..then next thing is to figure out the problem

once sites are online we tell customers to allow us atleast 1 hour to get the server back up – 99% of time its up within 15mins but sometimes the problem may be a bit more complex which requires alot of thinking of whats gone wrong and what to do next..sometimes there could be powercuts, network failures! or sometimes it could be simply that someone has decided to do something crazy on the server like send out 10000s of emails at once or run this dodgy script on their site which takes the server down.

Soo if the server goes down or your sites not working you can do the following:

1) try accessing http://www.mpadc.com or http://www.muslimdot.com

if that works and you can view those sites and not yours open a helpdesk ticket
http://support.mpadc.com

If none of the websites work or open then if you have someone else you know on a different network then get them to try it, if it works from there end then there is something wrong with your network connection contact us on helpdesk incase its a firewall issue that has blocked you out on the server or wait around 30mins to see if it resolves itself

if no luck with any of the above then go for a Pinnnnnnng!

Try pinging the box
Start > Run type in cmd

then type
ping mpadc.com, if you get something like the below then the server is online but http is down

We are aware of this by now and will just restart the http server

Microsoft Windows [Version 6.0.6000]
Copyright (c) 2006 Microsoft Corporation. All rights reserved.

C:\Users\>ping mpadc.com

Pinging mpadc.com [69.16.237.199] with 32 bytes of data:

Reply from 69.16.237.199: bytes=32 time=119ms TTL=46
Reply from 69.16.237.199: bytes=32 time=118ms TTL=46
Reply from 69.16.237.199: bytes=32 time=116ms TTL=46
Reply from 69.16.237.199: bytes=32 time=117ms TTL=46

Ping statistics for 69.16.237.199:
Packets: Sent = 4, Received = 4, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 116ms, Maximum = 119ms, Average = 117ms

C:\Users\>

If you dont get any of the above then the server has been dropped from the network – and yes we are aware of this and are working on it!

Give us 1 hr and see if we can sort it out – if not then give us a call on the number provided to you in the welcome email – you can ring us anytime of the day night we are always around on that number!

If there are any major issues we will try and email you or post on this blog!!!

The Beginning

Assalamu alaykum All!

6 Years late but better late then never!

Since quite a few Web hosting companies have their own blog we at MPADC have decided to create our own blog and join in the hype!
Aim of this blog is to keep our Clients and any Potential clients uptodate with regards to our Webhosting Services.

Here we will post any updates, issues, new things, old things, whats going on and what not and anything and just everything relevant and useful inshallah!

Anyway I thought since this is our first blog post i would post a bit about what we are who we are!

MPADC.com (aka Muslim Programmers and Designers Community) Yeh long and obscure name i know! But done for Search Engine Purposes in a way long complicated Stuff… we started back in April 2003, Just a small discussion forum…why it was created well we just decided that the internet was missing a community for muslim web designers to unite and discuss! Something we could not find anywhere but thought why not give it a crack and start something up worth a shot!

This was what our page looked like back in April 2003
————–

MPADC.com

Muslim Programmers and Designer Community

You are being directed to the forum now if you have to wait longer then 5 seconds please click here

This was what our page looked like!! Just a few lines of Text

Then few months down the line we decided to move on to something a bit more “cool”

http://web.archive.org/web/20031022143649/http://www.mpadc.com/

AT that time were were providing Webdesign, Tutorials and Graphics stuff basically a bit like a reference

Then We decided to go all Orangy

http://web.archive.org/web/20040327001752/forums.mpadc.com/

There is a host of other Weird and Fancy Screenshots you can see here

http://web.archive.org/web/*/http://www.mpadc.com

We Then Went into the Web hosting business around December 2003, Starting off buying a reseller account then selling webhosting from there! Once we outgrew a few months later we then moved on to a VPS Server then eventually moving on to a dedicated server 1 year later. Hefty but Scary move for us!

But alhumdulillah it has been all good we have encountered many problems as of course being one of the Very few Muslim Webhosts and back many years ago when Political issues was red hot may people thought that they could host their extreme Jihad material on our servers simply because we were muslim and that we had to follow their views! So Unfortunately Several Websites manage to find their ways on to our servers without us knowing about it, which now all have been shut down…

Yes we do believe in people able to air their views but there is a limit when it becomes too extreme! Besides we were not in a position to let down our “Genunine Clients” ! But those were the days we got by……….

but now nearly 6 years on we started in 2003 alhumdulillah have progressed on quite well with Several dedicated servers hosting 100’s of Websites!
We also host alot of Non Muslim Oriented website, just because we Have “Muslim” on our name does not mean it is for Muslims only! Hence the name Muslim was there originally targeted at Muslim Webmasters! But if you have a Website that is non Islamic or if you are a non muslim you are more then Welcome to host with us, give us a go and we wont let you down 🙂 Actually having said that 40% Websites hosted on our box are not of Islamic Nature meaning they are Business Websites or Personal Sites!

Anyway Now who is who behind MPADC..ever wondered who that mysterious person is that replies to your helpdesk ticket 2am in the morning…or who is the one that is up all night restoring the servers if it has suffered a crash……We have only had 2 Major Crashes but alhumdullilah we got through them well. Will post more on crashes on another post later on inshallah as well as other things and useful hints and tips about your account and a host of other stuff…feel free to comment here if you want!

Here are the Team Members and Roles

Sajid – (Yup the one that made this first post) – What i do well i just sit down and oversee things making sure everything is ok on a daily basis…assisting with strategy and development and new products…and also staying up all night incase the server crashes and main point of contact for any customer issues

Mazoor A (The one with the Eid Gifts) – Mazoor been with us for a good few years now the one that deals with the sales enquiries and occasional Support when he can help and if he can help! Also the one that if you be really really nice to him he may give you a free upgrade or a good plan!

Mohammed Sabil Razali – Co-ordinator of MuslimDot.com our other network and does some of the budgeting stuff (when his not travelling around)

Imran Syed – Technical administrator – helps with the technical aspects of the Server

Ibn Batutah – Our Graphics design guy! All those flashy Graphics you see on the website done by him

Moazzam Khan – Our Chief PHP Programmer – the one that if you give him a notepad and a bit of code he turns it into something!

Abdul Basit – Works on Helpdesk the nice polite guy that helps you if you have any issues

and of course those of you with helpdesk ticket you will find a mysterious character called

“Staff1” – lets just say he likes to stay anonymous for now 🙂

We are based in UK, Gloucestershire to be precise. Part of our team members are based around the globe, We have servers located in USA, Canada and UK

Anyway thats all for now will post more later on Inshallah keep an eye on this blog for more stuff!