Monthly Archives: October 2014

Aspiration Hosting 3.0

Three years ago we introduced Aspiration Hosting 2.0, which includes a complete redesign of our website and a host of other changes.

Today we are introducing Aspiration Hosting 3.0, which include the biggest changes to our company to date.

New Responsive Designs

As the last website design is becoming dated and uninteresting, we decided that it is time to do a complete redesign. We enlisted the help of an excellent designer, Jordan Owen to work on a new design and after a few months of hard work, our new website design is now ready to go live.

The new design is responsive, which means that you can access our website from any devices (Desktops, Laptops/Notebooks, Tablets, Smartphones) and the website layout will automatically adjust to match the screen size of your device. This extends to our Company Blog and Client Area as well so you can read our announcements, pay your invoices, submit and read your support tickets from any devices.

We are in the process of working on a new cPanel design which matches the new website design and it will be responsive as well, allowing you to manage your hosting accounts easily from any devices. You will see a pleasant new design when logging in to your cPanel as soon as the design is ready to go live.

Cloud Servers

Along with the new design, we are introducing our latest solution to help you grow your business with peace of mind – The Cloud Server with Auto Failover.

The main features of our Cloud Servers include High Availability, Pure SSD Storage, Guaranteed Resources and Easy Scaling.

All Cloud Servers are genuinely 100% Fully Managed and we are responsible for all server administration matters. You will not need knowledge about server management or worry about security as we will handle them all for you.

It took us many months to create the perfect formula for our Cloud Servers and we hope you will like it as much as we do!

Rewards Program

We work with partners across multiple industries to draw up a Rewards Program specially for you, our valued client.

Our Rewards Program offers you with Freebies, Special Deals and Perks by our partners including aheadWorks, Stripe, Google, Sucuri, LastPass, Extendware and many more.

We are constantly working with multiple partners to bring more value to you so do stay tuned for more partners who will be joining our Rewards Program.

Uptime, Twitter, Feedback and Reviews

As with our announcements three years ago, the Uptime Report for our servers (monitored by Pingdom) are still viewable publicly.

We are still active in Twitter and if you haven’t follow us, now is the time to do so!

Our Feedback Department is still available where you can reach our Management team directly for any complaints, feedbacks or suggestions.

Finally, we still collect reviews with ShopperApproved and if you love our services, we do hope you can take some time to write an honest review about your experience with us.

Thank you for taking the time out of your hectic schedule to read this, we really appreciate it!

SSLv3 Disabled Due to POODLE Bug

Engineers at Google found a new vulnerability in SSL version 3.0 (SSLv3) and they call it POODLE (Padding Oracle On Downgraded Legacy Encryption). The vulnerability allows an attacker to add padding to a request in order to then calculate the plaintext of encryption using the SSLv3 protocol. Effectively, this allows an attacker to compromise the encryption when using the SSLv3 protocol. Full details have been published by Google in a paper.

Who does this affect?

SSLv3 is nearly 15 years old, but support for it remains widespread. Most importantly, nearly all browsers support it and, in order to work around bugs in HTTPS servers, browsers will retry failed connections with older protocol versions, including SSL 3.0. Because a network attacker can cause connection failures, they can trigger the use of SSL 3.0 and then exploit this issue.

However, the only group of users who will be seriously affected by this bug is those who are still using Internet Explorer 6 on Windows XP (both are already at their End of Life).

According to CloudFlare, 0.09% of all traffic across their network is SSLv3. For HTTPS traffic, 0.65% across their network uses SSLv3. The good news is most of that traffic is actually attack traffic and some minor crawlers. For real visitor traffic, today 3.12% of CloudFlare’s total SSL traffic comes from Windows XP users. Of that, 1.12% Windows XP users connected using SSLv3. In other words, even on an out-of-date operating system, 98.88% Windows XP users connected using TLSv1.0+ — which is not vulnerable to this vulnerability.

Our Response

We will be disabling SSLv3 across all of our servers as this is a serious vulnerability with no patch in sight (as SSLv3 is very old) and most web browsers will be dropping support for SSLv3 after this POODLE incident anyway.

If you receive any complaints from your website visitors who are affected by the decision to disable SSLv3, we highly recommend that you suggest them to stop using Internet Explorer 6 and switch to a modern browser like Google Chrome, Mozilla Firefox, Safari and Opera.

For those of you who are not aware, even Microsoft is discouraging Windows XP users from using Internet Explorer 6 with their IE 6 Countdown website since the year 2011.

(Poodle image via Flickr, CC license.)