Monthly Archives: October 2015

Magento LiteMage Extension 1.0.11 Now Available

LiteMage Cache Banner

Magento LiteMage Extension version 1.0.11 is now available for download and upgrade.

Magento LiteMage Extension is one of the component for LiteMage Cache which is installed in each Magento store to control what should and should not be cached (ESI Hole Punching).

Version 1.0.11 added a few new features and bugs fixes which you can find below.

List of Features and Enhancements

  • Added configuration option to crawl non-default currencies.
  • Added an admin function to allow purge tags from external programs.
  • Fixed a bug where private blocks sometimes would not update when a user logged in.
  • Fixed a bug in the warmup cron process when crawling non-default stores.
  • Ensured that LiteMage can still function when cache storage is not available, such as during memcached restarts or when layout cache is disabled. Shows a warning message on the Cache Management Page in the Magento Admin Panel.
  • Removed configuration option for “Separate Cache Copy for Customized Cookie Values”. To handle this more efficiently, instructions on using a provided rewrite rule are now shown instead.

Warning: If you are currently using the “Separate Cache Copy for Customized Cookie Values” field, please add the provided rewrite rule BEFORE upgrading the LiteMage extension.

Magento LiteMage Extension can now be installed and updated easily with Magento Connect.

Install & Setup LiteMage Cache

Magento Security Patch SUPEE-6788

Magento Security Patches

The latest Magento Security Patch, SUPEE-6788 is now available for Magento Community Edition 1.7 and later releases.

Magento also released Magento Community Edition 1.9.2.2 and Magento Enterprise Edition 1.14.2.2 which includes SUPEE-6788.

SUPEE-6788 addresses over 10 security issues identified through Magento’s comprehensive security program, including remote code execution and information leak vulnerabilities unrelated to the recent malware issue.

There are no confirmed reports of attacks related to these issues to-date, but it is important that you either upgrade to Magento Community Edition 1.9.2.2 and Magento Enterprise Edition 1.14.2.2 or deploy the patch in order to protect your store.

 
BACKWARD COMPATIBILITY

This patch breaks backward compatibility in three ways that can affect extensions and customizations. For example, changes to admin routing can make extensions and customizations inaccessible from the admin panel if they are not using proper routing.

To help address concerns about the admin routing changes, these changes in the patch are turned off by default. This means that the patch will include the fix, but that it will be disabled when installed.

The Magento community compiled an unofficial list of Magento extensions that will break with admin routing enabled. You can look into the list to see if you have any of the extensions installed and whether there are newer versions which resolved the compatibility issue.

For more details, please refer to the SUPEE-6788 Technical Details page and the Magento Community Edition 1.9.2.2 Release Notes.

 
Please Note: We do NOT recommend upgrading a production installation of Magento directly. Please backup database and all files before upgrading. Please make sure to check for compatibility of your plugins and themes before you upgrade.

Magento Security Notice: Guruincsite Malware

Magento Hosting

Sucuri recently reported that many Magento websites are being targeted by the Guruincsite Malware (Neutrino exploit kit) where the hackers inject malicious scripts that create iframes from the “guruincsite” website.

Google blacklisted more than 8,000 websites which are infected by this malware so if your website is blacklisted by Google, this may be the reason for it.

The Magento Team have not identified a new attack vector at this time but rather have found that all websites that were checked show as vulnerable to a previously identified Code Execution Issue (SUPEE-5344) for which a patch was released in early 2015.
Continue reading

Web Hosting: Upgrading to the Cloud!

We are planning a major upgrade to our Cloud platform which will result in improved performance and stability to our Managed Cloud Servers.

The upgraded Cloud platform will also allow us to move and upgrade all Web Hosting servers to the Cloud!

You will not only see improved performance with your Web Hosting accounts but also much better uptime and stability. We will also take this opportunity to upgrade the Percona MySQL of all Web Hosting servers to version 5.6 (from the current version 5.5) in anticipation of Magento 2‘s General Availability launch in Q4 2015 (Magento 2.0 requires at least MySQL 5.6 to run).

The upgrade for Web Hosting servers will start from the end of October 2015 and we expect to complete the upgrade for all servers by mid November 2015 (before the Holiday Sales Season).
Continue reading

Magento LiteMage Extension 1.0.10 Now Available

LiteMage Cache Banner

Magento LiteMage Extension version 1.0.10 is now available for download and upgrade.

Magento LiteMage Extension is one of the component for LiteMage Cache which is installed in each Magento store to control what should and should not be cached (ESI Hole Punching).

Version 1.0.10 adds a new field – “Admin IPs”. IP Addresses added to this list will be able to append LiteMage debug parameters to the sites address in the browser to display debug information.

List of Features and Enhancements

  • Added Admin IPs field to allow the displaying of debug information from within browser for listed IPs.
  • Fixed a bug that sometimes caused LiteMage cache warm-up to not run.
  • Fixed a bug that sometimes caused mobile view to not be properly displayed.

Magento LiteMage Extension can now be installed and updated easily with Magento Connect.

Install & Setup LiteMage Cache