How to keep your WordPress Installation secure

WordPress SecureSecuring your WordPress installation should be one of your very first priorities. Even if you think your website could not possibly be of interest to hackers, the sad reality is that many of them will count it as a success just breaking into a website, any website. Legions of bots crawl around the Internet checking for vulnerable installations. If they find one and hackers manage to break in, the amount of damage inflicted can vary from a harmless front page hacking announcement, to embedding your pages with malicious scripts that infect your visitors’ computers or redirect them to illegal sites.

The first line of defense starts at your very own computer. If hackers have made it into your computer and are collecting passwords and other information, they will keep breaking into your website using your own credentials. You must make sure the computers you use are not infected with spyware, malware, and/or virus. No amount of security in your WordPress installation or on your web server will make any difference if there is a keylogger installed on your computer that keeps sending out your usernames and passwords to hackers.

You must always keep your computer’s operating system and the software that runs on it up to date to be protected as much as possible from the latest security vulnerabilities. This is specially important with your web browser Always try to avoid visiting untrusted sites, but if you need to visit any, a good security measure would be to turn off JavaScript, Flash and Java in your browser.

All of the above are preventive measures that you should implement by yourself, as they require working on your own computers. If you feel overwhelmed by the technical aspects involved seek the help of a more knowledgeable person who you trust completely, don’t leave that important part of security in the hands of untrusted contractors.

Second to check for are vulnerabilities within your WordPress installation. Since WordPress became widely known it has attracted a lot of attention from hackers. WordPress today is the most popular Open Source CMS, currently powering about 25% of all websites on the Internet, and is often under the radar from hackers trying to harness its reach for malicious purposes.

The core files of WordPress are updated regularly to address performance and security issues, as well as to implement new features. Those updates are applied to your installation automatically in the background since WordPress 3.7 (October 24, 2013), but you still need to keep your plugins and Themes up to date manually. Failure to do so could lead to your site being hacked by any of the numerous exploits freely available in the wild.

However if your WordPress site is hosted at RackNine you’ll have the possibility of having all your WordPress plugins and Themes automatically backed up and updated as new versions become available. That way you never need to worry about your site being vulnerable to the latest attacks. However, automatic updates of plugins and Themes might not be advisable for large websites that use a large number of plugins, specially commercial ones. Most commercial plugins need to be updated by downloading them first from the developers’ site using a licence, meaning they cannot be updated automatically, and in some cases they could cause incompatibilities with the rest of the installation.

And speaking of plugins, if you want to add yet another layer of security to your WordPress installation, there are several of them that constitute great additions. Below we list some of the most effective:

WordFence is a very popular security plugin that will monitor your WordPress website for common vulnerabilities and send you alerts if there are security issues that need to be addressed. Wordfence also implements several additional security measures, such as a WordPress Firewall to block common security threats like fake Googlebots, malicious scans from hackers and botnets.

BulletProof Security:
BulletProof Security adds firewall security, database security, login security and more. Its interface is a bit complex to navigate and configure, but is worth the effort This plugin keeps itself automatically updated against new exploits and vulnerabilities. It has a pro version which offers some advanced features to improve the security of your website even further, although the free version should be good enough to make your website fairly secure.

Sucuri Security:
This plugin comes from Sucuri, the well known security and auditing company. It offers security activity auditing, file integrity monitoring, malware scanning, blacklist monitoring, and website firewall. It incorporates various blacklist engines including Google Safe Browsing, Sucuri Labs, Norton, McAfee Site Advisor, and more to check your website. If there is anything wrong, it will notify you via email.

iThemes Security (formerly Better WP Security)
iThemes Security claims to offer 30+ ways to secure and protect your WordPress website. It scans the entire website and tries to find if there are any potential vulnerabilities in your website. It also prevents bruteforce attacks and automatically bans their IP addresses, while requiring legit users to use secure passwords.

All In One WP Security & Firewall
Another popular WordPress security plugin that is easy to use and reduces the security risks by adding recommended security practices. It protects against bruteforce login attacks and sends you an email notification if somebody gets locked out due to failed login attempts. It also monitors the account activity of all users and keeps track of username, IP and login date time.

There are other potential issues to watch out for, such as those related to your web hosting server and network, but they are server-related and unless you are a professional and know what you’re doing, you should not tamper with server settings. Always make sure you are using a trusted host that takes care of all these things for you. Additionally RackNine can manage the setup, backups and security of your WordPress sites, so you can focus on creating awesome content, please visit for more information.

We hope this Post helps to clarify the issues concerning WordPress security and helps you build an effective defence against hackers, please do not hesitate to contact us if you have any further questions or concerns.

Mind Solutions begins taking pre-orders of the world’s smallest Brain Computer Interface


Mind Solutions, Inc. (VOIS), will begin taking pre-orders for the world’s smallest BCI (Brain-Computer-Interface) tomorrow. Shareholders of Mind Solutions may place orders online at:

Mind Solutions is making the pre-order sales available to shareholders of record at a discounted price of $99 as a way thanking them for their loyal support as the Company transitions from R&D into a revenue producing company. The product is expected to retail for $129 when it hits the market in approximately 8-10 weeks.

The world’s smallest BCI device will be marketed under the name “NeuroSync”. Originally called Synapse in the development phase, The Company has branded the new name to avoid potential conflict of international trademarks of unrelated technologies. NeuroSync will be compatible with over 100 thought-controlled APPS currently on the market. These APPS range from mind games to accessibility programs to brain efficiency applications for both the desktop computer as well as mobile smart phones.

About Mind Solutions

The Company has recently completed the development of the world’s smallest BCI (Brain-Computer-Interface) that is worn on the ear like a bluetooth cellular device. All testing is complete and the Company is entering the manufacturing phase, with expectations to have the revolutionary new product available to the public by mid 2015.

Mind Solutions has successfully developed three thought-controlled software applications that allow you to control and navigate the entire computer, compose and send emails and play any PC video game all through the power of your mind.These thought-controlled software programs are compatible with the Emotiv EPOC EEG headset.

Investor Relations – Casey Burt 888-461-3932


To view the original version on PR Newswire, visit:

How to set up CloudFlare with RackNine

Cloudflare LogoCloudFlare is a global Content Delivery Network (CDN) and distributed Domain Name Server (DNS) provider, that acts as a reverse proxy for websites by placing itself between your website visitors and RackNine’s web hosting.

By optimizing the delivery of web pages visitors get in most cases faster page load times and improved performance. CloudFlare operates out of 28 data centers around the world, caching your static files at their edge nodes so these files are stored closer to your visitors while delivering your dynamic content directly from RackNine’s web servers.

CloudFlare also block threats and limit abusive bots and crawlers from wasting your bandwidth and server resources, which results in a decrease in spam and other attacks. Once CloudFlare automatically detects a new attack  arising against any website on its network, their software starts to block the attack for both the particular website and the entire community.

Over the last three years, CloudFlare has grown 450% annually, and is currently adding about 5,000 new clients a day. It’s easy to see why, CloudFlare can be used by anyone with a website and their own domain, regardless of their budget, since their core service is free. Adding your website requires only a simple change to your domain’s DNS settings, which makes it as easy to turn CloudFlare off as you turned it on.

CloudFlare integrates seamlessly on RackNine shared Linux servers, and can be installed on multiple aliased sub-domains on the same RackNine server if you are on a Deluxe or Premium hosting plan. After signing up for CloudFlare, these are the steps you need to follow to change your domain’s DNS and point them to CloudFlare.

  1. Log into your RackNine account.
  2. Click on Domains and on the domain that you want to use CloudFlare with.
  3. Click Manage on Name Servers.
  4. Select Custom and then Click Add Name Server.
  5. Enter the CloudFlare Name Servers addresses you’ve been assigned. That information can be found by going to the DNS settings option in your CloudFlare account dashboard (Settings->DNS Settings).
  6. Click OK

As with any other operation involving a change of Name Servers you need to allow for up to 72 hours for the new DNS information to propagate, but your website operations will not be interrupted in any way during this transition process.

If you need further information or assistance, please do not hesitate to contact us through our Support page at:

The Cloud becoming a genuine extension of Data Centers

datacenters migrate to hybrid cloud modelA new study examining the ways large companies use computing platforms concludes that the cloud is passing the tipping point between its earlier status as a playground for marketing and dev/ops projects and is becoming a genuine extension of Data Center resources.

During the last 12 months large companies have increased their spending on cloud services by 45 percent and shifted the type of workloads housed on cloud platforms to the point that production applications now account for 60 percent of all corporate cloud usage, according to the 2013 State of the Enterprise Cloud Report, an annual effort from Verizon Terremark – the hosting and cloud-services company acquired by Verizon in 2011.
The report, based on Verizon/Terremark’s own usage data from the past 12 months, shows corporate customers have increased their use of cloud-based storage by 90 percent during the past year and doubled their use of cloud-based memory.

At the same time, the number of virtual machines (VMs) running in the cloud has increased only 35 percent – indicating that the apps running in those VMs are far more resource-intensive than was typical during the previous year, according to Verizon’s analysis.

It also indicates corporate users are consciously avoiding cloud-based virtual-server sprawl by limiting the number of VMs running on public clouds and making better use of the VMs they do launch with more memory and storage capacity, according to analyst Brian Profitt, in a blog at

Enterprises “have moved beyond development and testing and are running external-facing and critical business applications in the cloud,” according to the report, and sixty percent of the corporate apps housed in the cloud are also web-based or Internet-facing, which makes them simpler to run in a virtual environment and manage through the cloud rather than in a physical Data Center, according to the report.

A very different kind of app – back-office applications such as manufacturing, resource planning and other core business software – now account for 23 percent of all corporate apps in the cloud. Back-office applications don’t benefit much from the web-centric nature of the cloud, but do require higher levels of security, availability and industry-specific regulatory or interoperability requirements.

That, as much as the 45 percent increase in corporate spending on cloud services, shows corporate IT managers are using the cloud as a way to extend or expand their existing Data Centers, not just porting their most web-friendly apps to the cloud to get them out of the Data Center.

The conversion isn’t complete, however. Internet-facing production applications are the most common business apps in the cloud, while internal-facing production software is fourth most common. Nos. 2, 3 and 4 in the list are still the development, staging and proof-of-concept apps that have made up the biggest proportion of corporate cloud use until recently.

“Many” enterprises are still just moving low-priority or commodity services to the cloud, according to Verizon’s report, which didn’t note the number it considers “many.” The mix of internal- and external-facing apps and rapid increase in demand for more resource-rich virtual machines to run demanding workloads, however, indicates a genuine shift toward hybrid cloud models in which apps are housed in the datacenter or cloud based on where they’ll run most efficiently.

Even the most virtualized Data Centers are still in the early stages of a migration to a hybrid cloud model, the report admits. Increases in usage and type of workloads running on the cloud don’t mean the corporate world has converted to hybrid computing in toto. It does mean that “IT is done playing around with cloud,” however, and is on the way to turning it into something more useful than a file locker or developer’s sandbox, Proffitt wrote.

Image: Niyazz /

Repost.Us - Republish This Article
This article, Datacenters Quit Playing With Cloud; Put it to Work Instead, is syndicated from slashdot and is posted here with permission.


Setting up email accounts with RackNine

In this how-to article we’ll show you how you can create email addresses using the Workspace Control Center in a quick and easy way.

  1. First you need to log in to your Account Manager and click on ‘EMAIL’. Besides our regular email plans, RackNine also provides free email addresses when registering a domain, or when purchasing web hosting from us. If this is the first time you’re setting up an email address you will see all those free offers displayed when you click on ‘EMAIL’.
  2. Click ‘Launch’ next to the account you want to set up the email for or click ‘Set Up’ to select the free account credit you want to redeem, then select the domain or product you want to associate with this email account.
  3. Once set up, the new account will display in the email account list. Click the ‘Launch’ button next to the account (you may need to refresh your browser for the new email plan to display in your list.)
  4. At the top of the email address list, click Create. The Create Account window displays with your most frequently used, available email Plan selected by default. If you don’t have any email accounts, you will be asked to ‘create one now’.
  5. Enter the email address you want to create. For example,, and enter and confirm a Password for the new email address.
  6. Optionally, you can configure additional options by clicking on ‘Show additional options’, where you can select the email ‘Plan’ in which to create this email address, the ‘Quota’ or amount of storage space for the email address, whether to ‘Make this a catch-all account’ that receives all messages sent to any incorrect email address for the same domain, ‘Send copy to’ that sends copies of the messages addressed to this account, ‘SMTP relays per day’ that selects the number of SMTP relays to assign to this address (please note that to prevent spam, we limit our email accounts to 250 SMTP relays per day), ‘Enable SPAM filter’ that selects how spam should be handled for this address, and ‘Enable auto reply’ to configure an automatic reply to any messages sent to this address.
  7. Click Create.

Once your new email account has been created, you are ready to log in to your web-based email through the Workspace Control Center and start sending and receiving email messages, but if you prefer to use a third party email client or your mobile device, we can help you out with that as well. We have step-by-step guides for some of the most popular email clients such as:

  • Android devices
  • Apple iPad
  • Apple iPhone
  • Apple Mail
  • Auto-Setup for Apple devices
  • BlackBerry
  • Eudora
  • Microsoft Entourage
  • Microsoft Outlook
  • Microsoft Outlook Express
  • Microsoft Surface tablet
  • Microsoft Windows phone
  • Mozilla Thunderbird

If you are using our Hosted Exchange email Plan which is available with select Personal and Group email plans, you can retrieve email from several Hosted Exchange Email addresses in Outlook. However only one email address can be configured to use Exchange. If you need additional email addresses you can set them up as POP or IMAP accounts.

For more information please read the information posted at our Hosted Exchange email page.