PHP updated to version 5.2.8

This night we updated our web servers, and now they run PHP version 5.2.8. More than 170 errors are fixed since version 5.2.6.

A full list of changes can be found on php.net.


New top-level domains supported

Gigahost can now register and transfer the following types of domain names:

.ag, .asia, .bz, .cn, .hn, .lc, .me,. mobi

As a time-limited offer, .cn domains are only £1.50 including VAT! A complete price list for domain services can be found in the Control Center.

Update, June 2010: We can no longer register .cn domain names, because the requirements to do so have become too strict.


PHP 5.2.6 released

PHP 5.2.6 released

The team behind the script language PHP has released version 5.2.6 of PHP. In this release, a lot of minor errors and security exploits have been fixed. If you have chosen to use PHP 5 in the control center, you will automatically be using the new version.

How to avoid getting hacked

How to avoid getting hacked

During the last couple of days, some Gigahost customers were so unfortunate to be met by their web pages being hacked, in most cases by some “Muslem Hacker” or “Saudi Arabian hacker”. Follows, some security tips on how not to get hacked.

  • Passwords: Always choose proper passwords for your systems, and never use your username, real name or the like for your passwords for the hosting account, email, or anything else. You can use a random password generator such as this to generate secure passwords.
  • CMS and scripts: Always update your Content Management System and any scripts you may be using to the latest versions, since new security exploits are often found (and corrected).
  • Delete unused files: Delete scripts and other files you are not using. In particular, “install” directories or files from CMS installations. Often these are named “install.php”, “install”, “setup.php” or the like.
  • Use robots.txt: Search Engines will often index content on your site, which may leave parts of it unintentionally open. By placing a file called “robots.txt” you can avoid this. Read more here.
  • Protect content with .htaccess: You can use “.htaccess” files to password protect one or more parts of your site, block certain IP addresses, block “hot-linking” of images and lots more. Read more here. A WordPress-specific .htaccess guide can be found here.
  • Plug-ins and third-party programs: If you extend your site with third-party programs or plug-ins (such as WordPress plug-ins), ensure these are also kept up-to-date. Remember only to download plug-ins and other scripts from trusted sources
  • Use anti-virus/anti-spyware: Some attacks originate from the local computer, and not our systems. Should a hacker get entry to your computer, it will be trivial to read off passwords from, say, database configuration files residing on your system. Use anti-virus and anti-spyware programs to protect your PC. A nice, free anti-virus program is AVG, and another program (also free) to protect from spyware is Ad-Aware.
  • Backups: Lastly, make sure always to back-up your email, files and databases. Especially when you update your CMS or your scripts.