20181203.1 – SUPEE-10975, new magento versions, sidebar bugfix, new malware signatures

SUPEE-10975 and new magento versions On the 28th of November Magento released the following versions for Magento: 2.3, 2.2.7, 2.1.16, 1.14.4.0 and 1.9.4.0. In addition to these new versions they also released SUPEE-10975. The new versions plus the SUPEE fix some critical security issues in Magento and it is highly recommended you patch or upgrade…

Read more

Release 5953: Magento 2 preinstall updated to 2.3.0

Magento released a new version of Magento 2 yesterday. The Magento 2 preinstall on Hypernode has been updated to reflect this. The new preinstalled version when you order a Hypernode is 2.3.0. ./bin/magento –version Magento CLI 2.3.0 Note that as of right now magerun2 is not yet compatible with this new version, so keep that…

Read more

Release 5946: Configurable memory management policy and RSS bruteforce detection

Configurable memory management policy In this release we will amend the change we made earlier this month where we increased the limit for our non-essential process slaying mechanism in order to allow more one-off memory hungry processes to run without executing overly drastic measures. While this change worked as intended, it did however result in…

Read more

release-384: Users can list flows and set Varnish settings

Users can list flows For some time now it’s been possible for users to list flows for their apps by calling the Hypernode-API. This lets users inspect which tasks are currently running for their node. This can be useful for users to anticipate when changes are going to be propagated when they requested changes via…

Read more

20181106.1 – Run checks in batches, new patch check, updated Magento version check and new RCE check

Running checks in batches Recently we received some information that under-powered servers could suffer performance loss when scanned by MageReport. This is due to the amount of requests MageReport has to make to determine your shop’s safety. This is of course not our intention, so to fix this we’ve added running checks in batches for…

Read more

Release 5874: Better out of memory pattern detection for preventive non-essential process slaying

On Hypernode we have a very sophisticated system for dealing with low memory situations. As described in these earlier changelog articles this system has evolved quite a bit over time and we are constantly looking for tweaks and adjustments so that we can strike the best possible balance between stability, performance and flexibility. Over time…

Read more

Release 5869: Configurable ft_min_word_len for products with short names

In this release we expose functionality in the hypernode-api that will make it possible to configure the ft_min_word_len for MySQL. The ft_min_word_len is the minimum length of the word to be included in a MyISAM FULLTEXT index. So, if you sell things in your Magento shop like wol or a sok then today is your…

Read more

20181026.1 – Added Magecart zero day extensions checks

Magecart zero day attacks Recently it was brought to light by security researcher Willem de Groot that attackers are making use of unpublished security flaws in about two dozen Magento extensions. The vulnerabilities in these extensions allow the attackers to gain full control over the targeted websites via Remote Code Execution (RCE). Added checks The…

Read more

Release 5852: Additional PHP Object Injection WAF rules

In this release we will expand on the configuration changes we’ve made in yesterday’s release which addressed a number of the PHP Object Injection vulnerabilities in third party Magento 1 extensions. Today’s change contains extra filters for probes we’ve seen with an URI encoded version of the payload and for probes where the payload is…

Read more

Release 5850: Blocking Magecart zero-days

In this release we will deploy a preliminary new version of our Web Application Firewall which will block various forms of known attacks that have been encountered in the wild on a selection of the vulnerable Magento 1 extensions that were disclosed in this blogpost by Willem de Groot, security researcher and ex-Byte founder. The…

Read more

Release 5840: hypernode-servicectl can also restart Redis

In this release we will push an update to the hypernode-servicectl command-line tool that will make it so that the app user is now also privileged to restart the Redis service. It will be possible to restart the default Redis instance that is commonly used for the full page cache, but it will also be…

Read more

Release 5793: ImageMagick security update

This week a security release for imagemagick was pushed to fix a vulnerability relating to the underlying Ghostscript interpreter. Because in Magento sites it is not very common for non-trusted users to upload images that will be converted to one of these formats, this vulnerability isn’t very critical. But because people can get very creative…

Read more

Release 5785: Migrating Hypernode DEV plans to the new Combell OpenStack

In this release we have started our previously announced effort to migrate production resources from DigitalOcean to the brand new Combell OpenStack cloud. This change will allow for a couple of cool new features like volume swap migration between the Magento Professional 3XL, 4XL and 5XL plans and way faster provisioning (around 10 minutes from…

Read more

20180925.1 – Updated CC hijack and cryptojacking checks and updated style

Update Credit Card Hijack check Recently MagentoCore and MageCart have been getting some traction as Magento specific malware to skim credit card details. We’ve updated our signatures so we’re able to detect shops infected with this malware. Update Cryptojacking check Recently there were some updates to cryptojacker signatures. We’ve updated our database to make sure…

Read more

Release 5734: Default n98-magerun.yaml configuration file

From this release on we will start placing a default .n98-magerun.yaml configuration file for Magerun in /data/web if no such file exists yet. Previously we already placed this file when a new node was ordered with a Magento 1 preinstallation. But, for the instructions in this article about installing Magento 1 on Hypernode to work…

Read more

Release 5678: New hypernode-postsuper utility to clear mail queue

In this release we introduce a new command which exposes the capability of clearing out or removing individual items from the mail queue to the app user. The command is called <code>hypernode-postsuper</code>. Use case The common software systems providing email services queue messages as part of their operations. Hypernodes are configured to process a capped…

Read more

Release 5677: SMTPD limits on low disk space

In this release we have tuned a couple of postfix configurations to safeguard Hypernodes from excessive e-mail volumes. What may affect users is that when the root disk has free space less than 15MB, SMTPD would not accept new requests. We have also adjusted the active queue size in proportion to the enforced mail limits,…

Read more

Release 5664: Follow migration process from the commandline

In this release we have added a new commandline tool on Hypernode which allows you to track the progress of running jobs for your Hypernode. This enables you to get a better insight into at what part of the process actions are as they are happening. The command is named hypernode-log and can be run…

Read more

Release 332: Configure additional Hypernode settings using the API

In this release we have extended the functionality of the (currently BETA) hypernode-api to include some more app-level settings. Note that because the API is still currently under active development the exposed capabilities and naming are still subject to change. Last week we made it possible for API users to enable OpenVPN. In a similar…

Read more

Release-5640: hypernode-vpn a fully automated OpenVPN solution

In this release we introduce hypernode-vpn a fully automated VPN solution for Hypernode, which can be used for securely connecting to your database. hypernode-vpn is based on OpenVPN, with settings optimized for Hypernode. How it works When hypernode-vpn is enabled on a Hypernode, the Hypernode automation takes care of installing openvpn and generating the required…

Read more

Login to billing portal available

In this release we’ve added the option for our non-Dutch speaking customers to login to their billing portal from auth.hypernode.com. You can click the top right to access the dropdown and should then select the “billing portal” item to gain access. You can then manage your subscriptions there. The billing portal allows you to change…

Read more

Release 312: Billing portal SSO URL endpoint and general improvements

In this release we’ve introduced a few generic improvements in the API and introduced an endpoint customers can use to retrieve the billing portal SSO login URL for their account. Billing portal SSO URL Non-Dutch speaking customers who ordered their Hypernode can now get their billing portal SSO login URL by calling the Chargebee SSO…

Read more

Release-5637: hypernode-systemctl CLI introduction

With the recent announcement of the Hypernode-API beta we’re now also able to provide some tools to improve the way you manage your Hypernode on the command line. We’ve introduced the hypernode-systemctl tool to let you take control of certain settings of your node and to allow you to whitelist IP’s. This also provides a…

Read more

Release 5624: Customer changes now have a higher priority than system jobs and more

Prioritising customer changes in our backend system In this release we have made a big change to our back-end system to decrease the time it takes for customer changes to be propagated throughout the platform when we are running system jobs. Our automated systems periodically perform operations on all Hypernodes, like installing updates, running backups…

Read more