Author Archives: Core

Spring News — Core Solutions

Dear friends!

Welcome to the CORE.EU Facebook page: https://www.facebook.com/coreeu-372914296422719/

To celebrate the opening the facebook page, we offer a 20% discount on all the servers listed on the page for three months.

To get a discount, use the code D650FIG3ZL on the server order page. The discount is valid for 3 months and applies to Web Hosting Packages, VPS and VDS servers.

Like and share the news with your friends!

May the spring be with you! 🙂
Core Solutions OÜ

SSL Certificates – The How and Why

If you’ve recently surfed the Internet on your Chrome browser, you’ve probably noticed an indicator next to a domain name. The symbol indicates if a website is safe to visit:

  • Secure: The information you send to the site will be private.
  • Info: The site isn’t using a private connection. Someone might be able to see the information you send through this site. Google suggests you don’t enter sensitive details, like passwords or credit cards.
  • Not Secure or Dangerous: Google suggests you don’t enter any private or personal information on this page. If avoidable, don’t use this site.

Why does this happen?

HTTP is HyperText Transfer Protocol and the ‘S’ at the end of HTTPS stands for SSL (Secure Socket Layer). This digital certificate, if installed, activates a padlock and the HTTPS protocol which allows a secure connection from a web server to a browser. Without a digital certificate or a ‘HTTPS’ connection, Chrome will label the website as ‘Not Secure’.

What does an SSL certificate do?

An SSL certificate is a bit of code that secures sensitive information across different networks around the world. Even if your website does not request information like credit card details, SSL is still critical to your website.

Information is passed from computer to computer to get to the destination server. An computer within this network (between your computer and the destination server) will have access to passwords, account details, personal information etc. An SSL certificate encrypts that information so it is only read by the destination server.

Can I install an SSL certificate on my server?

To ensure your clients’ websites are marked safe, we strongly suggest installing SSL certificates on Shared Hosting and any other server you use.

All the Shared hosting packages by Core support installation of Digital Certificates; bought either from us or any third party vendors.

We understand the importance and the need for data protection, so we offer 76 different types of certificates from major certificate authorities: RapidSSL, GeoTrust, Thawte, Comodo, Certum, Symantec.

You can buy a Certificate not only to protect any server or hosting that is provided by us, but for any other services/servers that you use from different providers. You can also order SSL installation service from us to get your Certificate installed correctly.

View the entire list and select the appropriate certificate, at: https://core.eu/en/security/ssl-certificate/.

Which SSL Certificate should I Choose?

Here’s a description the main types of certificates for websites to help you make a decision better.

DV — Domain Validated

These encryption-only certificates are popular because of how fast and simple they are to get. All you have to do is prove you own the domain you wish to secure in order to get a DV certificate issued. This process usually takes just a few minutes to complete. You’ll get industry standard encryption and trust indicators like HTTPS and the padlock icon. Internal testing domains, blogs, and basic template sites are good candidates for DV certificates, since they offer full encryption but just basic trust indicators.

OV — Organization Validated

OV certificates are the “better” in the “good, better, best” model for SSL/TLS certificates. These certificates validate that a domain belongs to a registered business before being issued, and this process typically takes between 1-3 days to complete. The added benefit of an OV certificate is a dynamic site seal, which when clicked on, displays validated company information to a visitor, along with HTTPS and the padlock icon.

EV — Extended Validation

Extended Validation (EV) certificates are the most premium SSL solutions available. These are the only SSL certificates that can truly be viewed at as an investment, given their ROI potential. The main feature of EV certificates is the green address bar, the most universally trusted symbol across the web. The validation process typically takes a little more time with these certificates, around 1-5 business days, but if you have a registered business, we’ll help make sure you can get one!

Conclusion

A digital certification is a must to keep your website secure. It’s the standard security technology for an encrypted link between a server and a browser.

From March 1, you will no longer be able to order three year SSL certificates

If you planned to purchase an SSL certificate for three years, we advise you to hurry. Soon, the certifying centers will stop issuing three-year SSL certificates of all types. After February 20, 2018, SSL will not be sold for three years from GeoTrust, RapidSSL, Symantec and Thawte. Since March 1, it will not be possible to buy certificates for three years from Comodo. All active three-year SSL certificates will work after March 1.

Update on CPU Security Vulnerabilities: Meltdown and Spectre

You’ve probably already read about one of the most widespread security issues in modern computing history — colloquially known as “Meltdown” (CVE-2017-5754) and “Spectre” (CVE-2017-5753 and CVE-2017-5715) — affecting practically every computer built in the last 20 years, running any operating system.

Spectre and Meltdown are the names of the flaws found in a number of processors from Intel, ARM and AMD that could allow hackers to access passwords, encryption keys and other private information from open applications.

So far it doesn’t look like the Spectre or Meltdown flaws have been used in an attack, and device manufacturers are working with Intel, ARM and AMD to fix these flaws. The exploits can’t corrupt, modify or delete data.

Hopefully future processors should be free from the Spectre and Meltdown security flaws. So, don’t be too alarmed, but keep an eye on any updates your device offers.

We shall be patching our Shared Hosting and VPS/Dedicated Server infrastructure very soon. However, if you have VPS/Dedicated Server package(s) with us, please perform the updates fro your Operating System.

Please Note: Applying the patches may have a negative impact on overall performance.

Winter News – Core Solutions

The end of the year is coming – it is time to sum up and make plans for the future. We continued to develop our services portfolio in year 2017.

The functionality of Shared Hosting has been expanded:

  • All customers can now use free Let’s Encrypt SSL certificates
  • It became more convenient to install web applications directly from the server panel
  • DKIM and DMARC added to the mail domain settings
  • In late November, we added the ability to set individual SSL certificates for mail domains
  • In addition to alternative versions of PHP, the ability to install alternative versions of MySQL 5.5 – 5.7 and MariaDB 10.0 – 10.3 databases was added

We successfully develop the direction of SSL certificates and have become the largest seller in Estonia of various types of certificates at the best prices.

Virtual servers:
These are virtual servers based on LXC for Linux-like systems and virtual KVM servers which can run Windows systems.

Next Year we will start offering physical servers housing on our server room at the most favorable prices.

Infrastructure changes are also taking place. In the near future, we are going to move all our servers to the only TIER3 level datacenter in the Baltic States. We hope this will positively affect the stability and availability of our services. The last two months we were preparing for the move: reconfigure the software, install new network equipment, and conduct other preparatory work. Unfortunately, this can cause a malfunction in the operation of our servers. It is this that explains some of the problems of the last days. Nevertheless, the goal is set and we are moving at the direction.

We hope to move to a new DC in the next few weeks in relatively quiet pre-Christmas days. The time of the move will be reported additionally.