Driftinfo – Sida 3

Important security notification: Linux remote crash vulnerability

We’ve been notified that there is a new remote crash vulnerability many Linux systems .

The CVE has yet to be publicly released, it has just been reserved so far: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11477
The register has published more details: https://www.theregister.co.uk/2019/06/17/linux_tcp_sack_kernel_crash/
Other cloud hosting vendors have published steps on how to mitigate this flaw and so is Adminor AB.

A patch to linux kernel will be issued by different vendors, meanwhile a mitigation of these attacks is to disable tcp_sack (tcp selective acknowledgement) .
It’s possible that the recent reboot of systems already have mitigation for this exploit but we have not been notified of such by upstream vendor as the exploit is still not entirely released.

We recommend that you disable tcp_sack as a pre-caution.
TCP sack is used to speed up TCP transfer by allowing computers to tell the server how much data is left to be sent. This should have minimal impact on normal operations but we still recommend monitoring for any negative performance impacts

Command to run which should not require a system reboot:
echo 0 > /proc/sys/net/ipv4/tcp_sack

To make the change persistent across reboots a command such as the following can be run:echo ’net.ipv4.tcp_sack = 0’ >> /etc/sysctl.conf

We recommend enabling tcp_sack when a kernel patch has been issued and system rebooted.
Please let us know if you need assistance .

Maintenance Cogent

Start time: 00:00 CET (GMT+1) 18-NOV-2018
End time: 06:00 CET (GMT+1) 18-NOV-2018
Expected Outage/Downtime: 45-60 minutes (for Cogent transit, not Adminor services)
Location: Odessa-Copenhaguen-Stockholm

Cogent is performing network maintenance which will cause some network dips momentarily. Adminors network routing / BGP will move traffic over to other transits to minimize network outage.

20:26 Network dip

At 20:26 a switch had an unplanned reboot which caused a short network dip.
We’re monitoring to find the cause.

Maintenance completed

As of 01:50 the maintenance job had been completed succesfully.

Reminder: network maintenance 12th of May 01:00-05:00

During the night, Adminor will perform routine maintenance on our core router and core switch. Intermittent outages will occur. We apologize for the inconvenience.

If your services still have issues after 05:00. Feel free to contact [email protected] or the on call telephone number if you have elevated SLA priority.

Network maintenance 04:30-05:00 (secondary path)

At around 04:30-05:00 tonight we performed an urgent update to our secondary router which is used for fail over.

This may have had some impact on network routes for a couple of minutes.

Adminor has scheduled a network maintenance on 12th of May between 01:00-05:00. We will attempt to keep restarts and network dips minimal

Discontinuing Skype and thirdparty chat support

As part of increasing our security and GDPR compliance for the 25th of May deadline, we will be discontinuing Skype as a method of support / chat. It is not compliant with our privacy policies. This decision has been made after talks among our board and legal department.

That is because we can not delete information fully from our side, or control which personal information is stored on Skype.

From now on, all support info should be directed to [email protected] to relate tickets.
For priority support, use the on-call number that we’ve provided or our business number during office hours.
Cellphone / text messages to individual technicians are not monitored for support errands and all information will be disregarded for your security.
For example, user information, passwords or other critical details that should not be sent on insecure channels.

This will be in effect until we’ve found a suitable and secure communications system for tickets as a complement to emails.

——————————————-
When contacting Adminor via Facebook or similar, please be aware of what content you send to us. Do not send personal information via the chat. There is no option for us to delete it fully on Facebooks servers.

03:30 Network dip

Small network dip lasting roughly 1 to 3min while BGP sessions re-established themselves. Cause is being investigated.

04:15 Kort nätverksdip

Vid 04:15-tiden så noterades en nätverksdip.
Troligtvis ett problem hos uppström, men vi undersöker exakt orsak.

Planned Work Notification / Driftunderhåll 2 december (UPDATE)

On the night to 2017-12-02 00:01 CET STOKAB will perform a Comprehensive planned work in Stockholm. Please note that only services in and connected through Stockholm will be directly affected by this work.
Your affected and PROTECTED circuits are listed below.

Type: Comprehensive
Initiated by: Supplier
Type of work: Maintenance
Location: Stockholm

Additional information:

Our subprovider is rebuilding a major network node in Stockholm.
They need to move 75 fibercables to accomplish this.
This is therefore a comprehensive work.
Outage for individual client circuits will be from several hours up to 7 hours.
We apologies for any inconvenience this may cause.

Affected services:
ADMINOR DATACENTER HAMMARBY
Note: Services that are marked as PROTECTED at the end of it’s row is not expected to be affected by this work, else they are affected by this work.

Earliest start: 2017-12-02 00:01 (CET)
Latest finish: 2017-12-02 07:00 (CET)
Estimated downtime: up to 7 hours

If you have any questions regarding this planned work please contact us at [email protected] and refer to your customer number and this work notification.