Jump to content


Member Since 24 Feb 2009
Offline Last Active Sep 29 2018 01:03 PM

#6695 Degraded performance - P1, S1, S4

Posted by Scott on 19 November 2017 - 02:26 AM

For several hours in the evening of Nov 18, three of our servers experienced high load, degraded performance, and intermittent issues with web requests. We investigated the issues internally for several hours and escalated to several of our software vendors for assistance in locating the root cause. The problem was caused by a network health metric we were previously not monitoring. At this time, all servers are working normally and the outage is resolved.


Event start time: 7:28pm ET | Nov 18

Resolved time: 1:11am ET | Nov 19

Impacted servers: P1, S1, S4



Additional details may be available at a later time. The staff who have more technical details are currently getting some much needed sleep.


We apologize for any inconvenience the outage may have caused and appreciate the patience and reports so many of you shared with us. As always, please feel free to ask any general questions here. If your question is specific to your account, please direct it to our support department by email or ticket.

  • 1

#6179 Let's Encrypt installation

Posted by Scott on 27 June 2016 - 10:14 AM

Choose both domains when issuing the certificate. There is no reason not too. It also means both domains will work with SSL, even if someone types in the other domain and needs to be redirected to the "right" one.
  • 1

#6151 P1 - MySQL Restart Scheduled [Estimated 5 minutes or less MySQL Downtime] 11...

Posted by Scott on 08 June 2016 - 06:54 PM

Thanks for the heads up! When you say "this evening," do you have a time range in mind?


The plan is tentatively 11pm eastern.

  • 1

#6049 (free) Let's Encrypt SSL certs now available

Posted by Scott on 19 April 2016 - 06:28 PM

Today, we've deployed a new cPanel plugin which makes it easier (and cheaper) than ever to have SSL/TLS encryption on every website. Open your cPanel, look for the "Let's Encrypt SSL" icon, and follow the directions there to get your own free SSL certificates for any domains setup on your account.


This is available on all shared, premium, and reseller servers. Any VPS clients interested in this can visit https://letsencrypt-for-cpanel.com/or contact our sales department for more information.



You will need to enable this feature within a feature list for your hosting packages. The default feature list has it disabled (we don't want to force this on you, in case you have a lucrative SSL business going).


One more thing, resellers: We have had a report that some accounts may have bandwidth quota issues when you change the feature list for their plan. Please double check none of your clients are suddenly offline due to quota issues after making the change. I should also note that we don't suggest leaving people on modified accounts with a non-modified plan, it can cause issues. Best to take them off the plan for the month, then reset on the first of next month.

If you have any issues with this, open a ticket and we are happy to help or explain. It's a bit tough explain.



For more information on the Let's Encrypt certificate authority and service, please visit:



General questions can be posted here, as always.

Please direct account specific questions, or any questions with private information, to our support team.

  • 1

#5987 S1 Server - Random Lag/Inaccessibility + Short Outage

Posted by Scott on 23 March 2016 - 10:53 PM

S1 is now back online and handling requests "normally." The reboot was initially meant to correct a configuration issue, which we are now monitoring to see if the previous stability problems are resolved. I should also note that S1 may be slower for the next 10 or 20 minutes, as most servers of this size are when they come back online.

  • 1

#5960 S1 Server - Random Lag/Inaccessibility + Short Outage

Posted by Scott on 21 March 2016 - 09:31 PM

I couldn't have been happier back when I was on Hermes...barely ever had a problem if ever...but ever since the migration it's just not been the same.


As the saying goes, "when it rains, it pours," and it seems El Nino has reached MDDHosting... so to speak. We recognize all of the issues have taken us below our standards and promise we are working to get everyone back to normal as soon as possible. I do want to apologize for the problems and thank you for your patience while we get everything fixed up.


Please don't hesitate to open a support ticket if you find your sites aren't working as expected.

  • 1

#4633 Upgrading to PHP 5.4 and MySQL 5.5 across all servers.

Posted by Scott on 13 August 2013 - 11:05 AM

I know this is a stupid question, but I recall some time ago (and probably on a previous host) there was an option in cpanel to use an earlier php version if the new one gave us issues. Is that going to be an option by any chance?


Just trying to plan ahead ;)


It's something we are researching, however we're not yet decided. We do have some concerns that need to be addressed before we would make it available.

  • 1

#4272 Extremely Large WordPress WP-Admin Brute Force Attacks

Posted by Scott on 12 April 2013 - 08:06 AM

I've started using "Limit Login Attempts" plugin and set it to 720 hours lockout which seems to bee helping. I have also added "Login Alert" which sends me an email as soon as anyone logs-in.

This kind of plugin may not be able to mitigate this type of attack. Because the attack is coming from such a huge number of IPs, it is very difficult for a single site to detect and block one of the malicious IPs. It may be possible for it to disable the username being attacked, but that would seem somewhat unusual and would interfere with your ability to access the site.

These kinds of plugins also tend to be very resource intensive and are regularly responsible for slowing down a clients website.

Before I totally lose it, let me ask this one question: why is this brute force attack a problem if the response to a failed WordPress login is noncommittal? The error response doesn't tell you whether the user name OR password was the problem. So, changing the user name gives an attack the same information as not changing the user name, thus it doesn't stop the attack.

Please explain.

The attack is attempting to brute force / guess the password for the admin user of any WordPress installation it can find. Since the admin username is the default in all new WP installs, many users make use of it or have not removed it from their site. Changing the username forces the attack to guess the username (which it isn't trying to do, to our knowledge) AND the password, which makes it much, much harder for your access details to be guessed when they do not already know a username that possibly works.
  • 1

#4125 This is probably not the site you are looking for!

Posted by Scott on 28 January 2013 - 08:30 AM

Try opening cPanel with http://www.your-domain.com/cpanel and it should redirect you to the correct location with no errors or warnings.
  • 1

#3803 Does the smallest shared cope well with Xenforo

Posted by Scott on 25 July 2012 - 03:16 PM

One more question. What happens if I pay in advance for a year then need to upgrade during that year?

In that case, we would apply a prorated credit to the upgraded plan.
  • 1

#3797 Does the smallest shared cope well with Xenforo

Posted by Scott on 23 July 2012 - 05:21 PM

We typically suggest starting with the basic plan and upgrading as needed. All of shared plans would handle it just as well, so it really comes down to traffic, bandwidth and storage. If you have specifics on visitors and current stats, contact our sales department with that info.
  • 1

#3361 Redesign site and move to another control panel question

Posted by Scott on 12 December 2011 - 01:10 PM

I would suggest using a subdomain or different add-on domain to develop the new site. Using two accounts like you describe opens a can of worms that makes my head hurt.
  • 1

#3032 Connection Reset Error on Fresco

Posted by Scott on 26 August 2011 - 11:02 AM

There are a lot of possible causes for this. I would suggest opening a tech support ticket so we can see your account's history and identify what is going on.
  • 1

#1808 Why You Should Never Search For Free WordPress Themes in Google or Anywhere Else

Posted by Scott on 13 January 2011 - 11:19 AM

Wow... That's surprising! Fortunately for me, I only download paid themes and free themes from Wordpress.org. :)

Even with that, you still might want to run a plugin called Theme Authenticity Checker (http://wordpress.org...nd/plugins/tac/) to ensure your themes are clean.
  • 1

#1805 Why You Should Never Search For Free WordPress Themes in Google or Anywhere Else

Posted by Scott on 12 January 2011 - 07:51 PM

Hey everyone,

WordPress is a popular blogging and CMS platform in use by many websites on the internet. If you are using WordPress, or are thinking about using it, please read through this awesome article that highlights the potential dangers of getting free themes from untrusted sources. Of course, installing updates, patches, themes, plugins, or anything else from an untrusted source is rarely a good idea, but it never hurts to see exactly what can happen.

So without further ramblings from me, here is the link to the article:

  • 1