Beza.net Customer Notification

Upcoming Maintenance Outage

Schedule Maintenance Outage

Maintenance Dates:	January 20, 2007 January 21, 2007
Duration:	1 to 3 hours
Start Time:	05:00 GMT (01:00 a.m. EST)
End Time:	08:00 GMT (03:00 a.m. EST)
Impact of Work:	Loss of Connectivity

In an effort to ensure all Beza.net operations are in excellent working conditions for 2007, we will be performing several critical maintenance operations on all Beza.net services. We have attempted to schedule all work during off-peak hours to decrease the impact on all customers.

Please see below for more details:

01/20/2007: New Security Hardware Install

We will be replacing our existing perimeter security services with newer hardware to ensure we continue to adequately protect your data and our networks from Internet security threats. To ensure the outage is brief, all network operations will be re-routed through our fully redundant perimeter security services. The switch between the live security services and the redundant security services should be less than 1 minute of outage in connectivity. We have asked for a 3 hour window to resolve any unforeseen issue(s).

01/21/2007: Major OS Update

Beza.net will be performing a major OS update to ensure we continue to meet our customers needs in 2007. This update will affect all services (ie ftp, email, web, etc.) as it runs on each server to update the operating system with newer capabilities. We have provided a 3 hour window for this update and we hope it should be completed in about 2 hrs.

As always, you can check Beza.net Network Status by visiting http://www.bezahosts.net/networkstatus

Although the maintenance window is 3 hours in duration for each date, this is only precautionary as the actual time to perform the maintenance should less.

We apologize for any inconvenience this may cause to our customers. As always, we have scheduled this maintenance during off-peak hours to decrease the impact on all customers. Please feel free to contact us if you have any questions or concerns.

Thank you for your understanding and cooperation!

Yours truly,

Network Operation Center
Beza.net
Phone: (202) 822-6800
Toll Free: (800) 505-9774
Web site: http://www.beza.net

Beza.net Notice: Scheduled Maintenance 08/05/2006

If you cannot view this e-mail, please click here.

-:: Schedule Maintenance Outage ::-

Maintenance Date: August 05, 2006

Duration: 1 to 5 hours

Start Time: 03:00 GMT (10:00 p.m. EST)

End Time: 08:00 GMT (3:00 a.m. EST)

Impact of Work: Loss of Connectivity

We will be performing maintenance on August 5, 2006 between the hours of 03:00 - 08:00 GMT (10:00 p.m. - 3:00 a.m. EST). This maintenance will address a software bug in the current IOS, which is related to the intermittent routing loops experienced on one of our main connection hops between North America (Virginia, USA) and Europe (London, UK).

This maintenance will affect all services (web, mail, dns, etc.). Although the maintenance window is 5 hours in duration, this is only precautionary as the actual time to perform this maintenance should be no more than 1 hour.

Thank you for your understanding and cooperation!

Yours truly,

Admin
Beza.net
Phone: (202) 822-6800
Toll Free: (800) 505-9774
Website: http://www.beza.net

Beza.net Security Alert: Spambots & Auto-Responders

Beza.Net Security Alert Feb 27, 2006: Spambots & Autorepsonder

-:: Auto-Responder Security Alert ::-

Spambots Attacking Auto-Responders

Dear Beza.Net Customer:

In an effort to keep customers informed about new threats, Beza.net is releasing this security alert to all customers. Please read this entire notice to see how Beza.net is protecting your account and if applicable, please follow the recommendations listed below.

Overview:

At Beza.net, we are constantly working on behalf of our customers to ensure their account is safe and secure from hackers, spammers, viruses, maleware, etc. Recently, there has been a large increase of spam bots attacking e-mail auto-responders on the Internet.

Details:

E-mail auto-responders respond indiscriminately to forged and legitimate email. Spam and virus messages almost always contain forged ‘From:’ or ‘Reply to:’ email addresses of innocent third party victims.

When an auto-responder receives one of these forged messages, the auto-responder replies back to the forged ‘From:’ or ‘Reply to:’ address. Because of this, the auto-responder is now redistributing spammer’s junk mail to innocent third parties.

As a result, the innocent third party mail service provider (i.e. AOL, EarthLink, Yahoo, etc.) can blacklist your domain on the Internet. Once a domain is blacklisted, the majority of mail servers will not accept any further emails Beza.net sends out on your behalf and/or your domain.

In extreme cases, the third party victim’s mail server can get “bounce-bombed" with misdirected mail, preventing them from receiving legitimate mail. When this happens, the third party victim’s Internet Service Provider (i.e. AOL, Bellsouth, EarthLink, Verizon, Yahoo, etc.) can take legal actions against you and/or your company if you are working on behalf of an employer.

Actions Taken:

In an effort to protect all customers from having their domains blacklisted and/or legal actions brought by third party victims due to this weakness of auto-responders redirecting spam messages to forged ‘From:’ or ‘Reply to:’ addresses, Beza.net has temporarily disabled auto-responders for all email accounts.

Recommendations:

There are several recommendations to customers below based on traditional legitimate auto-responder usage:

Vacation Auto-Responders: Typically used when someone is going away on vacation or is going to be out of the office without access to their e-mail. Beza.net recommends customers to either inform your normal correspondents of your absence before you depart and/or let a co-worker answer your email in your absence. If you wish to dispense information via email, respond directly to the sender after you have verified that it is NOT a spam message.

Receipt Confirmation Auto-Responders: Typically used to inform sender that their message has been received and will be responded too shortly. Beza.net recommends customers to instead, review each and every message incoming to their mailbox and ONLY respond to ones which seem not to be spam.

Note:

Beza.net encourages customers to report all spam messages to our Abuse Department. Please forward the entire spam message with full headers to abuse@beza.net.

Never report spam messages to your personal Internet Service Provider (i.e. AOL, EarthLink, Yahoo, etc.) which Beza.net forwards from your email account hosted at Beza.net. Reporting spam messages we forward per your forwarding rule from your Beza.net web hosting account to your ISP will only result in Beza.net getting blocked by your ISP who will never accept any future emails (legitimate and/or possible forwarded spam messages) from reaching you.

If you are unsure where the spam message originated, contact us and we can help you.

As always, if any customer has any questions or concerns, please don’t hesitate to contact us 24/7 via email, live chat or by phone. All of us here at Beza.net are dedicated to you and your business success.

Thank you,

Admin
System Integrity and Security Dept
Beza, Inc.
Phone: 1-202-822-6800
Toll Free: 1-800-505-9774
Website: http://www.beza.net

Beza.net Customer Notification: Schedule Maintenance on Linux Server Cluster

Beza.Net: Security Notice 112205

-:: Schedule Maintenance on Linux Server Cluster ::-

Maintenance Date: December 01, 2005

Offline Duration: 15 minutes

Start Time: 1:00 a.m. EST (0500 GMT)

End Time: 3:00 a.m. EST (0700 GMT)

We will be performing a simple memory upgrade on all linux servers which will result in doubling the amount of memory currently on each server. This update will require each server to go offline for about 15 minutes between 1:00 a.m. thru 3:00 a.m. EST.

We apologize for any inconvenience this may cause to our customers. As always, we have scheduled this upgrade during off-peak hours to decrease the impact on all customers. Please feel free to contact us if you have any questions or concerns.

Thank you for your understanding and cooperation!

Yours truly,

Admin
Beza.net
Phone: (800) 505-9774
Website: http://www.beza.net

Beza.net Customer Alert: Worm/Virus Alert

Beza.Net: Security Notice 112205

-:: Worm / Virus Alert ::-

New Sober worm pretends to be an email from FBI or CIA

Dear Beza.Net Customer:

In an effort to keep customers informed about new threats, Beza.net is releasing this security alert to all customers. Currently there is a worm spreading via e-mail attachments which is claiming to be from an FBI or CIA investigator.

In the last four hours, the worm has accounted for over 61% of all viruses reported worldwide making it the most prevalent virus out there. The FBI is so concerned about the messages that it has issued a warning on its website (go here to read more).

The new version of the Sober worm arrives as an email attachment, with the following message body:

Dear Sir/Madam,

We have logged your IP-address on more than 30 illegal Websites.

Important: Please answer our questions! The list of questions are attached.

Yours faithfully,
Steven Allison
Federal Bureau of Investigation-FBI-
935 Pennsylvania Avenue, NW , Room 3220
Washington , DC 20535
Phone: (202) 324-30000

Sometimes the emails claim to come from the same investigator, but at the CIA. If the attached file is run, the worm scans the your hard drive for other email addresses and sends itself out to other computers to infect.

In a statement, the FBI has urged users who receive the viral emails to report them to the Internet Crime Complaint Center at www.ic3.gov.

Example of how to enable antivirus for all e-mail accounts under a domain

We urge all Beza.net customers to enable AntiVirus settings for all of their user's mailboxes to ensure all e-mails download via Beza.net mail servers get scanned by our antivirus solution.

As always, NEVER open attachments especially from someone you do not know. Some worms/viruses are so sophisticated that they send copies of themselves' using an e-mail address in an infected user's computer, so the email can come from someone you know.

Also, make sure your computer has AntiVirus software and it's regularly updated. Setup your computer antivirus to check for updates daily. Consult your antivirus provider on how to do this.

We hope this alert has been helpful. Please feel free to contact us if you have any questions or concerns about this alert.

All of us here are dedicated to you and your business success.

Thank you,

Admin
System Security
Beza.Net
Phone: (202) 822-6800
Website: http://www.beza.net

Beza.net Security Advisory: phpBB

Beza.Net: Security Notice 102805

-:: Security Advisory ::-

The following message ONLY applies to customers
who use phpBB to run a forum on their web site.

Dear Beza.Net Customer:

In an effort to keep customers informed about new security threats affecting their web site, Beza.net is releasing this security advisory to all site operators who utilize the open-source phpBB forum application. All phpBB site operators must perform the following security steps to prevent malicious users from performing attacks on web site visitors and gaining full access to a phpBB web site:

Step 1: All site owners MUST upgrade to the current release of phpBB. Please go here to download the latest release of phpBB. Site owners who wish to have Beza.net staff perform the upgrade, please see below for more information.

Step 2: Once you have upgraded to the latest phpBB, you must disable avatar functionality to prevent an avatar script insertion vulnerability. This vulnerability affects all phpBB releases including the current release 2.0.17. Click here to view a how-to graphic for more info.

phpBB site owners must perform these steps as soon as possible to prevent serious security compromise of their web site. This is a mandatory update for all phpBB site operators.

For more information about the various security issues with phpBB, please see the following security notices:

Date	Security Advisory
Oct 24, 2005:	phpBB Avatar Script Insertion Vulnerability
Sep 21, 2005:	phpBB Remote Avatar Information Disclosure Weakness
Jul 21, 2005:	phpBB BBcode "url" Script Insertion Vulnerability
Jun 28, 2005:	phpBB "highlight" PHP Code Execution and Script Insertion
May 05, 2005:	phpBB BBcode Script Insertion Vulnerability
Mar 08, 2005:	phpBB Autologin Security Bypass Vulnerability
Mar 07, 2005:	phpBB Signature Script Insertion Vulnerability
Feb 28, 2005:	phpBB "autologinid" Security Bypass
Feb 22, 2005:	phpBB Avatar Functions Information Disclosure and Deletion
Jan 03, 2005:	phpBB Multiple Vulnerabilities
All Notices:	phpBB Security notices for phpBB 1.x and 2.x

As a courtesy to Beza.net customers who utilize a non-MODed phpBB on their web site, Beza.net offers an annual security maintenance plan for a nominal fee of $25/year. This fee covers phpBB site operators with security fixes/updates for a 12-month period. If you wish to subscribe to this service, please submit a support trouble ticket from within your Beza.net account Control Panel requesting "phpBB Annual Maintenance for $25/yr" service.

Failure to follow the above security advisories can result in your web site being hacked and taken over by hackers. Furthermore, any Beza.net customer who fails to take corrective measures based on the above advisories will be found to be in contempt of Beza.net Terms of Service Agreement and Acceptable Use Policy. This is necessary to ensure Beza.net network and servers are safe and secure for all to use.

Please contact us if you have any questions or concerns about this security advisory.

Thank you,

Admin
System Security
Beza.Net
Phone: (800) 505-9774
Website: http://www.beza.net

Beza Acquires Crankit Announcement

Beza, Inc. Acquires Crankit, Inc.

is now

Beza Inc, the small and medium business hosting expert, acquires Crankit Inc

September 28, 2005 – Beza Inc. (Beza.net), a leader in the web hosting solutions, would like to announce the successful acquisition of Crankit Inc. (crankithosting.net). Beza.net along with our many product offerings, lower prices and variety of options is extremely well equipped to service all of our newly acquired customers with top-notch service & support. This acquisition is a win win situation for all acquired customers and Beza.net.

Every customer can rest assured their current plan fees will continue to be honored at Beza.net. In some cases customers can even save money with a Beza.net plan. This acquisition will be transparent to all customers. There is nothing new to learn or setup. Everything will continue to work as it does now.

In the coming days, all Crankit customers will be migrated to Beza.net data center which houses top of the line Dell servers, expanded bandwidth, Intrusion Detection/Prevention Systems and much more. To ensure all customers are migrated as smoothly as possible, we will continue to operate the previous facility until each customer is fully migrated and tested.

Please take a moment to learn more about Beza.net product offerings and services by visiting our website at http://www.beza.net

If there are any questions or concerns regarding the new company and/or the migration, please feel free to contact us. We look forward to building a long-term relationship with each and every customer based on excellence, our dedication to you and your business success.

Sincerely,

Beza, Inc.
Phone: (800) 505-9774
Website: http://www.beza.net

Beza.Net Account Security

( Unsubscribe instructions are located at the end of this email )

Beza.Net Customer Account Security

Dear Beza.net Customers:

As you might be aware, we take security of your account and your personal information very seriously. Please take a few moments to read this e-mail and follow the recommendations listed below to better protect your account:

1. Control Panel Login/Password: (Click here to see a how-to video on changing your CP Password)

Do NOT use the same login/password for your email or FTP account as you do to access the Control Panel. The Control Panel uses SSL encryption to secure your login info while email and FTP send your login info in plain-text without encryption.

2. Good Passwords:

Your passwords should be at least 6-8 characters long and should not be easily guessed. Try to mix letters & numbers to make your password even harder for someone to guess. For example, take a word like 'summer' and mix it up with some numbers in between: s4u6m8m2er . Even better is to mix it up with some lower and upper case letters like this: s4u6M8m2Er

3. E-Mail Login/Password: (Click here to see video on Changing your E-Mail Password)

Do NOT use the same login/password for multiple email accounts. Also, ensure you do not use the same login/password to access your Beza.net email account(s) as you do to access other email accounts like AOL, hotmail, yahoo, etc.

4. For Your Eyes Only:

Never disclose any of your login/password to anyone. Furthermore, Beza.net staff will NEVER call or email you asking for your login/password.

5. Change Your Login/Password:

And finally, try to change your password every 3 to 6 months.

If there are any questions, please don't hesitate to contact us via email or phone so we can better help you keep your account safe and secure. Thank you for your time!

Thank you,

AE
Beza.Net
(800) 505-9774
http://www.beza.net

Beza.Net Customer Notification Message

The following message ONLY applies to customers
who use phpBB to run a forum on their web site.

Dear Beza.Net Customer:

We would like to inform phpBB web site operators that on Tuesday, March 01, 2005, a mandatory security update had to be performed on your web site installation of the open-source phpBB forum application.

This update was as a result of the phpBB Group releasing yet another security fix to correct possible exploit of their code. This is the third security fix in under a month (2.0.11 - 2.0.12 - 2.0.13).

This was a mandatory update and we apologize for not providing you with notice prior to performing this update. Unfortunately, we felt the priority was to secure your web site and then notifying you of our action.

For more information on the problem with phpBB and the fix, please see the phpBB web site announcements page.

Please contact us if you have any questions about this or any other matter.

Thank you,

Admin
Beza.Net
(800) 505-9774
http://www.beza.net