MonsterMegs Now Offers Free Let’s Encrypt SSL Certificates

Today we are happy to announce that we are one of the first cpanel web hosting providers to provide free Let’s Encrypt SSL Certificates directly from your cpanel, on all our hosting services. Those of you that may now be familiar with Let’s Encrypt’s mission, the project aims to make encrypted connections in the World Wide Web free and available to all. By getting rid of payment, web server configuration, validation emails and dealing with expired certificates it is meant to significantly lower the complexity of setting up and maintaining TLS encryption.

So what does all this mean? Well, in layman’s terms, you can now install a free browser-trusted certificate on any domain or subdomain in your account with just a few clicks.… Read the rest

OpenSSL (Heartbleed) Patched on all MonsterMegs Servers

As of 9:30AM (CST) on April 8, 2014, all MonsterMegs servers vulnerable to CVE-2014-0160 (Heartbleed) OpenSSL security bug have been patched. This security vulnerability is a widespread issue affecting operating systems globally and not an issue specific to MonsterMegs. OpenSSL is a toolkit which implements SSL/TLS protocols as well as general cryptography for various operating systems. This vulnerability can provide a back door for attackers to gain access to confidential information.

CentOS/Cloudlinux released an official OpenSSL patch removing the recently discovered vulnerabilities. OpenSSL was upgraded seamlessly. However, all services linked against the older vulnerable version of OpenSSL had to be restarted to apply the newly patched OpenSSL version.… Read the rest