Safe From Heartbleed Bug

Heartbleed BugIn the past few days there has been considerable worldwide interest in the “Heartbleed Bug” – a recently discovered vulnerability in the OpenSSL encryption library. This library provides the HTTPS encryption capability that secures much of the world’s Internet traffic.

This bug is serious, as it potentially allows the encrypted communications from an affected server to be decrypted by a third party without the knowledge or consent of the server owner.

ProjectHut Not Affected

We are happy to reassure all our customers that ProjectHut is NOT affected by the Heartbleed Bug.

This vulnerability only affects specific versions of OpenSSL, and neither our customer account servers, the main ProjectHut website or customer Member Center have an affected version installed.

As such, all customers can rest assured that none of their account data or personal information has in any way been revealed as a result of this bug.

  0 COMMENTS
Continue Readingred arrow

How to backup your SVN, Git and Trac data

With more and more data being created every day and more of our business and lives moving into the online world, many people underestimate the importance of maintaining effective backups of their data.

It is important to consider: what would the cost be to you, in terms of both time and monetary value, if your computer crashed or was stolen and you lost all your work?

Many computer users may be familiar with the Backup Rule Of Three, otherwise known as the 3-2-1 Rule. Briefly stated:

3 copies of anything you care about – Two isn’t enough if it’s important.
2 different formats – Example: Dropbox+DVDs or Hard Drive+Memory Stick or CD+Crash Plan, or more.
1 off-site backup – If the house burns down, how will you get your memories back?

At ProjectHut, we provide the tools to help you meet the 3-2-1 Rule and keep your critical data safe.

Multiple Backups with ProjectHut

By hosting your SVN, Git and Trac data at ProjectHut, you immediately gain the benefit of one off-site backup. Should your local computer be lost or destroyed, your data will be safe on our servers.

In addition, we also internally maintain our own off-site backups of your data, kept in a separate datacenter from our customer account servers. These backups are synchronised hourly, and provide a second level of protection, in the unlikely event that any of our servers should suffer catastrophic failure.

We also offer a third level of backup protection, in the form of a downloadable daily account archive.

ProjectHut daily account archive

The downloadable account archive contains the following information:

  • All SVN repository data
  • All Git repository data
  • All Trac project data
  • All Users and Groups
  • All permission configuration information for SVN, Git and Trac


These backups are generated by running the appropriate administrative tools for each type of data. For example, for SVN repositories, the backups are generated using the svnadmin hotcopy command, while Trac backups are generated using the trac-admin hotcopy command.

Git backups are generated by copying the refs and packed-refs files first, followed by the remainder of the repository files in order to prevent the chance of data loss (as per this discussion on the Git mailing list).

Once generated, the backups are archived and compressed as a .tar.gz file.

Should you ever need to restore this data locally, or move your data to another service, you can simply expand this archive and all your repository data will be ready to use!

How to create the backup archive

The daily archive is an optional feature of your ProjectHut account. To enable it, simply follow these steps:

  1. Login to the ProjectHut Control Panel (i.e. the admin/ area of your account).
  2. Click on the Archive Settings menu.
  3. Here you will see that the archive is disabled. Enable it by clicking on  the Click here to enable daily archive button. View the Archive Settings
  4. The archive feature will now be enabled. Please note: it may take up to 24 hours for the first archive to be generated. The archive will then be updated automatically every day unless the archive feature is disabled. Waiting for the archive to be generated.
  5. When the archive has been generated, a download link will be provided on the Archive Settings page. The daily account archive is ready for download
  6. Likewise, for your convenience, this link is also made available on the main Account Summary page in the right-hand Information sidebar. The account archive is available from the Account Summary page.

With this link, you can now download the backup archive and store it somewhere for safe-keeping. We recommend downloading the archive regularly and storing it in a third location separate to your computer, either on a separate medium such as flash drive or CD/DVD, or at a third-party backup provider, such as Dropbox or Amazon S3.

The daily backup archive file is also made available in your WebDAV area, so you can also download it by simply copying the file using your WebDAV client. Refer to our WebDAV instructions for more information on how to connect using WebDAV.

For security reasons, in order to download the Archive you will need to provide valid User credentials. By default, all registered Users have access to the WebDAV area. You can further restrict access to just a subset of your Users by using the WebDAV Users menu.

Conclusion

By leveraging the features provided in your ProjectHut account, it is a easy and straightforward process to maintain the best-practice 3-2-1 backups of your critical project data. We highly recommend that all users enable and make use of the daily archive feature as a core part of their business resilience practice.

  0 COMMENTS
Continue Readingred arrow
Resources