Castle's iyonix.com is back online after a brief outage that started around the early hours of Thursday morning. The downtime prevented visitors from accessing the Iyonix website and disrupted the online IyoWatch system, which provides software updates to Iyonix users.
After a brief announcement on the matter from Castle's John Ballance to the Iyonix user mailing list, there were initially fears that iyonix.com had been deliberately targeted. However, it turns out that the particular Linux server hosting iyonix.com (among other websites), managed by ISP XCalibre, had been compromised following a "malicious attack" and was brought down until the security hole had been fixed.
As Iyonix.com provides e-commerce facilities for people wishing to purchase XScale powered Iyonixes online, we contacted Castle to see how serious the compromise was. John Ballance reassured us that "no customer sensitive data is held" on the iyonix.com server and that "all customer sensitive transactions take place on a separate https server (actually with another ISP too)".
JessFranco: Castle seemed to have a fair amount of rackmounted kit inside their Framlingham HQ last time I looked, but I only peeped round the door so didn't work out what it was used for, nor how it was connected to the outside world!
I'm sure they can already justify a leased line in Framlingham (if they don't have one already), but may still prefer to host things elsewhere anyway.
If I'd been organising it, I wouldn't have chosen Smartgroups (or eGroups) to host the Iyonix mailing list either. But that's just another examples - different people implement services in different ways, not always dependent on what they can afford or justify.
(Lots of people believe that having your server hosted at a dedicated hosting centre is the best way. But my scepticism about this has been growing for some years. Especially true when bandwidth requirements aren't particularly large).