The mystery – Problem with spoof and SPF

The Issue:
Many of our clients in our shared hosting server in Texas have been complaining that emails to have been bouncing. We are happy to tell you that the issue has been finally fixed.

The Explanation:
We made sure to whitelist that specific server with MSN but after doing so, the issue persisted!
Further investigating the mail queue, it appears that there was mail spoofing going on under one of the accounts with someone attempting to send email as several different addresses. To help alleviate this issue, we have enabled SPF and DKIM for that user so that users will not be able to spoof email as sent from it anymore.

The Resolution:
You will need to create an SPF record to resolve the issue fully. An SPF record is an entry added to the DNS for a specific domain. This record verifies that a user has permission to send mail from a given domain, preventing email from being “spoofed” for your domain.

This method is intended for users who want to ensure that the SPF record is tailored to their preferences.

a. Log into your control panel (cPanel).
b. In the Domains section, click the DNS Zone Editor icon. (If you do not have this icon, you cannot create this record in cPanel. Please open a support ticket at to request this icon.)
c. Select the desired domain name from the drop-down menu.
d. Under Add a Record, enter the following information:
Name: type your domain name (without the www)
TTL: 14400
Type: TXT
Address: Use an SPF wizard to generate the code
e. Click Add Record.

MagicSpam in ALL our Shared Hosting Servers

In an effort to provide the best service to our clients, we have now install MagicSpam in all of our shared hosting servers. MagicSpam is a more sophisticated approach to analyze incoming messages. Take a look at the video below to see how it works.

As always, we are still doing FREE backups in all the same servers, so that you know that your data is always safe with us, visit us at

MagicSpam in Action

80% off your first month on any shared hosting plan

During the 2012 summer you can save 80% off your first month on any of our shared hosting plans.

This will allow you to discover the difference with Mindraven Hosting for a low price for the first month. Enjoy the fact that you won’t be stuck on a server with hundreds of other people. Take us for a test drive!

Just use the code SUMMER2012.

Free UBB Forum Installation

We are happy to announce than we offer free UBB installation with all new orders and for our current customers. You can order the free installation when you create your new order or simply in creating a new ticket in our support system to see your forum installed without any fees.

This offer is now active and for life !!!! HAPPY NEW YEARS

New Knowledgebase – Over 160 Articles !

We announce today that we have added about 160 new articles to our knowledge-base to help you in the management of your account with us.

The knowledgebase contains general information that will help you to manage your website, how to navigate in CPanel or how to create a database, configure e-mail addresses etc..

You can find the knowledgebase in your client account, at this address:

If you feel that we are missing something or that something is not right, feel free to contact us at hello [@] mindraven [.] com

Thank you

The Administration
Mindraven Hosting

Migration is now completed

Hello to all our customers,

This message is to inform you that we have completed the migration of servers Onyx and Ruby on new facility to increase the stability and performance of our existing facilities.

You can now enjoy a 100% guaranteed uptime on our network and take advantage of less slowdown during peak hours.

In addition, all our new servers are installed with cPanel and Installatron, an automatic software installation for scripts cms, blog, forum and much more.

SSL Certificates will no longer be available free of charge for new orders, however, all users who already have an SSL certificate, will be eligible throughout their subscription.

For customers that were hosted on the server Onyx, please note if your domain name pointed to &, no configuration is required on your part. Your site is now updated and points to our new facility. For those who use A Record entries, you have 7 days to contact us to update your A Records before we close definitely the old server Onyx.

If you need further assistance, please feel free to create a ticket in your client area and one of our level 3 technicians will be happy to assist you.


The Administration, Mindraven

90% off your first month on any shared hosting plan

During the month of August you can save 90% off your first month on any of our shared hosting plans.

This will allow you to discover the difference with Mindraven Hosting for as little as $0.99 for the first month. Enjoy the fact that you won’t be stuck on a server with hundreds of other people.

Just use the code TRYMINDRAVEN.

Free Hosting Giveaways

Periodically we will be giving away 3 months of our Gold Hosting for free. These giveaways will be done on Facebook and Twitter, so make sure you follow us and keep an eye out for your chance.

These contests will be quick and easy. Just follow us on the respective site and share or retweet when it comes up and you’ll be entered to win.

Why are we doing this? We’d like more people to get a chance to see what it’s like to be with a hosting company that doesn’t oversell their services, so your site will always be fast and responsive, with excellent support to go along with it.

10% off all shared hosting plans for life

During the month of October you can get 10% off of all our shared hosting plans for life. This includes any payment term, monthly, yearly, etc. Just use the coupon code OCTOBERFEST when ordering.

OpenX Exploit

If you’re running the openX ad server and you’re not running the latest version, I’d recommend doing an upgrade asap. There is a pretty bad exploit available and it’s already hitting some big sites.

The exploit is done via the Open Flash Chart 2 module. There is no check in place to make sure users should be uploading the files in that directory. If you can’t upgrade at this time then what you’ll want to do is delete admin/plugins/videoReport/lib/ofc2/ofc_upload_image.php if you don’t use the module. Most people don’t use the module, and even if you do, I’d delete it anyway until you can upgrade.

There are a variety of ways to exploit this, but one thing you can check is look inside your admin/plugins/videoReport/lib/tmp-upload-images directory. If you see some sort of .php script in there, that’s a bad sign.

We’ve already patched 3 client servers that have had a php shell script uploaded into that directory.

An update on this. Just updating your version isn’t going to fix your problem if you’ve already been exploited. You’ll want to check the append/prepend for all of your banners and zones, since more than likely they’ve been noodling around in there to cause problems. You can look at your audit log to see if that’s happened.

Tags: , ,