Posts Tagged 'Account'

September 10, 2012

Creating a Usable, Memorable and Secure Password

When I was young, I vividly remember a wise man sharing a proverb with me: "Locks are for honest people." The memory is so vivid because it completely confused me ... "If everyone was honest, there would be no need for locks," I thought, naively. As it turns out, everyone isn't honest, and if "locks keep honest people honest," they don't do anything to/for dishonest people. That paradox lingered in the back of my mind, and a few years later, I found myself using some sideways logic to justify learning the mechanics of lock picking.

I ordered my first set of lock picks (with instruction booklet) for around $10 online. When the package arrived, I scrambled to unwrap it like Ralphie unwrapped the "Red Ryder" BB gun in "A Christmas Story," and I set out to find my first lock to pick. After a few unsuccessful attempts, I turned to the previously discarded instruction booklet, and I sat down to actually learn what I was supposed to be doing. That bit of study wound up being useful; with that knowledge, I managed to pick my first lock.

I tend to collect hobbies. I also tend to shift every spare thought towards my newest obsession until whatever goal I set is accomplished. To this end, I put together a mobile lock-picking training device — the cylinder/tumbler from a dead bolt, my torq wrench wrapped with electrical tape to prevent the recurrence of blisters, and my favorite snake rake. I took this device with me everywhere, unconsciously unlocking and resetting the lock as I went about my shopping, sat in a doctor's office or walked around the block. In my mind, I was honing my skills on a mechanical challenge, but as one of my friends let me know, people who saw me playing with the lock in public would stare at me like I was a budding burglar audaciously flaunting his trade.

I spent less money on a lock picking set than I would have on a lock, and I felt like had a key to open any door. The only thing between me and the other side of a locked door in front of me was my honesty. What about the dishonest people in the world, though? They have the same access to cheap tools, and while they probably don't practice their burgling in public, can spend just as much time sharpening their skills in private. From then on, I was much more aware of the kinds of locks I bought and used to secure my valuables.

When I started getting involved in technology, I immediately noticed the similarities between physical security and digital security. When I was growing up, NBC public service announcements taught me, "Knowledge is Power," and that's even truer now than it was then. We trust technology with our information, and if someone else gets access to that information, the results can be catastrophic.

Online, the most common "hacks" and security exploits are usually easily avoidable. They're the IRL equivalent of leaving valuables on a table by an unlocked window with the thought, "The window is closed ... My stuff is secure." Some of those windows may be hard to reach, but some of them are street-level in high-traffic pedestrian areas. The most vulnerable and visible of access points: Passwords.

You've heard people tell you not to do silly things like making "1 2 3 4 5" your combination lock, and your IT team has probably gotten onto you about using "password" to log onto your company's domain, but our tendency to create simpler passwords is a response to the inherent problem that a secure password is, by its nature, hard to remember. The average Internet user probably isn't going to use pwgen or a password lockbox ... If you had a list of passwords from a given site, my guess is that you'd wind up seeing a lot more pets' names and birth years than passwords like S0L@Y#Rpr!Vcl0udN)3mblyR#Q. What people need to understand is that the "secure" password can be just as easy to remember as "Fluffy1982."

Making a *Usable* Secure Password

The process of creating a unique, usable and secure password is pretty straightforward:

  1. Start with a series of words or phrases which have a meaning to you: A quote in a movie, song lyric, title of your favorite book series, etc. For our example, let's use "SoftLayer Private Clouds, no assembly required."
  2. l33t up your phrase. To do this, you'd remove punctuation and spaces, and you'd replace a letter in the phrase with a special character. You predetermining these conversions to create a template of alterations to any string which only take minimal thought from you. In the simplest of cyphers, letters become a numbers or characters that resemble the letter: An "o" becomes a "0," "e" becomes a "3," an "a" becomes an "@," etc. In more complicated structures, a character can be different based on where it lies in the string or what less-commmon substitutions you choose to use. Our example at this point would look like this: "S0ftL@y3rPr1v@t3Cl0udsn0@ss3mblyr3qu1r3d"
  3. Right now, we have a password that would make any brute-forcing script-kiddie yearn for the Schwarts, but we're not done yet. If someone were to find our cypher and personal phrase, they may be able to figure out our password. Also, this password is too long for use in many sites with password restrictions that cap you a 16 characters. Our goal is to create a password between 15-25 characters and be prepared to make cuts when necessary.
  4. A good practice is to cut out the beginning or ending of a word. In our example (taking out the l33t substitutions for simplicity here), our phrase might look like this: "so-layer-priv-cloud-no-embly-req"
  5. When we combine the shortened password with l33t substitutions, the last trick we want to incorporate is using our Shift key. An "e" might be a "3" in a simple l33t cypher, but if we use the Shift key, the "e" becomes a "#" (Shift+"3"): "S0L@Y#Rpr!Vcl0udN)#mblyR#Q"

The main idea is that when you're "locking" your accounts with a password, you don't need the most complicated lock ever created ... You just need one that can't be picked easily. Establish a pattern of uncommon substitutions that you can use consistently across all of your sites, and you'll be able to use seemingly common phrases like "Fluffy is my dog's name" or "Neil Armstrong was an astronaut" without worrying about anyone being able to "open your window."

-Phil (@SoftLayerDevs)

October 4, 2011

The Sun Never Sets on SoftLayer

We've always set our sights globally at SoftLayer and this week we've certainly achieved some key milestones. With our data center in Singapore going LIVE, we now have a "digital gateway" for providing our unique cloud, dedicated, and managed hosting solutions to the Asia-Pacific region.

What is even more remarkable is the speed at which we are deploying our new international data centers. In only a few months, all the meticulous planning, logistics and execution were done and customers could place orders. And we're not slowing down. The trajectory path we're on has us expanding faster and farther than we ever thought possible.

Next month we're opening a new data center in Amsterdam, along with network Points of Presence (PoPs) in Amsterdam, London and Frankfurt. Each of these facilities is built and maintained by SoftLayer, and that organic growth is a huge differentiator. We didn't go out and acquire a company to expand our capabilities, and because we're doing the work on the ground, we're able to guarantee the most consistent, best possible service. Every data center - whether it's Singapore or San Jose - is exactly the same. Because of that consistency, our customers don't have to worry about whether the services in the new facilities meet their expectations, and based on the phenomenal provisioning statistics we saw on day one in Singapore, they aren't hesitating to order more.

International Expansion: Currency

Because our global expansion enables us to perform even better for the SoftLayer customers located outside of North America, we wanted to make it easier for those customers to do business with us. As of 8:01 a.m. Central Time today, we support and accept payment in 60+ currencies! This currency support allows our customers to price SoftLayer services in their native currency, and it lets them avoid those pesky exchange fees from their credit card.

Our BYOC (Cloud) and Dedicated Server order forms have been updated with a currency selection on their first page, so once you select a currency, your order form will reload with all pricing displayed in that currency. Existing customers are also able to pay for their existing servers with one-time or recurring payments in our customer portal.

Currencies Supported

ALL - Albanian lek
ARS - Argentine peso
AUD - Australian dollar
BSD - Bahamian dollar
BDT - Bangladeshi taka
BBD - Barbados dollar
BMD - Bermudian dollar
BOB - Boliviano
BZD - Belize dollar
CAD - Canadian dollar
CNY - Chinese Yuan
COP - Colombian peso
CRC - Costa Rican colon
HRK - Croatian Kuna
CZK - Czech koruna
DKK - Danish krone
DOP - Dominican peso
GTQ - Guatemalan quetzal
HNL - Honduran lempira
HKD - Hong Kong dollar
HUF - Hungarian forint
INR - Indian rupee
ILS - Israeli new sheqel
JMD - Jamaican dollar
JPY - Japanese yen
KES - Kenyan shilling
KRW - South Korean won
LBP - Lebanese pound
LVL - Latvian lats
LRD - Liberian dollar
LTL - Lithuanian litas
MOP - Macanese pataca
MYR - Malaysian ringgit
MXN - Mexican peso
MAD - Moroccan dirham
NZD - New Zealand dollar
NOK - Norwegian krone
PKR - Pakistani rupee
PEN - Peruvian Nuevo sol
PHP - Philippine peso
QAR - Qatari rial
RUB - Russian rouble
SAR - Saudi riyal
SGD - Singapore dollar
ZAR - South African rand
SEK - Swedish krona/kronor
CHF - Swiss franc
THB - Thai baht
TTD - Trinidad and Tobago dollar
AED - United Arab Emirates dirham
EGP - Egyptian pound
GBP - Pound sterling
YER - Yemeni rial
TWD - New Taiwan dollar
RON - Romanian new leu
TRY - Turkish lira
XCD - East Caribbean dollar
EUR - Euro
PLN - Polish złoty
BRL - Brazilian real

It's amazing to say that we are truly a global company operating on three continents. Our success and future growth are tied to these new international capabilities. We will move aggressively and open more data centers, so stay tuned. With our global aspirations taking flight, I'm reminded of the saying that, "the sun never sets on the British Empire."

Speaking of flights, I've got to get to the airport ... My flight to Amsterdam is leaving in a few hours.

-@gkdog

September 13, 2011

SoftLayer Features and Benefits - Automation

Features and benefits ... They're like husband and wife, horse and carriage, hammer and nails! They are inseparable and will always complement each other. I wanted to jump right into a key "features and benefits" analysis of one of the value propositions of the SoftLayer platform, but before I did, I want to make sure we are all on the same page about the difference between the two.

A feature is something prominent about a person, place or thing. It's usually something that stands out and makes whatever you're talking about stand out — for the purpose of this discussion it will be, at least. It could be something as simple as the new car you're buying having a front windshield or the house you're looking to buy having a garage. Maybe it's something a little more distinct like having your car's air conditioner stay cool and blow for 15 min after the ignition is switched to the ACC position when you turn your engine off while pumping gas. Maybe your house has a tank-less water heater. These examples are indeed real features, but the first two are more or less expected ... The last two make this particular car and this particular house stand out.

So where do the benefits come in? Benefits are features that are useful or profitable to you. With you being the operative word here. Think about it: If a feature does not provide any use to you, why would you care? Let's go back to the car with its unique A/C feature. What if you live in Greenland? Who cares that the A/C will stay on? You may not even care for the feature of having an air conditioner at all! Talk about that feature in Dallas, TX, where it has been over 100 degrees for the last 2 months and counting, and all of a sudden, this feature provides a real benefit!

It's now your cue to ask how all of this relates to hosting or, more specifically, SoftLayer.

{ ... Waiting for you to ask ... }

I am glad you asked! If you haven't noticed, SoftLayer boasts a wide array of features on our website, and I would like to point out some of the benefits that may not be apparent to everyone, starting with automation. You're probably aware that SoftLayer has one of the most robust and full featured automation platforms in the industry.

Automation

Think about the last time your IT director sent an email that went into your junk mail folder ... You happen to see it on Sunday night, and it reads, "Please stand up five test servers for a new project by the Monday morning meeting." You know that the vendors you typically use take anywhere from 3 days to 2 weeks to stand up new servers, so you wouldn't have had a problem if you saw the email a week ago when it was sent — but you didn't. So to avoid getting a smudge on your perfect employee record, you stumble across softlayer.com where automation enables us to deliver your five servers in 2 hours. Talk about a benefit: You still have time to watch a little TV before going to bed ... Five servers, to your exact specifications, all deployed before you could Google the orgin of "rubber baby buggy bumbers." (For those who care, it was a tag line said by Arnold Schwarzenegger in the movie Last Action Hero.)

At the heart of our automation platform lives the dedicated server, and the blood that courses though our network is the API. All that's left is the pretty face (which we call the Customer Portal). Our portal provides a graphical user interface to control every aspect of your account from ordering new servers, IP allocations and hardware reboots to port control, port speed selection and billing matters. If you're more into the behind-the-scenes stuff, then you can use all the same controls from the comfort of your own application via the API. Sounds like a lot of features to me, where are the benefits?

To start, you have options! Who doesn't like options? You get to choose how you want to manage your account and infrastructure. We don't force you into "our" way. Secondly, being able to do most functions yourself enables you to be more efficient. You know what you want, so you can log in and get it. No need to wait two hours for your firewall rule set to update; just log in and change it. You want to add load balancing to your account? Log in and order it! How about SAN replication? ... I think you see where I'm going with this. Our portal and automation bring this control to your computer anywhere in the world! Some of these features even extend to your iPhone and android platform. Now you can update your support tickets while at the park with the kids.

Look for a second installment of our study on SoftLayer Features and Benefits! There are many more features that I want to translate into benefits for you, so in the more familiar words of Arnold Schwarzenegger, "I'll be back"!

-Harold

August 18, 2011

Subtract Server. Add Humor.

Once in a blue moon, a SoftLayer customer has to cancel a server. Sometimes their business is growing and they're moving up to more powerful hardware, sometimes they need to consolidate their equipment to cut their costs, and sometimes their reason can't really be categorized. In this case, a happy customer with a few dozen servers decided he needed to shut one down, and the explanation he gave would clearly fall into the third category:

Initial Ticket

Customer
I would like to cancel this server on August 20th, 2011, but not before that date. Anytime on this date will be okay.

We no longer have a need for this server and would like to cancel it before our next billing period. Thank you for your help in this matter. Please send me an email when this server has been canceled on August 20th, 2011.

She's been with us for a long time, but things just aren't working out ... She's become a gold digger. It's her, not me. Please let her down easy. I don't like punking out and having someone do my dirty work, but I'm afraid she might be violent. Diamond rings hurt when you get hit with them.

SoftLayer
I'm sorry to hear things did not work out for the two of you. While your safety is important to us, I must ask that you end this relationship via official channels.

Please submit an official cancellation request by going to Sales --> Cancel Server and proceeding through the cancellation steps. The server will be reclaimed at the end of your billing cycle on August 22nd.

Please let us know if you have any questions.

Customer
She always tried to make it hard for me to break up with her. Done!
 
SoftLayer
Glad to hear things went smoothly. Things don't always do, but we knew you could pull through it. :-)
 

Official Cancellation Request

Customer
Word to your moms I came to drop bombs, I got more rhymes than the Bible's got Psalms.
 
SoftLayer
Thanks for your unique note, definitely was a nice break from the norm.

We're glad to continue being part of your success!

Please contact us should future needs arise.

Customer
Thanks, it was a subtle reminder to get out your seat and jump around.
 

Let this be a lesson to all of you: Get out your seat and jump around.

-@khazard

February 23, 2011

A Journey into the SoftLayer Billing Portal

Since SoftLayer's merger with The Planet in November, we have been working tirelessly to combine our legacy Orbit and SoftLayer customer portals, and we've got some great news: We're ready to move all of our billing information and functionality onto the SoftLayer platform! The changes are designed to make managing your account quicker and easier. While change isn't always welcome, when you see some of the new features and functionality in the SoftLayer billing portal, we're sure you'll be as excited as we are.

Once your Orbit account's billing information is migrated to the SoftLayer portal, you will receive an email confirmation. As soon as you're ready to start exploring the new system, you can log in at http://manage.softlayer.com with your master username and password. We recommend you use the master username to log in because some users may have access restrictions in the portal, and you need to be logged into a user that has accounting access. Once you are logged in, click on the "Administrative" tab near the top-left of your page. From the drop-down menu, you will choose “Accounting" to bring you to the billing-related section on your account.

Wait ... Instead of just guiding you through the process via text, how about we walk you through a quick tour of the billing portal as a bit of show-and-tell?

In the Accounting section, you can retrieve invoices, check pricing and even see your next monthly invoice. As a legacy Orbit customer, you'll also be happy to hear that when your billing information is moved to the new portal, PayPal is available as a payment method! Among other changes, you'll also note that we have a One-Time Payment option to enable some flexibility in how your account is paid in a given month.

In the new system, you'll also notice that order reconciliation is made much simpler. You can easily view invoices by type, date or status. You can even view invoices within a specified date range and save invoices in interactive PDF or Excel formats. Updates to your user and payment information are much more accessible, too.

Our interactive invoices make it much simpler to review your equipment and the costs on your account. The interactive PDF will give you a summary of all charges broken down by type and then by server. If you click on any one of your servers, you are instantly taken to the full pricing detail of that server by component. If you have any items not listed under a server on your invoice you can use our Associate Billing Orphans section to attach unassociated items to a server.

With these invoices, you can track your costs and equipment clearly to make sure the right gear is getting charged the right amount. You can even use our Show Next Invoice feature to project costs for the following month!

We hope you'll be amazed at all the features you now have at your fingertips! Please give us your feedback so we can be sure all questions are answered!

-Nikki

Subscribe to account