Intel CPU Vulnerability Alert

As you may already be aware, a critical security flaw affecting Intel CPUs has been gaining traction in security research circles over the past several days.

While the full details of the security issue are still restricted and there have been no official statements from Intel, our security team has been actively reviewing available information and planning for the necessary next steps. Our engineers have also been testing available kernel patches to ensure necessary upgrades proceed smoothly.

Current facts outline a vulnerability that likely affects a wide range of Intel processors. The patch to mitigate this issue will also likely require a one-time reboot of your instances. Once our team begins scheduling reboots, you will receive advance e-mail notification for any affected instances with a scheduled date and time. While reboots may cause a few minutes of downtime during the restart window, this will be a necessary step to ensure that your compute environment remains secure.

Note: This is an actively developing story and more details will become available in the coming days. Our team is actively monitoring this issue and we will update this article with any developments that directly impact your infrastructure.

Article Updates

- Intel has released a statement on the issue. A link can be found in the additional resources section below. Additionally, we are working closely with our Northeast Intel Representatives to gather additional information and resources directly from their Cloud Service Provider (CSP) team.

- The details of the security vulnerabilities have been disclosed early in CVE-2017-5753, CVE-2017-5715 and CVE-2017-5754. Our engineers have already applied updates to our infrastructure to ensure the security of our platform. The original date of the coordinated disclosure was scheduled for January 9th and information from hardware manufacturers is still currently incomplete. We are continuing to closely monitor the issue and will provide additional updates as necessary.

Additional resources:

Deploy Bare Metal Cloud Servers With Vultr!

From the beginning, the team at Vultr has focused on making all aspects of hosting infrastructure management easier for everyone. Today we are excited to bring the simplicity of the Vultr platform to an old hosting industry stalwart - dedicated servers - by introducing the brand new Vultr Bare Metal product line!

Powered by Vultr's cloud orchestration, you can now easily deploy single-tenant physical dedicated servers with zero virtualization layer. We’ve also added an array of cloud features typically only available for standard compute, such as hourly billing, fast api-driven deployment, and availability in multiple geographic regions.

Direct Hardware Access
Vultr Bare Metal provides direct access to the full power of the underlying physical hardware without a virtualization layer. On our platform, you'll be in the driver's seat of a real, physical server, with the convenience and simplicity of Vultr automation. Bare metal servers are also single-tenant only which means that only you will have full access to the resources of your server.

Worldwide Deployment
Deploy bare metal hardware around the world in 10 minutes or less using our point-and-click control panel. We are first introducing bare metal in Singapore and more locations will be rolled out in the coming weeks.

Flexible Resource Management
Easily scale and customize your bare metal environment via our user-friendly customer portal or by using our flexible API. In addition, all bare metal plans include the same no long term contract terms and hourly billing you’ve come to expect from our standard compute offerings.

All Standard Operating Systems
The complete Vultr operating system library has been updated to support bare metal servers. This includes all our versions of Linux, Windows, and BSD with full root/administrator access. Seamlessly switch between virtual and bare metal hardware without having to compromise!

Bare metal adds the proven performance and security of the Vultr platform. Read more about bare metal servers on our product page and deploy a bare metal server today!

Comments or feedback? Reach out to us via our contact page, or by tweeting @Vultr

Security Researchers - Get Rewarded for Bug Reports!

Vultr values the contributions made by security research communities who analyze and help solve vulnerabilities in the web ecosystem. Like many of our industry peers, Vultr has chosen a policy to compensate researchers for ethical disclosure of security issues. In an effort to improve the feedback loop for bugs on the Vultr platform, we've added a new bug bounty portal where any discovered security issues can be reported.

How Vultr's bug bounty program works:
1. Identity a security issue in any part of our platform or API.
2. Report it to us here. Include detailed steps to reproduce the bug and attach additional evidence as needed.
3. The report will be reviewed and, if verified, you will be compensated based on the scope and severity of the bug.

In scope sites:

Focus areas:
• Injection attacks.
• Authentication or authorization flaws.
• Cross-site scripting.
• Sensitive data exposure.
• Privilege escalation.

Please visit our bug bounty portal for additional program details and up to date information.

Get More With Vultr DNS

As an integral building block of the internet, DNS is a critical service that demands reliability, scalability, and high performance. Built on a highly distributed and globally present anycast network, Vultr DNS was designed from the start for stability and redundancy, ensuring users will experience fast response times when resolving domains.

Vultr DNS is available to all customers at no additional charge. Management of records is simple for projects of all sizes and records can be updated using our user-friendly portal or through automation with the Vultr API. As with all of the other parts of our cloud platform, the Vultr Ops team keeps a close eye on this critical piece of infrastructure so you don't have to!

The team at Vultr has made multiple recent upgrades to Vultr DNS, including:

DNSSEC - You can now enable/disable DNSSEC support for your domains. DNSSEC adds a layer of trust to your DNS infrastructure to prevent against man-in-the-middle attacks.

SOA Settings - By popular demand, you can now edit the public email address and primary nameserver listed on your domain's Start of Authority (SOA) record. SOA records are used to relay important information about your domain to other nameservers. If you're using Vultr DNS for vanity nameservers, you can now edit your SOA record and list your custom nameservers.

CAA Records - Now supported by most certificate authorities, these records control access to which authorities can issue certificates for your domains. Using this record, list what certificate authorities you use and prevent rogue certificates from being issued for your domains.

SSHFP Records - In combination with DNSSEC, these records are used as a secondary verification when connecting to a host over SSH. Adding SSHFP records for your servers' hostnames help your terminal client guarantee it's connecting to the right host.

Punycode support - Punycode is support for all domain records. Our control panel will automatically convert your domain name to punycode when normal unicode text is submitted.

The entire feature set is detailed in our Vultr DNS documentation.

Vultr Authors Wanted!

Calling all techies - Vultr article writing bonuses are now higher than ever! The Vultr Docs community resource contains hundreds of helpful articles for both IT professionals and novices alike to get a jump start on their project. The guides cover a wide range of topics, from Linux to Windows, Web Servers to MySQL & MariaDB, and much more!

Do you have advanced technical knowledge and a knack for writing how-to articles? Our community of developers and engineers will thank you for sharing your knowledge and Vultr will reward you with your choice of account credit or PayPal payouts. To get started, visit our Vultr Docs submission page and contribute your articles today!

Send us your feedback on our contact page or by tweeting @Vultr !

Deploy Windows Server 2016 In The Cloud!

Our operating system offerings have been updated to include Windows Server 2016. As the latest version of Microsoft's flagship operating system, Windows Server 2016 includes updates to IIS, Active Directory, PowerShell, the network stack, and much more. The desktop interface has also been revised, providing a similar experience to Windows 10.

With this update, high performance Windows Server 2016 servers can now be deployed with one click across our entire global network. And of course, popular features such as startup scripts, IPv6, and private networking are fully supported.

We welcome your feedback - reach us on on our contact page or tweet to @Vultr!

The Vultr Cloud Is More Powerful Than Ever!

Over the past several months, the Vultr team has been hard at work expanding our cloud platform around the globe. Now we’d like to share this exciting new capacity with you by increasing our compute plans across the board!

More RAM and More Enterprise SSD Storage
Most plans will now feature double the RAM and more high speed local SSD storage at the same price point. New and existing customers can take advantage of the bigger plans either by visiting the customer portal and deploying new instances or upgrading existing cloud servers.

Sandbox Plan for $2.50
Our most affordable way to try out cloud computing, this plan features 512MB RAM and 20GB SSD disk storage. This is perfect for test-driving your next application before upgrading to production level specifications.

Bandwidth Overages now just $0.01/GB
We are cutting bandwidth overage rates in half! While our generous bandwidth plans were designed to cover 99.9% of our users’ regular usage patterns, heavier bandwidth users will also find a home on Vultr with our lower pricing!

New and existing compute plans fully support all of Vultr's cloud features that you know and love, including 100% Intel CPU’s & SSD Storage, API access, Custom ISO support, One-Click App deployment, and much more! To see our updated plan list, please review our pricing page.

Some Features You May Already Be Enjoying…

Up to 10,000Mbps In/Out on Public & Private Network
Our VC2 platform allows up to 10Gigabit of ingress/egress to your instance on both the public and private network. This makes moving, syncing, and backing up your data between your instances and the public faster than ever.

Vultr Firewall Service
Help to secure your cloud environment using our cloud based firewall. Our firewall utilizes resources higher in the stack, leaving your CPU cycles for your important applications and dev environments.

ISO Library or Upload Your Own Image
In addition to our standard operating system offerings you may now choose from our curated list of popular ISO Images to deploy on your VC2 instance or upload your own.

Free Snapshots
We continue to offer snapshot storage at no cost. Snapshots make it easy to deploy new instances or backup your dev environment before making big changes. Quickly revert back by restoring your snapshot via our easy to use myVultr interface.

15 Geographically Diverse Cloud Compute Centers
With the recent addition of our Singapore Facility, Vultr now has a presence in 15 Cities around the Globe.

There’s never been a better time to deploy your cloud infrastructure on Vultr!

Share your thoughts with us by sending us feedback on our contact page or by tweeting @Vultr!

Protect Your Cloud With Vultr Firewall

We've listened to the needs of our customers and designed a robust firewall that is versatile, secure, and easy to use. Vultr Firewall Service is a free add-on security solution that can be deployed worldwide using the customer portal and our API.

Running a secure cloud environment is vitally important in today’s world. Vultr Firewall Service adds flexibility and simplifies firewall management across all of your instances by allowing you to manage multiple groups and multiple rulesets from one location. Using our API or the customer portal, you can control traffic for common IP protocols such as TCP, UDP, ICMP, and GRE. Rulesets created in Vultr Firewall Service can be applied to any number of your Vultr instances, allowing for fine-grained control over your resources. As you've come to expect we've also future-proofed this new feature with native IPv6 support from the get-go!

Ready to boost your application security in just seconds? Read more about Vultr Firewall on the Docs portal.

Are there any features you are looking for? Send us feedback on our contact page or by tweeting @Vultr !

OpenBSD Now Available!

OpenBSD, the secure BSD-based UNIX-like operating system, has been added to Vultr's standard O/S options. The OpenBSD project emphasizes a comprehensive and proactive focus on security and source code auditing. Over it's 20+ years of development, OpenBSD has built a reputation as one of the most secure operating system options and many industry professionals have selected it for critical uses such as firewalls and intrusion detection systems.

As with our other operating system choices, you can deploy your high performance OpenBSD servers anywhere on our worldwide network. We've also added support for all the standard features you've come to expect from Vultr such as SSH key preloading, IPv6, custom startup scripts and more!

Share your thoughts with us about your OpenBSD server by sending us feedback on our contact page or by tweeting @Vultr !

Introducing The ISO Library

Custom ISO users now have a new option for mounting ISOs - the ISO Library! The library is curated by our experienced team of system administrators and is updated periodically. Popular Linux and BSD distros are included, making installing a custom operating system on Vultr both quick and convenient.

You can also mount these ISOs directly from your existing Vultr cloud servers. Our Vultr Docs community includes a variety of useful guides that reference Custom ISOs, such as step-by-step tutorials on using rescue images to troubleshoot or customize instances. Save time spent uploading a Custom ISO and focus on what matters most - troubleshooting and getting your cloud servers back up and running quickly!

Need an ISO that isn't in the ISO Library? You can still take advantage of our powerful Custom ISO upload system for your new deployment!

Get started in the SSD Cloud!