Knowledge Base
1 2  Next»

Glossary (read more)

  • I don't understand your terminology.

We specialize in web hosting and embedded engineering services, so like any specialist we often slip into shop talk jargon.  We realize that can sometimes be confusing to those not familiar with the terms, but we still use them for conciseness.  Here's a list of terms that we hope will help if you unfamiliar with our language.

Minor Change to the Apache2 Configuration: DirectoryIndex

We don't think it will affect anyone's current websites, but we've turned off DirectoryIndex'ing by default for security* reasons.  If you desire this behavior in a certain directory, you can turn it back on by adding (or editing an existing) .htaccess file and adding the line:

Options +Indexes

And the old functionality will be restored.

* Where "security" is defined as security through obscurity, and not any real definition of security at all, but it keeps the script kiddies away.

SOCKS Proxy Settings

To setup a SOCKS proxy to tunnel traffic through a semi-disagreeable firewall, you can use this command line:

ssh -N -c 3des -D 1080 user@hostname

This is simpler than doing the "regular" static port forwarding by setting up each port separately with the -L option.

Lime Daley Security Settings / Umask (Wordpress Super Cache Plugin Access) (read more)

Due to Lime Daley's security model with the shared hosting customers, one setting you might need to be aware of depending on what php software you are using is the default "umask" on the system.

I assume that as a small company, you react slowly and often aren't available? (read more)

Not at all. Lime Daley offers round the clock support for all urgent requests. When submitting a ticket via our online support system, you will be asked whether the request is urgent or not. If the request is truly urgent, i.e. your site is malfunctioning, or some other techical problem, please make use of the "urgent" status and provide a callback number and someone will be paged immediately and return your call.

What sort of spam filter do you use? (read more)

  • Will I get any spam if I use your filter?
  • How do you know what email is spam, and what isn't?
  • Will you bounce emails you think are spam back to the original sender?
  • Some filters block legitimate email, what do you do to make sure that doesn't happen?

Why don't you have $2/month plans?

You get what you pay for. Our services are customized and reliable. All of our accounts are on RAID1 or RAID5 hard drives, which gives you the reliability you need for your website.

We don't want to waste our time and yours with cheap packages. However, we do have a blog-only (LifeType) package available for $5/month.

Can I have my own dedicated server?

Yes. There are various options depending on if you want to buy, lease to own, or just rent the server. We encourage Debian Linux, and run the "testing" version, which provides up-to-date applications (as opposed to the "stable" version), yet provides security patches and stability (as opposed to the "unstable" version).

However, we can accommodate other preferences. Contact us for details.

If you are interested, we can implement user mode linux which may be a cheaper alternative depending on your needs.

Why don't you use CPanel, Plesk, or Ensim?

The reason we got into this business is we like administrating machines, and don't need or want graphical tools to hide the details. We do use usermin, and some custom scripts which let our customers manage their own accounts. 

Lots of other tools make it harder (or even impossible) to administer the specialized accounts that we provide.  When working on systems for other people, we often run into issues that would take merely seconds on our servers to change one line of a text file, but on their server, it takes the technician a long time while the customer is on the phone waiting for him to figure out how to do it correctly.

How do your SSL certificates work?

There are four ways for you to have an encrypted (HTTPS) site while using Lime Daley hosting services.

  1. Self-signed certificate 
  2. Shared certificate
  3. Standard certificate
  4. Let's Encrypt certificate

All methods provide the same amount of security and encryption.  The trade-offs are price versus convenience for your site's visitors.

A self-signed certificate will popup a warning when visiting your site for the first time, confirming that the visitor wants to install the certificate into their browser.  Self-signed certificates are best used for sites that are used primarily by groups of individuals that don't change that often, e.g. employees using an intranet site.  A self-signed certificate is free.

A standard certificate is a certificate that is purchased from any vendor that sells SSL certificates (Lime Daley can purchase it for you, so you don't need to deal with the technical aspects of generating and installing the certificate).  These certificates are the most typical on current web sites.  You can pay anywhere from $30 to $400 per year for these certificates, depending on what level of authentication you wish to purchase.

A shared certificate is a certificate issued to Lime Daley, but also has up to three other domains included with it.  A typical visitor will not be able to distinguish between a standard certificate and a shared certificate, but a technical user who examines the certificate will see it is issued to Lime Daley and to your company.  This certificate costs $20 per year.

A Let's Encrypt certificate is a relatively new method, but we've been testing it for the last 9 months, and have started to roll that out to eventually replace all of the other certificates.  They don't support wildcards, so we'll need to continue using those certificates.  The advantages of these certificates are that they are free, auto-renewable, and not shared, so there aren't shared private keys if (when) there are SSL bugs that affect multiple servers.  The only disadvantage is that it is one centralized system that presumably will become a target by hackers.  We're not SSL experts, but it appears that since they don't have the private key, there aren't any serious security implications, unless they were able to replace the client-side code, which goes through validation, so seems unlikely.  If you are more comfortable with the more expensive certificates, that is fine with us.

1 2  Next»