Friday, December 23, 2011

Outgoing mail server certificate replaced

We have replaced our outgoing mail server certificate with a new certificate. Our SMTP certificate is signed with a 4096-bit key which exceeds the NIST RSA keys post-2010 standard recommendation. The recommendation was that 1024-bit RSA keys should only be depended on until December 31st, 2010 after which the minimum key size should be 2048-bit RSA.

NullShells networks has been proactive in staying up to date with the NIST standards and recommendations. All certificates issued after December 31st, 2010 should have a minimum 2048-bit RSA keys. We are actively moving any remaining certificates to 2048-bit and 4096-bit root certificates. We currently support and often exceed the same level of encryption offered in the banking industry. In the future we will continue to implement internal policy standards to protect our subscriber's security.

FreeBSD new exploit advisories patched

Today the FreeBSD security team has released new advisories related to security flaws which could affect our servers. Our machines were patched in less than 24 hours of the release of these advisories.

All of our customers can be confident that we are doing our best to stay up to date with the latest versions and patches, while maintaining the security and integrity of our systems.

We do not always announce security updates on our blog, but when there are major vulnerabilities patched we do generally make a post to keep everyone in the loop.

You may find the latest security advisories here:

We wish you a joyful holiday season!

May the warmth of the holiday season fill your heart and home with love, joy, laughter, and goodwill. Let us cherish the special time we share with our friends, family, and loved ones this holiday season.

Together we will welcome and celebrate this blissful new year.

Monday, December 12, 2011

Congress wants to break the net!

Stop the Internet Blacklist Legislation

Congress is trying to pass a couple bills (Protect IP Act, SOPA Act) that would create internet censorship, and severely inhibit and even destroy large portions of the technology industry. This bill threatens NullShells and it's parent ISPs, it potentially puts a huge burden of DNS spoofing onto us and our parent ISPs as well as leaving our very existence on the net up to major media corporations.

Please visit the link above or visit and take action to prevent this bill from passing. Please also stop the government from forcing us to log your actions (putting an additional burden on us), and protect your privacy.

Don't Let Congress Order Internet Companies to Spy on You — Block the Data Retention Mandate