Customer portal improvements

Our trusty Customer Portal has long provided a convenient way for our customers to access select self service functions, update contact data, pay invoices and contact support via a secure authenticated channel.

Today we are pleased to announce a new capability. End users of our Hosted Email service may now log in with their email address and password, and conveniently gain access to:

  • Mailbox settings including Change Password and Vacation Message functions
  • SpamTitan user profile settings where the Spam Quarantine threshold can be tweaked, the frequency and language of the Spam Quarantine Report can be changed, along with numerous other settings.
  • Direct access to RoundCube Webmail
  • Authenticated customer support channel including a form to submit a new ticket and a Live Chat feature.

Over the coming months we plan to work on a number of frequently requested features such as scheduled vacation messages and integrating other services which currently only offer stand-alone interfaces. If there is a feature you would love to see added please do not hesitate to drop us an email.

SquirrelMail Webmail

Around 10% of Anu customers use Webmail regularly with the rest opting to use a desktop mail client such as Microsoft Outlook or Mozilla Thunderbird giving them greater functionality and performance.

For many years we have offered two Webmail options: Roundcube (HERE) and a legacy platform SquirrelMail (HERE).

Some of our customers (less than 1%) have chosen to continue using SquirrelMail.

Unfortunately, due to security concerns and low usage, we will be disabling SquirrelMail permanently in early January 2019.

Please ensure that you switch to using Roundcube (HERE) by this time, including moving over any contacts or custom settings (such as signatures) you may have set up in SquirrelMail.

We apologise for any inconvenience. You can contact us with any questions by emailing support@anu.net.

Rolling out encryption at rest

We take great care to select highly secure datacenter locations which feature security measures such as double entry man-trap doors, recorded CCTV, proximity card and biometric access controls, individually locking cabinets and segregated secure loading bays and staging areas. It really would be quite a feat to break in and steal a hard drive or SSD.

That being said, data security is a very hot topic these days, and we are frequently asked about measures we can offer to help protect our customers’ vital data. One topic that comes up frequently is encryption at rest.

Encryption at rest means that data is encrypted before being written to physical media, such as hard drives or SSDs. This is as opposed to encryption in transit, which covers the encryption of data while being transmitted from server to server or client to server.

Encryption in transit is commonly provided by protocols such as TLS (https, imaps, smtps etc) and SSH.

Encryption at rest on the other hand requires a method of encrypting and decrypting data on the fly as it is written and read from storage systems. If you have a Mac laptop or desktop, you might already be using encryption at rest using FileVault.

Linux has an equivalent solution called Linux Unified Key Setup or LUKS for short.

For many years we have used LUKS on security sensitive virtual machines for storing specific data such as secure databases. There is a small performance overhead (about 4.8% in our tests) and some extra configuration involved in setting it up, but otherwise once it’s running it is completely transparent.

Now, as of November 2018, we have begun to implement encryption at rest as standard on all new physical server deployments.

This means all of the services we provide will be fully encrypted at rest as standard. When we provision new virtual machines, the virtual hard drive will be stored on an encrypted RAID array.

We won’t be immediately rolling out encryption at rest to existing servers as it’s not a simple job, so it will take a few years before all our servers have it enabled.

Practically this means two things:

  1. In the extremely unlikely event that someone pulled off the herculean effort of physically breaking in and stealing one of our servers, your data would be totally scrambled and unreadable by the thief.
  2. If someone asks you if your data is encrypted at rest (and yes, in our experience it does happen!) then you can confidently tell them it is. Just check in with support@anu.net first to make sure your data is on one of our new servers that has it enabled!