I have an issue which has not been resolved for over 3 months and I am fed up. I wonder if anyone else have had issues with the cause which seems to be caused by the server software URL Scanner.
The latest problem was first logged September 4th after a server upgrade which caused a random 404 error on a Sitefinity powered web site. The reply to the 404 error was "It is not possible to say anything without replicating the issue at our end". How can I reproduce a random error?
My client continued to have problems but I could not reproduce the error to an extent required by the support staff. I posted a new ticket on 11 October regarding a 503 error and while the 503 error was fixed promptly the 404 still continued and I mentioned it again. The 404 error was ignored until a responded and got the canned answer "If you provide me login details to get login and steps to replicate the error at our end ." It was a random error! but I still provided login details and they claimed they had looked at it for 25min without a problem.
For nearly two months this has continued and the client was not able to update the site. Finally on November 21st I realised that the problem happened when the client was trying to edit a content area control on a CMS page and the return url was a query string.
Since then the support staff have admitted after checking logs that the errors are due to the installation of some software URL Scanner "is one of the security product from Microsoft which helps securing the IIS web-server.". It took over three months to trace the issue! They now claim that the site CMS is vulnerable to SQL injection. If it was, a hacker would need the login details first so therefore the argument is mute as a hacker could do a lot worse with the CMS admin login. Since then there has also been a 504 error which caused the site to fail.
Over a year ago I installed Sitefinity which is a CMS that comes from a reputable company and only now Jodohost has decided to disable functionality of this CMS without warning because of potential SQL injection. The version the sites are running is 3.7SP4 which dates to 2010 but is still widely used. I have about 7 sites running on Sitefinity which are potentially useless and can not be updated. There has been no practical help from the Jodohost support staff just excuses while my client complains and I do extra work. I can not ask the clients to spend $2000USD + migration costs to upgrade the CMS to the latest version and Jodohost just does nothing to solve the the problem!
Has anyone else had a similar issue or a solution apart from finding another host or asking clients to spend a lot of money to fix it.
Thanks for any help or support.
The latest problem was first logged September 4th after a server upgrade which caused a random 404 error on a Sitefinity powered web site. The reply to the 404 error was "It is not possible to say anything without replicating the issue at our end". How can I reproduce a random error?
My client continued to have problems but I could not reproduce the error to an extent required by the support staff. I posted a new ticket on 11 October regarding a 503 error and while the 503 error was fixed promptly the 404 still continued and I mentioned it again. The 404 error was ignored until a responded and got the canned answer "If you provide me login details to get login and steps to replicate the error at our end ." It was a random error! but I still provided login details and they claimed they had looked at it for 25min without a problem.
For nearly two months this has continued and the client was not able to update the site. Finally on November 21st I realised that the problem happened when the client was trying to edit a content area control on a CMS page and the return url was a query string.
Since then the support staff have admitted after checking logs that the errors are due to the installation of some software URL Scanner "is one of the security product from Microsoft which helps securing the IIS web-server.". It took over three months to trace the issue! They now claim that the site CMS is vulnerable to SQL injection. If it was, a hacker would need the login details first so therefore the argument is mute as a hacker could do a lot worse with the CMS admin login. Since then there has also been a 504 error which caused the site to fail.
Over a year ago I installed Sitefinity which is a CMS that comes from a reputable company and only now Jodohost has decided to disable functionality of this CMS without warning because of potential SQL injection. The version the sites are running is 3.7SP4 which dates to 2010 but is still widely used. I have about 7 sites running on Sitefinity which are potentially useless and can not be updated. There has been no practical help from the Jodohost support staff just excuses while my client complains and I do extra work. I can not ask the clients to spend $2000USD + migration costs to upgrade the CMS to the latest version and Jodohost just does nothing to solve the the problem!
Has anyone else had a similar issue or a solution apart from finding another host or asking clients to spend a lot of money to fix it.
Thanks for any help or support.
