Security and Network Policies

With many more clients working from home and home offices. there is a greater need for easy and simple network and security policies for small business and home business. In that spirit, here is a very simple requirement for a micro and small business security and network policy as it relates to hosting, domains, websites and email services:

Passwords:

1. How frequently do you change account passwords? (For example: Once a week, once a month, once a year – some experts recommend that small business changes passwords every 30 days)

2. Password strength: What number of minimum characters? Upper Case, Lower Case, Numbers and Ascii characters? (Define your business password requirement)

3. Do you allow staff to share passwords? How many people know your passwords? Who is allowed to know your passwords (Make a list – and NO, Nkosi is not one of them – we need not know your passwords and our cloud(s) DOES NOT STORE YOUR PASSWORDS – We encryption your password, using various processes, store that encrypted result and each time when ANYONE presents a password, we apply encryption to it and compare the encrypted result with the stored encrypted result)

4. There are many other password related issues for larger small business as well as medium and large companies, but the above three are, in my opinion, the most important and minimum considerations for micro home businesses

Anti Virus, Email (and whatsapp, telegram and other services) generic policies or business rules:

1. File Attachments – Do you just open anything you receive? Or do you have rules?

2. Do you have PAID anti virus? (Yes, paid quality is very different from free quality – free is okay for home but not okay for business.)

3. Do you click on links any in emails and messaging services? – how do you verify before you click?

Is your business a target? Do need help? – Please email support@nkosi.co.za

Security and Network policies also include and are affected by your IT policy. The most important issue for micro and small business is the simple question:

Do you use pirate or unlicenced software?

– If yes, you should consider not doing that. If you do not want to pay for software you can use open source alternatives, for example Linux.

There are many more factors regarding network and security policies and we will build on this article and expand it further as we go…

Unstable Internet Connection

Your office or home (or phone, etc) is connected to your ISP (or connection provider) and your ISP is connected to the Inter Network (Internet)

So, when your connection provider has issues, some services to your hosting provider may be affected.

You can check your IP number EASILY, HERE: https://companies.co.za/my/

If you reload your browser a few times in the same minute, and you have a different number in that minute, more than likely YOUR INTERNET CONNECTION IS NOT STABLE enough to handle strong ongoing encryption

Nkosi provides only business hosting. ALL of your Internet connections to us, use very strong, military grade, encryption. We DO NOT fallover to plaintext or ‘carry’ encrypted tunnels to another IP number, as it is not secure.

What this means is that: If your Internet Connection providers connection goeds up & down, due to hacking or tower/signal/cable outages and your IP number changes while you are in an encrypted tunnel to Nkosi, that connection will be terminated and you will need to make a new encrypted connection to Nkosi.

Our policy is that your Internet connection has to be stable, for us to be able to provide you with encrypted services.

If your Internet connection provider is not able to supply you with a stable connection to the Internet the solution is to find a better service provider as it is not in your or own best interests to not use strong encryption.

To be more clear: We do not provide any “home” or non encrypted plaintext services and we do not offer unsecure encrypted tunnel switching.

My device was compromised

Maybe a friend sent you a website link and your device was compromised with spyware or virus. Maybe you installed an app or other software and now your device is not behaving properly or has become compromised…

If you are at a home or small office network and all of your Internet connectivity comes from one router, you may find that none of your devices, computers, laptops, notebooks or pads on the same network are able to see your website...

If your device has tried to abuse our systems, or has abused our systems, we may have disabled your domain name.

If we have disabled your domain name, the front page will display “SUSPENDED”

Try to view your domain name in a browser, from a different Internet connection: Can you see your default website?

If you can see your website, please see the section: Howto reset my passwords

If you cannot see your website, please try a different or other Internet connection or contact support@nkosi.co.za for confirmation that your website and domain is working/functional.

If your domain is working/functional please see the section: Howto reset my passwords

Howto reset my passwords

We can reset your control panel password for you: You can start by sending an email to support@nkosi.co.za with the request to change your control panel password, in the subject line. Please have the answers to your security question at hand and please ensure that you have access to the phone numbers on our systems for your domain name, lastly, please ensure that you have access to the second factor authentication as set for your hosting account.

If your email account(s) have been compromised:

(1) You need to find the virus and/or spyware and remove it

(2) You need to change your passwords for your email accounts, on your email software, to a new password

(3) You need to close your email software (Do not collect any emails)

(4) With all of your email software and accounts closed, log into your control panel and change the email password(s) to your new password(s)

(5) Log out of your control panel and test your email account(s) and new passwords, using WEBMAIL (Your own domain with :2096 at the end)

(6) When you are sure that your email accounts work in webmail, turn on your email software (If you have multiple laptops, do this one by one in order to establish that you have entered the correct new password on each device)

Mailing list bulk email

We do not permit the sending of any bulk emails from our shared hosting accounts. Our definition of bulk email is quite strict: We define bulk email as the sending of roughly the same email to more than one person in a 24 hour period.

Read more about advertising and mailing lists…

Nkosi shared domain web and email hosting provides only transactional email services and on a fair use relayed email totals per domain and hosting plan:

20GB hosting plan 36 000 emails per month (50 p/h)
40GB hosting plan 180 000 emails per month (250 p/h)
100GB hosting plan 360 000 emails per month (500 p/h)
500 GB hosting plan 360 000 emails per month (500 p/h)
2TB hosting plan NC, (no spam) (No Groups, no nodes, 5k p/h)
5TB hosting plan NC, (no spam) (Multi, Group nodes, 2x5k p/h)
10TB hosting plan NC, (no spam) (Multi, Group nodes, 2x5k p/h)

If you really want to send bulk emails from Nkosi clouds, servers and networks we could possibly offer you two different options:

[I]

You can apply for a mailing list at five.co.za by completing this form: https://nkosi.co.za/support/create-my-own-email-list/ – By completing the application we will check if we have capacity and whether we are able to provide you with services. You can obtain more information about mailing lists on our Advertises.co.za website.

if your application is succesful, costs start from around R39 per month, per domain name and includes changes to your DNS zone, DNSSEC, SPF, DKIM as well as new encryption keys, tracking tools (to comply with the EU GDPR as well as legislation by US States, such as California, you may need to ammend your own Terms & Conditions of service as well as obtain direct and auditable permission from certain consumers to comply with privacy and other provisions of these laws)

[II]

You can apply for your own managed email server with mailman or by using local to remote relay apps (Unfortunately our two clouds do not offer email relay using port 25 as ingress and egress on port 25 is blocked on our cloud firewalls) – For a possible quote on your own server(s) Please send an email to: info@nkosi.co.za

Website Contact Form Spam

Real people (sometimes in faraway countries sometimes is a factory near you) are completing contact forms for payment. They are paid to submit advertising on your website, usually by unscrupulous companies and low life scumbags.

You probably created your contact form to solicit new clients, new sales or for your clients to contact you. But, for some types of people, your contact form is catnip. They use your contact form to tell you about whatever they are selling and what they can offer you, to get your money. These same “advertisers” do not care that they are enabling criminal syndicates and slave traders to exploit lowly paid people to send you unsolicited offers (spam) – They simply want money, no matter what they have to do to receive it.

Sometimes large multinational companies are running “black ops” and are deliberately sabotaging email, contact forms and other Internet services for various nefarious end goals and objectives.

Of course, you also get random real and legit suppliers of anything from shoes, furniture and tyres also contacting you directly, to sell you their wares. But then you also get those that offer you free advice and unsolicited opinions about anything ranging from the weather to your website. Some even promise you that they can “send you” more Internet traffic or offer you black magic spells. Some threaten you, saying your website is broken (yet they found it and they used your obviously working contact form). Some even try to solicit donations for a poor orphan in some God forsaken coutry somewhere. Others tell you they are “local” and know where you live…

There are a lot of scumbags out there.

They do not care that they are wasting your time. They do not care that they are sending you advertising that you did not ask for, in fact they do not care much about other people at all, they just want your MONEY!

But, there is good news!

You can also mitigate against contact form spam!

If you are receiving unsolicited offers and submissions from your website, here is what you can do to avoid this:

1. Log into your wordpress and update all your plugins (It may be that some of your plugins are outdated)

2. Add a Capcha or additional/different capcha (If you think that the contact are not from people but from robots)

3. You can also use a contact form service, like https://form.co.za (You are billed per actual real sales lead or real contact and receive no spam)

4. Remove your contact form and add your email address with your phone number instead of a contact form

Completely stopping contact form spam is possible, but may cost money.

Howto view email source or raw headers in Microsoft Outlook

Micorosft Outlook Software is not very advanced and does not have functionality to view a complete email message and you have to do this in three steps:

1. Open Notepad or Open Office – New document

2. First get the headers (The bits with IP numbers)

Open the exact email message in a new window by double-clicking on the message (in the message list).
It will open in a new window
Click on File and on Properties
Find: Internet headers or headers
Select the headers and copy (or press Ctrl and C)
and Paste (Ctrl P) on your new document

3. Then get the rest of the email

Open the exact email message in a new window by double-clicking on the message (in the message list).
It will open in a new window
On the message ribbon, choose action and then other actions and then view source
Select the source and copy with your mouse (or press Ctrl and C)
and Paste (Ctrl P) on your new document

Why Breach of Terms and Conditions of Services are serious

Clouds, servers, services are shared by many individual people and different companies. When one company publishes illegal content, sends unsolicited emails it affects the reputation and service delivery of everyone in that same cloud, server or service.

So, the behavior of one client could affect the reputation of another client and the network reputation of the service provider.

Which is why the rules are strictly enforced for all clients.

When a small business do not take adequate care to protect passwords, access credentials and these credentials are used by criminals to attack other businesses in the same cloud, server or service or even to attack outside networks, this affects the reputation and trust afforded to the provider. this in turn affects the clients using that cloud, server or service directly.

When any client acts with a light hearted and irresponsible attitude to their access credentials it is better if the provider terminates such a relationship as the long terms costs to provide services to such a client is extremely high. The business risk and other effects of providing service to such an actor is very high and this is the reason why Nkosi applies the provisions in it’s own Terms & Conditions of service, very strictly.

When the relationship with clients break down due to rude behavior, swearing, threats and all other behavior as defined in the T&C, it also affects the trust relationship between service provider and client as the service provider is no longer confident that the client can be trusted.

When clients do attack other companies and persons inside or outside of the Nkosi networks: Service to such a client is terminated as per the Nkosi Terms and Conditions of Service. Whether the attacks are due to spyware, virus or malware and not the client actions directly, does not matter. The client is all the client devices, all the client software and all the client network connections. Clients are responsible to ensure that their devices do not contain malware. When a client is notified of a potential security issue, Nkosi expects that client to act responsibly and stop the security issue as not doing so and an ongoing issue will trigger enforcement of the T&C.

For such a client their is no resolution as Nkosi simply is not interested to provide such a client with service. Other service providers has and do provide a “Red Light District” or a “very low reputation” hosting area, which is then where they migrate “clients” to, without such a “client” being aware that they are now a resident of a poor repution Internet area.

The premise is that the sertvice provider “Protects” their Consumer reputation as “The Customer is always right” and the customer can do whatever they want as they are paying money.

Nkosi has chosen not to maintain a “Red Light District” as such poor quality networks are dangerous and serves to promote, enable and empower criminal activity and many other nefarious things.

Instead, Nkosi rather informs the client,: openly, honestly and directly that the client is no longer welcome and that Nkosi is not interested to provide any services.

If you are affected by the application of Nkosi T&C, and your services are now terminated, the best advice is to learn from this experience and to try to become a better netizen. At your next service provider, work with that service provider, understand the word: NETWORK Understand better that you are connected to that service provider. Understand that as much as your new service provider has to trust you, you also have to trust your new service provider.

Nkosi and all Nkosi clients are a family, a very small family, and we are sorry that you are no longer part of our family but we do wish you only the best for your future.

How to get support

Please remember to be professional and courteous at all times in your dealings with us (as you also expect us to be with you)

Please do remember that we strictly enforce all our Terms and Conditions of Service

Please state clearly what support you require or expect so that we may assist you properly

We undertake to provide you with full support related to our products and services.

SUPPORT E-MAIL Address: support@nkosi.co.za

SUPPORT Phone numbers: You can call the number on the bottom left your telephonic support contract during Office hours (6am to 6pm) and the number on the right, for after hours (6pm to 6am)

Please take proper care with your access credentials (user names and passwords) Please follow ICT Best practise. All of our clients are businesses and we expect clients to be responsible for their accounts and responsible for any security issues related to their services. Please do understand that we currently follow the GDPR (as current ZA legislation does not currently extend to security breach protocols) and we may suspend your account when we are notified of security breaches, as per best practice and as per the protocols defined in the EU GDPR. While we investigate our logs and systems as it pertains to your domains, users and services. We will conclude this process as quick as reasonably possible. Please do be aware that if you have prior security issues and are currently in breach of our Acceptable Use Policy (AUP), as amended from time to time, we may terminate your account as per our main T&C.

Please do be aware that we can (are able to) change your passwords and that we follow ICT best practice which may involve multiple forms of authentication as well as additional processes and security questions. Please understand that main access credentials may take up to 24 hours to effectively change as propagation between non Internet facing systems is a manual and tedious process.

We provide all clients free full hosting support for one person per client (Supporting additional or different staff members does cost extra)

Most of the time though, when our clients require support, the support they need is not related to our services or products….

Clients sometimes need assistance with Internet Connectivity, Software and/or Device operation or configuration, hard drive failure, network or router configuration and many other non hosting account related problems.

We do not provide IT services, or sell IT products or services. We do not sell devices, phones, pads and laptops (or hard drives or any other IT equipment). We do not sell operating systems, Cable Routers, Wi-Fi signal boosters or Office software and neither do we install wired networks or wireless networks.

When a client requires IT support, we do point this out but we also try to assist the client with the network, device or software, to the best of our ability, but most of the time we are not able to provide satisfactory levels of support or new software patches or solve IT problems at the client location or device(s) – Sometimes clients are not that IT literate and we have to explain the same thing two or three times, please bear with us and do understand that your support requirements are related to our products and services but you are not and have not paid us for the products and services (your devices, networks and software) and our support is limited in terms of what you may in fact require.

Sometimes a client does not readily accept or appreciate this as they are battling to obtain support from Microsoft or some other huge company.

We do partner with IT companies, please do ask us for a reference to an IT company in your geographical area or an IT company that offers remote desktop support for your operating system, networks or device(s)

Please also do realise that if you are unhappy because you feel that we did not assist you, please do not become rude. Please do not swear or be disrespectful. Please do not threaten us with “Social Media” or with “Lawyers” – All of the previously mentioned things, are serious breaches of our T&C, we will terminate your services. As much as you do not like being threatened and people being rude with you, we do not like or appreciate it either.

We are a nice, ethical, decent family of people. We live to serve clients that are nice, ethical and decent.

Please always assume our best intent, if you are not sure about anything, please do ask!

Reporting Spam, Phish, Spear, Whaling, Scams, Ransomware and more

If you have received any suspicious email it is very important that you act immediately

Reporting Spam, Phish, Spear, Whaling, Scams, Ransomware

The email you received can be anything. It could be a PHISH. It could be spear phishing or whaling. It could be normal spam, it could be SPYWARE, it could be many many different things.

Each of these types of attacks require a different approach. Some email abuse requires that it is reported to the SAPS as Cybercrime, some abuse requires reporting it to the ISP, sometimes it is the ISP itself transmitting ot attaching the malicious software.

In order to assist you with a received email we will need you to do two things:

[1] You need to contact: abuse@nkosi.co.za

[2] You also need to copy & paste the raw email source, into a new email, addressed to abuse@nkosi.co.za

Howto report spam, how to report phishing, how to report abuse

There are many resources on the Internet on how you can view the raw source of the email you received. Unfortunaltely some low quality email software or old software has limited functionality to defend you against cyber crime and email abuse.

Here is a website link, which contains guides on how to view email headers: Viewing E-Mail Headers – – Ascams (Anti Scams Website)

You can also ask your qualified IT person or company to assist you as you need to send the email headers (containing the IP numbers and other information) to abuse@nkosi.co.za

ATTACK HAPPENING TO

ATTACK HAPPENING TO Your Website

If you are receiving email notices from your wordpress security solution stating that it is under attack, this is serious.

It means that a program or person is trying to break into your website. Most of the attacks are automated attacks and is usually triggered by an outdated plugin or theme.

Solution: Log into your wordpress and update your plugins and themes by clicking on the update notification in your dashboard.

If your attack or hacking attempts are always from the same IP number, you can also file a complaint at the ISP or you can block that IP number from your website.

WARNING: Do not disable your website security. If your website is compromised it may have to be deleted, with no notice, if it attacks other websites or our infrastructure or breaches our Terms & Conditions of service (Our Agreement)

If the automated attack notifications are bothering you, you can change the number of attacks before an email is sent. You do this from your wordpress dashboard, under “plugins” and under the login security solution: Settings. Scroll down until you see the “number of attacks before an email notification is sent” and set this to your desired number.

It is useful to know when your website is under attack so that you may check that you are updated and that you may check the IP number of the attacker(s) and that you may take other measures as and when required.

If you are receiving too many email notifications

You can log into your wordpress and on the left, under “Settings” click on “Login Sec” then change the setting from 50 to 100 or 500, please do pay attention to attacks and please do notify abuse@nkosi.co.za if your attacks are from similar IP numbers.

550 Administrative prohibition email error

If you receive an email error: Administrative prohibition or 550 Administrative prohibition:

This means that you cannot send email to that server right now. You can email support@nkosi.co.za to find out how long it will be before we enable sending to that server again. This usually means that either we have a security issue or one of our clients are attacking someone at that server so we have administratively blocked all traffic there.

If someone is sending you an email and they receive an Administrative prohibition error or 550 Administrative prohibition:

This means that they, the sending ISP is broken or probably maybe has a security issue and that they, the sending email service have administratively blocked sending to Nkosi as they may be attacking us or for some other reason has decided to block us. The Sender has to contact their ISP and ask when they will be able to lift the administrative prohibition or find out why they cannot send email.

Non Support Question

You have probably received this page because you required support about something, but we do not know what you need.

We sometimes receive difficult support requests, where we are required to estimate what is asked.

For example: You may have sent us a photo or screengrab of Thunderbird and asked: “What is this?” in the subject line.

We would not know if you require us to tell you what Thunderbird is? Or if you want to know how to operate Thunderbird? Or if you are not sure how to use your Thunderbird?

What you need to do now: Whatever support request you sent: Please re – send your emailed support request

This time: In the subject line state the topic clearly. Example: I do not understand this menu option in Thunderbird

In the body, instead of attaching a screengrab of Thunderbird, please rather take a few seconds and type your problem. Example: If I click or swipe on send and receive nothing happens

We know then that this simply means that you have no new emails and we are able to tell you that, so that you can send yourself a test email and then see something happening…

IT Dealers and Vendors

IT Dealers Wanted

We are looking for IT dealers to support our clients. (IT Dealers looking for new clients)

Do you offer: Anti Virus scans, Call out, remote desktop and ON SITE personal client support?

Please contact us at info@nkosi.co.za

IT Dealers should be able to: Setup & configure Thunderbird, Apple mail as well as Microsoft Outlook ans configure our settings, here: Setup your email account

IT Dealers should be able to setup Internet routers, provide, supply or configure home & office networks, Wi-Fi, ADSL, Cable as well as 3G/4G/5G etc.

IT Dealers should be able to setup printers, scanners and resolve common software issues.

Cannot See my Website

Cannot see your website or control panel?

If you cannot see your website your device or connection may be blocked on our firewalls. Did you recently try to setup an email account and entered the wrong user name or password a few times? Did you recently change Internet Connection providers and is your connection to the Internet too unstable to create and keep an encrypted connection?

You can try to access your website from a different device and Internet connection: Can you see your website?

If you are blocked: The block could last anything from 15 minutes, an hour, a few hours or longer. Block duration depends on the dynamic IP operator reputation (The quality of your Internet connection), the amount of errors you caused and external fixed factors such as time of day, your normal expected behavior on our servers and others.

More information please email abuse@nkosi.co.za

Email Filters

Our Clients have three Filtering options:

Spam Filters (Spam Scores, Auto Delete, etc)

Global Email Filters (Settings for ALL your email accounts)

Email Filters (Settings for a Single email account)

Please EDIT any filter BEFORE deleting it…

Please contact support@nkosi.co.za for any additional assistance or support relating to Email Filters

2019 Additional Pricing

Additional Domain & DNS services and product pricing for 2019 click here

Parked Domain update and link to yearly business hosting plan: R0

Nkosi Web Hosting recovers DNS provisioned costs and setup costs as per our pricing below:

Parked Domains transfer to other Registrars – balance of DNS provisioned hosting charges plus service fee of R485

Parked Domains updates to DNS & other updates: service fee of R485

Parked domains .za (co.za org.za net.za)) registration renewal fee Sliding Scale:

Setup Fee (if domain remains parked for 60 months and renewed each period for 60 months) = R0

co.za org.za net.za Yearly Renewal Fee’s:

Year One: R59

Year Two: R89

Year Three: R149

Year Four: R149

Year Five: R189

Year Six same as year one, year seven same as year two, year eight same as year three, year nine same as year four, year ten same as year five

Parked domains (com org net)) registration renewal fee Sliding Scale:

Setup Fee (if domain remains parked for 60 months and renewed each period for 60 months) = R0

.com .org .net Yearly Renewal Fee’s:

Year One: $9.99

Year Two: $12.99

Year Three: $24.99

Year Four: $24.99

Year Five: $29.99

Year Six same as year one, year seven same as year two, year eight same as year three, year nine same as year four, year ten same as year five

How to load a Youtube video on my website

Open the video you want to display on your website in your web browser ( Open the video on https://www.youtube.com )

Click on the “Share” option below the video

Click on “Embed” (at the bottom)

Highlight the whole paragraph of the section starting with : < iframe width=

Right Click and Copy – or use your browser file function option to “Copy”

Log into your WordPress

Click on Add New Post

To the Right of “Add Media” is a TAB option for “Visual” and “Text” – Click on Text

Right click in the body of the Post and Paste the paragraph starting with < iframe width =

Click on Publish!

Voila! The video is now displaying on your website!

Reset my wordpress password

How to reset your wordpress password

WordPress is an open source (FREE) CMS (Content Management System) – (There is also a company called wordpress – do not become confused between the two)

Your wordpress manages it’s own passwords. (And you manage your wordpress) – Sometimes your password requires to be changed, automatically, as logins to your website was disabled, by security plugins or wordpress itself. (As someone maybe tried hacking/cracking/breaking in)

Three Easy Steps To reset your wordpress password:

Step One: (To reset your wordpress password)

> Go here: https://yourowndomainname/wp-admin

Step Two:

> Click on “Lost your password?” and enter either your wordpress user name or email address

You need to know one of two things: (1) Your Login User Name OR (2) Your email address (setup in your wordpress)

Step Three:

> Check your email account for a clickable link, click on it and enter your new password.

If you no longer know your wordpress user name or do not have access to your email address then you need to obtain the services of an SQL engineer, to access the wordpress SQL database and edit the correct fields in the wordpress SQL database linked to your domain.

Internet Marketing

Marketing your Website and domain on the Internet

Each Nkosi hosting client has access to a Step by Step Internet Marketing Guides AND Systems. To obtain FREE access to the various systems please send a request to info@nkosi.co.za (This includes an Internet Marketing System (https://advertises.co.za) as well as access to Mailing list & Bulk Email system(s) – (https://five.co.za)

The step by step, how to market your website and domain on the Internet, is an easy to follow ethical marketing recipe. It includes additional services, which are available at no extra cost, to all our clients.

We can also follow and perform the steps for you, at a low hourly rate. We also offer pay per click and other paid marketing options!

Increase Website Speed

There are multiple ways to increase the speed of your website. The initial basic thing to do is to compress the content of your website when it is sent over the Internet… Continue reading “Increase Website Speed”