Knowledge base

The Apache "mod_rewrite" module is enabled by default.

However, we only support it via an .htaccess file; moreover, you need to make sure that the regular expressions for the path do not begin with "/".

Regarding the virtualhost (vhost), we do not grant access to its configuration and will not modify it in any way.

This guide is about IonCube Loader, a PHP module that allows decoding of PHP scripts that have been encoded with IonCube Encoder.

IonCube encoding is used to protect the source code of an application and prevent its modification or illegal distribution. By using IonCube Loader, website owners can ensure the security of their code and content while allowing safe and easy distribution of their applications.
 

When is the loader offered?
 

With a shared hosting it is no longer offered. You can check this from the dashboard:

1. log in to the Infomaniak Manager (manager.infomaniak.com) from a web browser such as Brave or Edge
2. click on the ‍ icon at the top right of the interface (or navigate using the left sidebar menu for example)
3. choose Website (in the Web & Domain universe)
4. click on the name of the relevant object in the displayed table
5. click on the Advanced settings button
6. click on Enabled PHP extensions under the PHP tab
7. click on IonCube Loader (if present in the list) to see the details

Consider a Cloud Server.

This guide details the software libraries for manipulating the PDF format that are compatible with various Infomaniak web hosting offers. PHP PDF extensions allow, among other things, the generation of a PDF from dynamic data, for example, for creating customized invoices.

PDF and Cloud Server

On the Cloud Server, you can install apps like PDFtk and wkhtmltopdf.

The PHP FPDF class is supported.

PDFlib from the publisher Apryse is no longer offered on the most recent Cloud Servers because the PHP_PDF extension has become paid. If you acquire it, you will need to install it on VPS Cloud / VPS Lite or Public Cloud.

On shared hosting, ImageMagick is active and supports the EPDF, PDF, and PDFA formats.

This guide details file transfer protocols on Infomaniak Web Hosting and Cloud Server when connecting to ProFTPD servers.
 

FTP (File Transfer Protocol)

FTP connections in "active" and "passive" modes are supported (switch between the two to troubleshoot any issues).

Infomaniak opens passive ports on its side [PassivePorts 42000 44000] but only for connections to its FTP server. Passive FTP mode involves using remote ports defined by the remote server, as well as local ports that may vary depending on the FTP software/client used.

Passive mode is primarily useful when the FTP software/client is behind a firewall or NAT router that blocks active FTP connections. However, Infomaniak's infrastructure allows active FTP connections, so passive mode is generally not required.

Regarding PHP, it is not possible by default to manage this configuration centrally. Therefore, it is not feasible for Infomaniak to open all ports to support all remote configurations, as this would be neither practical nor secure.

Overall, the infrastructure does not fully support passive mode outgoing FTP connections. For a smoother file transfer experience, it is recommended to use active FTP mode or explore more modern technologies like SFTP (see below).

SFTP (SSH File Transfer Protocol)

Creating SFTP connections ensures high security for file transfers. Make sure you have SSH enabled on your SFTP software/client and use port 22 for the connection: sftp://*****.

FTPES (FTP Secure with TLS/SSL)

Use FTPES for secure file transfers with port 21 and SSL/TLS encryption. With Filezilla, for example, select "Explicit FTP over TLS" to configure your FTPES software/client: ftpes://*****.

FTPaccess

Access to the FTPaccess configuration is available.

What is not supported

Public/Anonymous User

Connecting as a public or anonymous user is not allowed. You must have a valid user account to access your hosting space.

FTPs (FTP Secure on a Custom Port)

The FTPs protocol is not supported, which means port 2121 is not open for this type of connection.

This guide covers the configuration and management of ModSecurity on Infomaniak servers. By understanding its limitations, restrictions, and effectively managing errors, you can optimize your site's security while maintaining its functionality.

Default Configuration

ModSecurity (mod_secure) is available and enabled by default on Infomaniak servers. This means that all HTTP requests will be subject to the security rules defined by ModSecurity.

It is not possible to disable ModSecurity on Infomaniak servers. The setting is server-wide where your site is hosted, meaning that all defined security rules will be applied to your site.

Error Handling

If the error message ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_HEADERS. (...) appears regarding ModSecurity, you should check that a default language is properly configured in your web browser. This error can sometimes be caused by improperly configured language settings in the browser.

This guide explains why an FTP account (and most of the time also Web Hosting) can suddenly become blocked.

Server Security

Infomaniak uses an antivirus solution on all shared servers to combat virus transmissions via FTP and scripts.

It detects potential FTP account hacks or simply the intentional or unintentional sending of files (WordPress themes, fraudulent modules, etc.) containing lines of code or malicious inclusions.

Detection of Malicious Files

The antivirus scans all files sent below 1 MB to prevent any upload of viruses / spam scripts / etc., and in case of detection, the FTP account password is automatically changed and the incriminated files on the server are locked (FTPban).

The FTP server then returns a message to the FTP client like this:

550 Virus Detected and Removed: botnet.infomaniak.5.UNOFFICIAL

or

550 Virus Detected and Removed: winnow.botnet.ff.trojans.15900.UNOFFICIAL

It is strongly recommended to clean your site and analyze what you intended to send to the server.

It is also your responsibility to check if the web applications and CMS you use are up to date. The cause of most hacks comes from security deficiencies in outdated web applications or passwords that are too weak.

To prevent your site from being hacked and blocked again, take the following actions:

Learn More

• Manually launch an antivirus scan
• Monitoring and resolving vulnerabilities in hosted scripts

This guide explains how to install ownCloud with the WordPress & Apps system included in Infomaniak's paid Web Hosting offers. Unlike other hosts, Infomaniak allows the use of ownCloud on its hosting services:

• Personal use of ownCloud is allowed on shared Web Hosting
• For intensive and professional use of ownCloud, it is recommended to opt for a Cloud Server

ownCloud is one of the applications (not developed by Infomaniak) and allows the implementation of a file storage & sharing system within a "cloud" that you fully control (user management, permissions, quotas, associated mobile applications, etc.). In the same place, you will also find Nextcloud, which is an enhanced version of Owncloud.

Install ownCloud

To access Web Hosting and install ownCloud:

1. Log in to the Infomaniak Manager (manager.infomaniak.com) from a web browser like Brave or Firefox
2. Click on the icon in the top right corner of the interface (or navigate through the left side menu, for example)
3. Choose Website (in the Web & Domain universe)
4. Click on the name of the relevant object in the displayed table
5. Click on WordPress & Apps in the left side menu
6. Click on Install an application (or New application)
   
7. Choose ownCloud and click Install
   

Learn More

• Install a free SSL certificate
• Install another Web application

This guide helps you download all the data related to your website hosted by Infomaniak. 

Introduction

• Automatic backups are made daily on Infomaniak installations.
• However, you can download a healthy and personal version of your website to secure it on your local installation, USB drive, .zip archive on kDrive, etc.
• To download a site created with WordPress, refer to this other guide specific to 2 extensions that allow local backup of information.
• Except for Site Creator, the data of a website hosted by Infomaniak is accessible and visible on the server via an FTP connection (which means to back up the data, simply download the contents of the parent folder on the server).
• You will then only need to add a backup of the site’s database (which contains information not included in the files accessible via FTP).

1. Site Location

When you arrive at the folder structure on the server, it may not always be easy to know where to go to download the information related to the site you are interested in.

Start by noting the exact location of the site you wish to download by visiting manager.infomaniak.com on the site dashboard within your Web Hosting:

The highlighted indication above is the location of the example site. Go check yours!
 

2. Connecting to the Server

To access the server, you need to use an FTP software/client or the quick access Web FTP, which should suffice in most cases:

 

3. Downloading the Site

Once you arrive at the Web FTP, go to the location noted in section 1. above, and click on the download icon to the right of the folder corresponding to your site:

 

The download will begin, and you will receive a .zip archive containing all the files that make up your website (except for files beginning with a "." like .htaccess).

4. Downloading the Database

In most cases, your site uses a database to function, so you must also download it.

To do this:

1. Click on Databases in the left sidebar menu.
2. Click on the action menu ⋮ located to the right of your database name (if you are unsure which one to take, repeat the operation for each of them).
3. Click on Download:
   

You will need to confirm the download (or export) of the most recent correct file in the next step to obtain a .sql.gz file that corresponds to all the tables in your database, which you should keep safe. The download link will be sent by email.

In terms of managing relational databases, VIEWS are enabled by default on Infomaniak hosting.

TRIGGERS, STORED PROCEDURES, ROUTINES, and FUNCTION creation are possible on Cloud Server but are not allowed on shared servers as they can generate loops and penalize all clients due to the overload that would be generated.

This guide details the "X-Frame-Options" header, which can be used to protect against, among other things, clickjacking attacks. Note that the "X-Frame-Options" header may not be supported by all web browsers. It is advisable to combine it with other methods to enhance the security of your website.

Possible Values for the Header

The "X-Frame-Options" header can be set to prevent a website from being loaded in a frame or iframe. There are three possible values for this header: