More details about last night’s DDoS attack

January 25, 2013 Geir 2 Comments

In the early hours of 25th January the Runbox network was subject to a Distributed Denial of Service attack. This sort of attack uses multiple computers around the world to flood our servers with requests and this makes it difficult, if not impossible, for legitimate access by our customers.

Response and consequences

We were quick to respond to this problem, but it can take some time to identify the multiple sources of the attack and then block the traffic to our servers. As a result of the attack many of you would not be able to access our services during the time it was taking place.

The attack was carried out by a group who had previously failed to get access to some of our customers accounts that do not belong to them. They had threatened to carry out the attack if we did not comply with their wishes.

No data was compromised

We would like to assure our customers that no customer data was compromised before, during or after the attack, and that we would never give way to such threats. If you have any concerns about this incident, please open a support ticket at https://support.runbox.com

Continue Reading →

[Resolved] Email services down because of DDoS

Geir 10 Comments

Our email services are inaccessible and we’re working to find out where the problem is.

We’ll keep you posted and apologize for the service interruption.

UPDATE 00:45 CET: We seem to be under a DDoS attack (Distributed Denial of Service) attack, flooding our servers with requests and preventing legitimate logins to our services. We’re working to block the attackers now, so stay tuned.

UPDATE 01:45 CET: We’re still working to block the attackers on several levels of our network and we expect to be back up soon.

UPDATE 03:45 CET: The attackers changed tactics but we’re regaining control over our network now, and our services should be accessible again.

Continue Reading →

Upgrade for Runbox 4 users

December 20, 2012 Geir 24 Comments

Although Runbox 5 was launched in 2009 we have continued supporting Runbox 4 despite having to maintain an extra set of servers and software.

At this point we are going to have to make some changes, though…

Runbox 4 and the recent database upgrades

We have been planning to retire Runbox 4 for a while now, but some of you who have been with us for a long time have grown to love the trusty but perhaps a bit clunky interface. So we postponed the decision and wanted to do it slowly and gently at some point in the future.

However, when completing the database server replacement today, we realized that some of the software powering Runbox 4 is no longer compatible with the new database servers. We have tried upgrading that old software, but it’s proving very difficult.

Runbox 5 and the even newer Runbox 6

Since we think it’s better to spend time improving the new Runbox 6 instead, and because Runbox 4 is so old it’s starting to be a security risk, we have decided to upgrade those still using Runbox 4 to Runbox 5 Basic.

Runbox 5 Basic works very similarly to Runbox 4, but it looks a lot nicer. Runbox 5 is the standard Webmail while we finish the new Runbox 6, which is still in testing.

You can find more information about how Runbox 5 works here: Runbox 5 Upgrade Guide

We hope you will like Runbox 5 while we keep working to finalize Runbox 6!

Drafts in Runbox 4 vs Runbox 5

In Runbox 5, drafts are stored in a different way that lets them be synchronized with an email client over IMAP. Unfortunately, this also means that drafts stored in Runbox 4 are not available in the Runbox 5 interface.

However, for those of you who have saved drafts in Runbox 4 we can most likely convert them to Runbox 5 if you contact us via https://support.runbox.com.

fast.runbox.com and light.runbox.com

The text-only Webmail at fast.runbox.com was also running Runbox 4 software. We have a new, similar webmail powered by Runbox 5 available at light.runbox.com for those who want that: http://light.runbox.com/mail

fast.runbox.com will therefore redirect to light.runbox.com from now on.

Continue Reading →

[Completed] Scheduled database replacement and downtime

Geir 17 Comments

7:00 AM CET: We are now stopping all email services in order to complete the database server replacements.

We will redirect www.runbox.com and beta.runbox.com to this blog so you will be able to follow our updates.

8:05 AM CET: The work is almost complete and we’re getting ready to start the new database servers that will take over.

8:12 AM CET: We have started the new database servers and will start the email services now.

8:16 AM CET: Everything looks good, and all email interfaces are operational. The email queued during the downtime has been delivered. We’ll remove the redirection to this blog now.

Continue Reading →

Server replacements and scheduled downtime

December 19, 2012 Geir Leave a comment

In order to complete improvements to our email services we are scheduling the following downtime:

*** Thursday, December 20 at 6:30 AM to 8:30 AM CET ***

(5:30-7:30 GMT / 12:30-2:30 AM EST / 9:30-11:30 PM Dec 11 PST)

This means that the Runbox email services to be unavailable for up to 2 hours while the work takes place.

The downtime should be outside business hours for most of our customers, but we know you depend on your Runbox email and we will work as efficiently as possible.

Incoming email will be queued on other servers and will be delivered once the system is fully operational again.

What you can do

If you usually check your email during this time, please log on either well before or after that interval on Thursday.

To keep updated you can check our Blog at http://blog.runbox.com and Twitter at https://twitter.com/Runbox.

What we are doing

We are completing work started last week, switching to new and powerful database servers. This replacement will improve both the performance and reliability of our email services.

Why it is being done

This is part of our server upgrade plan in which most of our servers are being replaced and/or virtualized.

By replacing or virtualizing our servers we greatly improve the reliability of our email services since we will not only be running better hardware, but will be able to move services across our servers much more easily.

We apologize if the upgrade causes any inconvenience for you and appreciate your understanding!

Continue Reading →

[Postponed] Scheduled database replacement and downtime underway

December 15, 2012 Geir 2 Comments

We’re getting ready to stop all email services in order to switch to the new database servers.

We will redirect www.runbox.com and beta.runbox.com to this blog so you will be able to follow our updates.

Once we have stopped the services we will import into the new database the records that have been added/changed since the full import we did last night,

Then we will move the database service address to the new servers, and start them up. If all goes well, the email interfaces will be started shortly thereafter.

UPDATE 07:10 AM CET: IMAP and POP services stopped. Stopping database services.

UPDATE 07:19 AM CET: Starting import of database records that have been changed since last night’s full import.

UPDATE 08:09 AM CET: During the import we discovered records that will need to be converted to another format. The safest solution is to revert to the old server and reschedule the switch once the conversion is done. We will inform everyone when this will occur.

Continue Reading →

Database change postponed to next week

December 12, 2012 Kim@RunboxSolutions Leave a comment

We will come back with more information.

Continue Reading →

Server upgrades and scheduled downtime

December 5, 2012 Geir Leave a comment

In order to improve our email services we will perform server replacements with the scheduled downtime:

*** Wednesday, December 12 at 6:30 AM to 8:30 AM CET ***

(5:30-7:30 GMT / 12:30-2:30 AM EST / 9:30-11:30 PM Dec 11 PST)

This means that the Runbox email services to be unavailable for up to 2 hours while the replacement take place.

The downtime should be outside business hours for most of our customers, but we know you depend on your Runbox email and we will work as efficiently as possible.

Incoming email will be queued on our servers and will be delivered once our system is fully operational again.

What you can do

If you usually check your email during this time, please log on either well before or after that interval on Wednesday.

To keep updated you can check our Blog at http://blog.runbox.com and Twitter at https://twitter.com/Runbox.

What we are doing

We are switching to two much more powerful database servers which will improve both performance and reliability of our email services, since the second server can take over in case the first one goes down.

This server replacement is one of the last on our system that will need extended downtime.

Why it is being done

This is part of our server upgrade plan in which most of our servers are being replaced and/or virtualized.

We apologize if the upgrade causes any inconvenience for you and appreciate your understanding!

Thank you,

The Runbox Team

UPDATE 12.12.2012 7 AM CET: Please go to the main page at http://blog.runbox.com for updates.

Continue Reading →

IMAP improvements

November 14, 2012 Geir 5 Comments

We are currently tweaking the IMAP configuration on our servers to allow more concurrent logins, which should improve responsiveness for email clients such as Thunderbird, Apple Mail, Outlook, and smart phones.

We appreciate feedback on how we are doing!

Continue Reading →

Runbox listed by backscatterer.org

October 10, 2012 Liz Leave a comment

Some users may have had mails bounce recently with an error referring to a blacklist called ips.backscatterer.org, or no clear error at all. This is caused by the sole blacklist runbox’ mailserver IP address is on, which is a list which only blacklists mail servers for handling mail bounces in certain ways. Many other mail servers does it in the same way we do, but our large volume and problems with the IMAP bandwidth quota (now solved) have probably caused us to be on this list on and off for years.

This is NOT a spammer blacklist in other words, and it is irresponsible and uninformed to bounce mails based on any single IP blacklist, but especially this one. And recently, it seems that far more services use this list in such a manner. If your mails have bounced from a domain where you have contacts, we recommend sending them the following link:

http://www.backscatterer.org/?target=usage

We may become delisted as of Oct 12, and will update this post then if so.

UPDATE: We are currently delisted, but will update this post if we are re-listed.

Continue Reading →