14 Oct

Patching SUPEE-8788

SUPEE-8788 is an important security update for Magento to address remote code execution and SQL injection vulnerabilities. Unfortunately, Magento have released two versions of SUPEE-8788 due to insufficient testing that lead to conflicts with previous patches. The original SUPEE-6788 patch (released before 14/10/2016) is known as SUPEE-8788 v1 (although, this it is not identified as … Continue reading

27 Apr

FAQ: Moving from a standard server to MageStack

"Ask Sonassi" are excerpts taken from email responses to customer enquiries, used to quickly help inform you as a customer It looks like Sonassi setup is quite non-standard Absolutely. We’re the only company in the world that are so dedicated to Magento that we wrote an entire operating system specifically and wholly for Magento. There … Continue reading

7 Mar

FAQ: Comparing hosting on hardware and price

"Ask Sonassi" are excerpts taken from email responses to customer enquiries, used to quickly help inform you as a customer Your proposal appears more expensive than similar hardware elsewhere I can appreciate that on the surface, if you were to merely look at the high level specifications of the hardware in the stack, that it … Continue reading

5 Mar

Your misconfigured Magento search module will hurt you

One of MageStack's many features is its native support for replacement Magento search engines; in an instant, you can enable a Sphinx instance, or a SOLR instance or Elastic - to replace MySQL. Replacing the search engine in Magento has immediate benefits, Improved search accuracy Improved search performance Improved layered navigation performance Reduced server load … Continue reading

4 Mar

Reduce Magento MySQL usage using compression

Most Magento production stores have a few clones used for development purposes; be it UAT, staging, development branches or simply disposable test sites. But with each and every clone - the storage requirements increase, which for the files, isn't too dramatic, just a few megabytes (excluding media) - but the database can be a whole … Continue reading

2 Mar

Securing the Magento 2 CLI on MageStack

A customer raised a good question about using the Magento 2 CLI binary (bin/magento) on MageStack and asked how it works with domain group isolation. On Magento 1, we encourage a strong security practice for all CLI/cron activity by using wrappers for the commands, to constrain the command being run within the domain group - … Continue reading

28 Jan

Patching SUPEE-7405 and SUPEE-7616

Thankfully, applying SUPEE-7405 and SUPEE-7616 is a relatively straightforward process (unlike 6788). The only thing to bear in mind is ensuring the dependencies are satisfied prior to application. The security bundle includes protection against several security-related issues, fully documented https://magento.com/security/patches/supee-7405. Including APPSEC-1177, identified by Sonassi as part of our commitment to Magento security. Where to … Continue reading

28 Jan

FAQ: Load testing a store demonstration

"Ask Sonassi" are excerpts taken from email responses to customer enquiries, used to quickly help inform you as a customer Now you've provided a free demonstration of our store on MageStack. We want to run some speed tests to supplement the report you have provided, what tools do you recommend? Would GTMetrix or LoadImpact be … Continue reading