Netcraft has been tracking Citrix NetScaler in the Web Server Survey for more than a year. In the latest survey, more than ten million sites were found using Citrix NetScaler.

Citrix bought NetScaler Inc. in 2005 for approximately $300M in cash and stock, acquiring an already maturing network appliance platform. NetScaler provides load balancing, an application firewall, and application acceleration to improve the performance and security of large web applications. NetScaler can run on a variety of dedicated hardware platforms, or it can be run as a server-based virtual appliance. BIG-IP is a competing product from F5 with similar features which reached 10 million sites back in May 2009.

1.71% of all websites found this month were served using the Citrix NetScaler platform; but within the top 100k busiest websites NetScaler's share is much higher at 9.24%. The country distribution of the installed base has a few peculiarities: almost 30% of the websites hosted in Turkey and 20% of the websites hosted in Korea are using NetScaler. In Turkey, the blogcu.com network is using Citrix NetScaler and in Korea more than 50% of the co.cc subdomains were found to be using the platform. Worldwide, Microsoft, eBay, Weather.com, CNET, and MasterCard are among the busiest sites using Citrix NetScaler.

Despite its economic woes, Ireland is the country with the largest growth* this year in number of public-facing web servers in Netcraft's hosting provider server count. However, this is mostly due to large growth at Amazon's Elastic Compute Cloud (EC2) service.

Amazon started offering its EC2 service in the EU in December 2008, via a datacenter in Dublin. Since then it has been the fastest-growing hosting company in Ireland. Amazon's cloud hosting now makes up more than a third of all internet-facing web servers in Ireland, with three times more web servers hosted than the next largest hosting location.

Continue reading

Amazon has finally pulled the plug on WikiLeaks, leaving the whistle-blowing website unavailable until the traffic was redirected to Europe. WikiLeaks first directed the traffic to Sweden, and then included a second server in France. WikiLeaks announced the move on their Twitter stream:

The United States Senate Committee on Homeland Security and Government Affairs subsequently issued a press release announcing that Amazon had severed ties with WikiLeaks. The introduction to this announcement clearly states that Amazon.com decided to terminate its relationship with WikiLeaks, although the government may have spurred this decision by reportedly asking, "Are there plans to take the site down?"

The committee contacted Amazon on Tuesday after reading press reports that the WikiLeaks site was being hosted by Amazon. The site was taken down by Amazon the following morning. This could suggest that the government was able to exert some influence on the decision – WikiLeaks had been using Amazon's EC2 hosting service since October, when the Iraq War Logs were published. The cablegate site also used EC2 from the moment it was launched on Sunday.

Incidentally, two sentences in Committee Chairman Joe Lieberman's statement may have been added as an afterthought, or added by someone else, as it appears in a slightly different colour to the rest of the text in the statement:

The chairman encouraged foreign companies to make the same decision as Amazon, although whether this will happen remains to be seen.

WikiLeaks is now served from two IP addresses in Europe: one is hosted by Bahnhof Internet in Sweden, and the other is at OVH in France. Both www.wikileaks.org and cablegate.wikileaks.org are being served from these IP addresses, and have been showing good response times since the move.

Real-time performance graphs for both sites are available here:

• www.wikileaks.org uptime
• cablegate.wikileaks.org uptime

Following its initial announcement on April 23, Yahoo! will today close down its GeoCities free hosting service and delete all GeoCities files from their servers. Existing members are being encouraged to move their sites to the commercial Yahoo! Web Hosting service, and GeoCities Plus customers will be able to upgrade to Yahoo! Web Hosting at no extra charge.

Not all traces of GeoCities will disappear after today — Yahoo! states that existing GeoCities email addresses will continue to work, and the Internet Archive has been working to archive as many sites as possible before GeoCities closes today.

Free hosting services have always been attractive to fraudsters, and the speculation over the profitably of GeoCities may not have been the only reason for today's closure — nearly all of the phishing attacks hosted on geocities.com this month were actually targeted against its owner, Yahoo!. Although Yahoo! stopped accepting new registrations on April 23, the number of phishing attacks hosted at geocities.com has seen a surge in October. Of the 930 confirmed phishing sites hosted at GeoCities in 2009, 143 of these were reported this month.

Today's closure will no doubt inconvenience some fraudsters, but other free hosting services are available, and indeed, plenty of these are already used to host phishing sites.

More than 10 million websites were found running F5 BIG-IP devices, in our most recent Web Server Survey. F5's BIG-IP product family uses the TMOS platform to provide a modular approach to traffic management, and several distinct modules are available for tasks such as load balancing, SSL acceleration and fast caching.

4.26% of all websites and around 3.8% of the top million sites are now served by F5 BIG-IP devices. Facebook, Bank of America and Adobe are among the sites with the largest amount of traffic using F5 BIG-IP.

F5 BIG-IP is particularly prominent in the United Kingdom, where it is used to serve 13.8% of all websites in the country; however, it is only found on 0.42% of the web-facing computers in the UK. This exemplifies a common BIG-IP deployment, where a large number of websites can be hosted by a relatively small number of frontend devices.