My site was recently under a DDoS attack and was down for a few days, the attack came from Russia i believe.
The people who did it asked for $800, but of course i didnt pay. My hosting company did the best they could in order to stop the attack but it still lasted a few days and badly hurt my rankings.
I moved my site to a dedicated server, but i dont know what kind of software/hardware i need to install on it in order to prevent more future attacks, the hosting company suggested a few things but i dont know if they are just trying to get more money out of me.
While working with different issues, I have seen that many clients complaining about ddos attack on their server. So, I am posting here some useful commands to check and prevent ddos attack.
First of all when you see that your site's or server speed is very slow even though there is not much load on your server, you can guess it might be ddos. Then run 'top' command and see which processes is more, if those are httpd then fire following command which will show how many active connections your server is currently processing. netstat -n | grep :80 | wc -l netstat -n | grep :80 | grep SYN |wc -l
The first command will show the number of active connections that are open to your server. The number of active connections from the first command is going to vary widely but if you are much above 500 you are probably having problems.If the second command is over 100 you are having trouble with a syn attack.
If a website i host is under DDOS attack and i get the raw log from apache can i report it? and if i can report it and send off the log where do i report it?
I am a host reseller and the parent company is upgrading their servers to PHP5. This may break some of my clients' sites (OSCommerce, Zen). Should we fix those sites for free or should my clients pay for the upgrade?
So my the other day one of my clients rented a Windows 2003 server. Has no idea on how to run DNS server on it and demanded us to do something about it. Since he had no management plan, we let him know that if he got himself a management plan we could help him out - but looks as though he was on a tight budget and couldn't opt in for it. Same thing happened last week and again one yesterday!
To help these customers out I was wondering if I could start a DNS service. Each client would get access to it for free regardless of their operating system or management plan. They could point their domains to the nameservers and use the DNS service to point the domain's A records to their servers.
From the start, I have been using EditDNS and still using it. But coming to think of it, its getting more unstable day by day even though they have 5 servers spread across the globe. I am planning on to move to EveryDNS. With this move, I'd like to use their services for my clients too. Rather than running my own DNS servers - I feel this could work out more efficient and reliable.
So what I am planning on doing here is more like creating private namesevers to mask EveryDNS's nameservers. Then have a custom script site built to interact with EveryDNS's APIs. Sounds like a good idea? Then my customer uses the script's interface to create/delete/edit records, etc.
Anyway I need some advice, suggestion or help in this matter. Has anyone tried this stunt out before? If so, how successful were they/you? How are your customer's reaction towards this (satisfied or not?). Does it stay efficient? (both in terms of money, time and energy spent).
Also, if anyone could suggest me any programmer who could do this for me (someone well versed with DNS/EveryDNS on PHP/MySQL) it would be nice.
Edit: I guess ServerBeach/Peer 1 already has implement this. If anyone really knows whats going on there - please share.
I want to buy a billing software, but I am a bit scared about having all my clients in mysql on the server. How safe is it? Can hackers steal my data? Till now I had clients data stored on my PC.
i have my own box for my forum .. now i shared my box with friend's , but in reall they a freak friend's , just to be in safe brother, am looking to know what function i can disable in php.ini or any problem/tool to prevent anybody / attacker * nobody* permission to move in the server via his shell script..
as we know some attacker's use them own php-shell to hack site's * shared hosting *, so they can move to any account after they know the user account name * /etc/passwd * .. so as i say before is there any good functions to prevent these attacker to move in the server? so i can disable it .. or install any good tool * else modsecurity * in the system to prevent them *nobody* of that?
My server was recently hacked and I'm looking ways to secure it in the future. I use the server to host my own websites.
It was hacked to be a spam server. I traced the new files the hackers added to my "upload" directory, which is where my site members upload pics. I had set the directory to chmod 777. Could someone hack that directory solely from it being its rights being 777?
The site was custom developed in PHP, and looking through it myself, I couldn't find any security issues. But then again, I may not know what exactly to look up.
I would appreciate any general tips to protecting a server, as well as general tactics hackers use to hack a server and PHP site.
Is there a way to use ns1/ns2.yourhostdomain.com for not only your shared hosting clients but also for your linux AND windows 2003 dedicated server clients (or vps)?
Alright, so I apparently messed up my email. I downloaded my email folders from my previous host's mail folder through FTP and then uploaded them to my new server's mail folder thinking it'd be an easy transfer. Yeh... didn't work, now I can't get my email through Outlook 2003 or ThunderBird. Any ideas on how to reset my mail server? I don't know if it's just the mail folder that's messed up or what.
how can I restrict how many emails can be send per domain base? I know hostgator and hostmonster can restrict their email per hour base on their domain name...
I have noticed in a few Windows server tha the server gets hacked and there are tons of files which are mostly DVD rips and games being transferred away which results in huge amount of data transferred and bandwidth consumption increasing to as far as 29 Mbps. On further investigation, I find that all the files get stored in either the Recycler directory or the System Volume Information directories in any of the drives. Now these two directories are protected operating system files. Even if there is a windows firewall installed, there is no difference. I have even noticed that in some servers there is an automatic exception rule added in the windows firewall enabling the torrent client to communicate outside the server. This seems to be a common problem with Windows 2003 server and seems to be some backdoor of Windows allowing hackers to use the server for seeding. Has anybody come across such a problem or know the solution? Kindly help me with this.
What scripts/tools or configurations on a CPanel/WHM (Centos) server can you make to prevent spam from getting sent out by "clients" you may be hosting or just spam in general.
As, in the hosting industry, you are always going to have a client or two successfully send out spam, as some spam may not look like spam, but if you do not follow all the guildlines, I know regular newsletters can be consider spam.