1. Advertising
    y u no do it?

    Advertising (learn more)

    Advertise virtually anything here, with CPM banner ads, CPM email ads and CPC contextual links. You can target relevant areas of the site and show ads based on geographical location of the user if you wish.

    Starts at just $1 per CPM or $0.10 per CPC.

Site security

Discussion in 'Security' started by ram.sharma, Nov 20, 2013.

  1. #1
    hello All,

    I just completed my stock exchange site. i will launch this site on 1 December. Everything is ready now. I invest $2700 in this site

    And i am sure i will earn good with this site.. The only thing i am little scare is to protect my site from hack and from DDoS. I am sure people will try to do huge DDoS to my site.

    My friend suggest me to use sitelock service which will protect my site from all type of DDoS and hacking attack it correct?

    or do you have any good suggestion/Tip for me?

    Thanks in advance
     
    ram.sharma, Nov 20, 2013 IP
  2. MilesWeb

    MilesWeb Well-Known Member

    Messages:
    869
    Likes Received:
    35
    Best Answers:
    7
    Trophy Points:
    173
    #2
    What type of hosting package you are using to host your exchange site? Sitelock will help to prevent your website from malicious attacks, it will help to fix Malware issue. But if it's a heavy DDOS attack then I don't think Sitelock will be able to handle the spam traffic.
     
    MilesWeb, Nov 20, 2013 IP
  3. Greg Ramos

    Greg Ramos Greenhorn

    Messages:
    54
    Likes Received:
    5
    Best Answers:
    0
    Trophy Points:
    23
    #3
    For ddos protection you'll have to find a reliable web hosting provider that offers it as a feature with their plans. Site lock on the other hand are for small malware and attacks what not.
     
    Greg Ramos, Nov 20, 2013 IP
  4. ram.sharma

    ram.sharma Greenhorn

    Messages:
    14
    Likes Received:
    0
    Best Answers:
    0
    Trophy Points:
    11
    #4
    I am talking about sitelock firewall. On there live chat they said me these thing
    so what you think should i go with them?
    what the other site using like probux.xom, payoneer.com, probux.com etc
     
    ram.sharma, Nov 21, 2013 IP
  5. ryan_uk

    ryan_uk Illustrious Member

    Messages:
    3,983
    Likes Received:
    1,022
    Best Answers:
    33
    Trophy Points:
    465
    #5
    You want to find a host that specialises in DDoS protection or take a look at services such as cloudflare.com (they include DDoS protection, among other things, although I am not a big fan as there can be crawler issues).
     
    ryan_uk, Nov 21, 2013 IP
  6. gombile13

    gombile13 Active Member

    Messages:
    136
    Likes Received:
    0
    Best Answers:
    0
    Trophy Points:
    63
    #6
    for heavy DDoS attacks you will need a specific hosting plan which is specially crafted for DDoS protection, or you can contact your hosting provider to install hardware-based firewall for DDoS protection (if you're using dedicated server).
    Provider such as BlackLotus and Staminus offer DDoS protected server
     
    gombile13, Nov 26, 2013 IP
  7. ram.sharma

    ram.sharma Greenhorn

    Messages:
    14
    Likes Received:
    0
    Best Answers:
    0
    Trophy Points:
    11
    #7
    some people in other forums sell booter/stresser to do ddos and they can do ddos upto 100gbps easily..
    i want protect my site from these type of tools
    i think 10gbps protection is not enough for me to protect me from these tools
    correct me if i am wrong
     
    ram.sharma, Nov 30, 2013 IP
  8. damoncloudflare

    damoncloudflare Greenhorn

    Messages:
    78
    Likes Received:
    0
    Best Answers:
    0
    Trophy Points:
    16
    #8
    There should be no issues with Search Engine crawlers and CloudFlare (we have search engine bots in our macro list). What did you see?
     
    damoncloudflare, Dec 2, 2013 IP
  9. MonsteRNaruto

    MonsteRNaruto Member

    Messages:
    51
    Likes Received:
    0
    Best Answers:
    0
    Trophy Points:
    28
    #9
    As you can clearly see that is a sales rep, They are saying to avoid DDoS you need to buy their scanner, Which is clearly one of the stupidest things I have herd, As all they do is scan for exploits daily and then charge you extra to fix it, If your interested in a some custom work done, I.e Scanning looking for exploits and alway setting you up on a custom Nginx/Apache server with 10Gbps ddos protection (Pretty much all these kids with their stressers majorly over estimate the power that they apparently provide)and hardened server security msg me and we might be able to work something out if you still require this.
     
    Last edited: Jan 1, 2014
    MonsteRNaruto, Jan 1, 2014 IP
  10. MonsteRNaruto

    MonsteRNaruto Member

    Messages:
    51
    Likes Received:
    0
    Best Answers:
    0
    Trophy Points:
    28
    #10
    Also cloudflare and any DNS based (DDoS Protection)can easily be reverse engineered/Bypassed unless you have a full BGP rout to cloudflare which pretty much only federal governments and big company's have as you would need to own the your own collocation and infrastructure to be fully protected by cloudflare BGP for Business's. Which you can also how dns ddos protection is vulnerable here from this black hat talk
    http://www.youtube.com/watch?v=PcJByWphmTg
    Code (markup):
     
    MonsteRNaruto, Jan 1, 2014 IP
  11. damoncloudflare

    damoncloudflare Greenhorn

    Messages:
    78
    Likes Received:
    0
    Best Answers:
    0
    Trophy Points:
    16
    #11
    We have tips about reducing that kind of risk in our knowledge base. We can only proxy web traffic, so there are ways that someone can find out the server IP even using CloudFlare.
     
    damoncloudflare, Apr 28, 2014 IP