Most DDoS protection is garbage.. You would need a 50,000 CISCO router just for DDOS protection. Most companies simplely find the port the traffic is coming on and redirect the entire C class to somewhere where it doesn't do damage.
If you are expecting attacks, do this.
1. Get a extremely secure root password (upper & lowercase, and alphanumerical)
2. Delete the root account and use something less popular
3. Change the SSH port
4. Install RFNetwork scripts (APF Firewall, BFD, etc) and logwatch and monitor ALL logs.
5. Monitor Apaches usage log
6. Get some cpanel mods (security, etc)
7. Upgrade to PHP 5 (Entirely)
8. Upgrade Apache to version 2
9. Run cPanel update and make sure it is the latest tree (don't worry about being stable.. cpanel has yet to release a non-working package to the public)
10. Follow al the normal locking down of server (harden files, /tmp folders, etc)
11. The best way to block hacking is is disallow perl/cgi scripts on user accounts (cpanel needs perl and cgi in order to work, but I mean your clients, google how to do this).
If you do all that it will take along time for them to get it and you might even see them trying to get in and be able to block them before they can.
Regarding 3,4,5,6,8, and 10. Where do I do this ? In the cPanel controls ?
Will I need managed hosting ? Dedicated server ? Or can I get away with hosting costing around $75 per year ?
As for upgrading to PHP 5 do you mean changing all file extensions to .php ? So no .htm or .html ...etc ?
Well, definitely, dedicated is far safer environment than shared, if you don't feel your server management skills will allow you to run the server go for a fully managed pack, alternatively you may want hourly administration.
yea my site got hacked too. they said someone hacked my password and uploaded a ddos script so they suspended my account and notified the authorities...it sucks
DDOS or DOS nothing in this world can be done to actually avoid them, both theoretically can be stopped but practically no you cannot differentiate between an actual user & a ddos user
Looks like any new dedicated server which is configurated is a DDOS target.
I did rent a server months ago, and I recieved massive Sync attack more than 30 days.
I had to hire a linux expert to defend my server, after 30 days looks like work finally began to stop attacks.
some basic aspects:
change ssh port
much ram increase posibilities that your server can tolerate attacks.
lot of banwith
If someone is planning to buy a server and run a bussines, well think that is possible that your server will be attacked and probably you will loose 2 weeks making everything to protect your server.
__________________
Shoutcast - Web Radio - AutoDJ - Playlist available
