• DessalinesA
    link
    fedilink
    arrow-up
    2
    ·
    4 years ago

    For most things, ddos protection isn’t gonna be necessary, they’re targeted attacks. For most servers, simple nginx rate limiting, ufw, and fail2ban or https://github.com/crowdsecurity/crowdsec are good enough… there are good guides for doing other things too like disabling password-based ssh logins.

    Good VPS’s will offer anti-ddos protection, we were getting hit here pretty hard until we moved to ovh. Cloudflare should never be an option though, that gives them all form submits, including passwords, all client-server data unencrypted.

    • lavidaloca
      link
      fedilink
      arrow-up
      2
      ·
      4 years ago

      Whoa! I looked it up. OVH offers quite a lot there. That’s awesome! Will definitely consider moving my setup there. Appreciate the tip.