This is a very common question, your customer will ask if they need a dedicated server. As a web hosting provider, I will choose to stay neutral. But when do I need a dedicated server?
A dedicated server has more hidden cost compares to a VPS. What are the hidden costs/? A dedicated server price tag has not included the followings; Backup, the larger the storage, get more expensive. More expensive Windows server license if you have more core CPU on a server. More expensive control panel license on a dedicated server. Traffic charges may or may not depends on the service provider.
But you have no choice if you need a dedicated server. The above will give you an idea the cost is not only on the server. When do you need a dedicated server? These are my thoughts and told to my customers.
Do you need more IP addresses? Most web hosting provider can offer more IP addresses for the dedicated server.
Do you expect a lot of traffic? If you have a busy network. A dedicated network port works better.
A lot of processes and high CPU utilization.
Want secure and privacy. VM is still not 100% secure-proof.
Need big storage. Per gigabyte storage is cheaper.
Got the budget.
Possible to plug in an external device. Example Portable USB Hard Drive.
Most have the idea that more expensive web hosting is better we bosting. Actually, it is not true. A shared web hosting might be good or enough for some users. If their website is hosted on a dedicated server, paying much more but they will unlikely see the difference. We call it overkill.
Most personal or small business website can use shared hosting. With Sucuri Web Application Firewall, you can still enjoy close to enterprise website protection. Plus the affordable monitoring from Sucuri, your shared hosting website is top notch in my perspective.
If you have met the following criteria, you can consider hosting your website on a shared hosting.
Got a very low budget < $100 per year.
Only a WordPress website or something similar.
I just want to introduce my business online.
I want to create 5 or fewer email accounts.
I update my website once a month the most.
Sharing IP is alright as long they come to my website using my domain name.
Only a few visitors each day, and do not have any online transaction.
If you have met most of it, you are safe to subscribe to a shared hosting.
If you are registering a .com.sg, you need a registered business or company in Singapore. An admin has issued with Singapore identity card, typically a Singaporean or a permanent resident of Singapore.
Foe .sg domain registration, the registrant must have a valid Singapore card identity and both the registrant and admin can be the same person. Both types of domain registration require the admin to verify the newly registered domain using their SingPass at VerifiedID website.
I have used both web control panels on VPS and dedicated server.l. Even you are expert in your operating system. These control panels make your job easier and organised. If someone is asking, which control panel is better? My answer can be confusing, I will say it depend.
Yes, it depends on what you are planning to host and do. We put the monthly licence expense aside. These control panels have served the general purposes but in depth, there are differences. And these control panels have their strong and weak points. As a provider, here are my experiences.
in terms of UX and the layout, I will give the credit to Plesk. The login panel, the layout and the icons are much easier to navigate. Layman will find the essential functions after they logged in.
if you have an old website is using only PHP5.2 and cannot upgrade, I will suggest Plesk in this case The PHP select has a wider range.
backup function in cPanel has greater flexibility, offer more choices on the repository.
PHP extension with Apache in cPanel is compiled using Easy Apache with better compatibility.
more users and restrictions can be created in Plesk, ideal for the owner has engaged a 3rd party who need to access the control panel.
cPanel has only 1 license type on unlimited for both VPS and dedicated server. Plesk starts with 10 domains onward, can be confusing,
cPanel has more thleskPings and modules to install, thus it takes longer time.
Anti-virus is ClamAV on cPanel which is free. Plesk premium AntiVirus is free for 1st 10 and you need to pay for the license for additional mailboxes.
You get better settings on Anti-Spam for cPanel.
Plesk has firewall settings out of the box
Plesk is using postfix and cPanel s Exim for the mail server. Personally found postfix is less confusing.
cPanel has more security settings and better protection.
cPanel has more choice on using the different type of service like DNS, FTP etc.
These are some of the differences for both control panels. For a novice user, I will strongly recommend Plesk. However, cPanel has better control, especially you had been working with shell. Now, you can probably use cPanel to accomplish.
You need to have an FTP client application. Filezilla is free and can be downloaded here. In general, we have two control panels used by our customers. However, the webroot directory is different. For Plesk, upload your index file and the rest to httpdocs. For cPanel, upload to public_html in the remote windows, which is your hosting space.
The common tool used by many to check their mail server IP address is blacklisted from MXTOOL. Often, we are hearing from someone his or her mail server is blacklisted. But by who? And how? What will happen if my mail server is blacklisted? How can I resolve? This article will provide you with the information to have a better understanding of the matter.
Firstly, we must understand DNSBL. What is DNSBL? It is referred to as Domain Name System Blacklists, also called DNSBL’s or DNS Blacklists, they are spam blocking lists that allow a mail serveradministrator to block messages from particular mail servers which have a brief history of sending spam. The lists derive from the Internet’s Domain Name Program, which converts difficult, numerical Ip such as for example 18.104.22.168 into names of a domain like example.net, building the lists much simpler to read, use, and search. If the maintainer of a DNS Blacklist offers previously received spam of any sort from a specific domain name, that server will be “blacklisted” and all communications sent from it might be either flagged or rejected from all sites that make use of that specific list. DNS Blacklists have got a fairly long history in internet terms, with the initial one getting created in 1997. Known as the RBL, its purpose was to block spam email and also to educate Internet providers and various other websites about spam and its own related problems. Although contemporary DNS Blacklists are hardly ever used as educational equipment, their function as a contact blocker and filtration system still serves as their main purpose even today. In fact, the vast majority of today’s email servers support at least one DNSBL in order to reduce the quantity of junk mail customers using their support receive. The three fundamental components that define a DNS Blacklist – a domain name to web host it under, a server to host that domain, and a listing of addresses to create to the list – also haven’t changed from enough time when the RBL was initially created to today. Since then, a large number of different DNSBL’s have sprung up and so are available for use, plus they all have their own lists that are populated predicated on what does or doesn’t meet up with their own requirements and criteria for what a spammer is. Due to this, DNS Blacklists may differ greatly from one to the other. Some are stricter than others, some just list sites for an arranged period of time from the day the last little bit of spam was received by the maintainer versus others that are manually managed, and still, others not only block IP addresses but also whole ISP’s recognized to harbor spammers. This outcome in a few lists working much better than others because they’re maintained by providers with a greater degree of trustworthiness and credibility than competing lists may have. Users may also use these variations to select which DNS Blacklist is most effective for them based on what their particular security needs are. Much less lenient lists might enable more spam to complete but may not block non-spam text messages that have been misidentified on lists which have stricter recommendations for how are you affected or what’s left of it. To greatly help facilitate this, DNS Blacklists that are designed for use by the general public will generally have a particular, published policy detailing just what a listing means and must abide by the criteria organized in it to be able to not merely attain public confidence within their services but to maintain it as well.
Now, we have understood what is DNSBL. The commonly used list is from spamcop, spamhus, barracuda etc. They are maintaining an almost real-time updated list to most mail server administrators to block spam emails. This is a common and popular method. As soon as your mail server is blacklisted and listed. Emails are originated from the blacklisted mail servers are bounced until they are delisted.
Have you ever wondered what WAF means? (extracted from Sucuri Website)
WAF stands for Website Application Firewall. In order to make it simple to understand, imagine your website as a house and the people outside on the streets are the traffic that wants to come to your website. Of course, you want to open your door to friends and family, but you also want to protect your house from the bad guys. That is exactly what the firewall does. The WAF is the locked house door. A WAF keeps the malicious traffic off your website. In other words, a WAF is a layer of protection that sits between your website and the traffic it receives.
Why do you need a WAF?
The same way that there are criminals on the streets, there are hackers online. Threats to websites emerge and evolve every day; keeping up with the hacking trends can be very stressful to any webmaster.
Network and local firewalls alone cannot stop hackers from breaking into your website anymore. Many of these solutions are not effective when it comes to stopping malicious online traffic.
Expecting the hosts to take care of your website security can be misleading, as their main goal is to ensure the accessibility of your website. Some hosts, like GoDaddy, do offer website security. Nevertheless, you need to make sure to implement a security solution, like the Sucuri Platform to protect your website for you.
Another important aspect of having a Website Application Firewall on your website is the time it will save you in the long run. After setting up a WAF properly on your website, you would no longer be spending precious time thinking about ways to protect it. Then, if your website was, in fact, hacked, how many hours would you waste trying to find the issue and fix it? I am not even mentioning the amount of money potentially lost from having an unprotected website.
How does a WAF work?
The WAF works as a vaccine for a website. It is a preventive measure taken so your website does not get infected or goes offline. Nobody really likes to be vaccinated, but the cost of getting sick is always a thousand times higher. Having a WAF activated means having a proactive posture on your website security.
You already know that having a website firewall solution is vital to protecting any website. Next, let’s dive deeper into the characteristics of WAFs.
Application firewalls go beyond the metadata of the packets transferred at the network level. They focus on the data in transfer. Application firewalls were created to understand the type of data allowed for each protocol, like SMTP and HTTP. There are specific application firewalls for websites and they are called Website Application Firewalls (WAF).
In general, all WAF solutions function the same way. They are basically a wall between your website application and the visitor browsing your website. A WAFs main goal is to impede malicious requests from damaging your website.
The difference among the many website firewall solutions in the market is mainly how they are deployed and their database. The Sucuri WAF is the most advanced in terms of virtual patching. We take research very seriously. Our firewall analysts work hard day and night so we can provide you the most complete and robust solution in the market. Our WAF filters block up to 100% of the attacks your website can suffer from.
Now that you know what a WAF is, let’s talk about the Sucuri WAF.
Sucuri is a website security company that was born to offer website owners a comprehensive security solution. The Sucuri Firewall is a cloud-based software as a service (SaaS) Website Application Firewall (WAF) and Intrusion Prevention System (IPS) developed exclusively for websites.
What is great about the Sucuri Firewall is that it functions as a reverse proxy. The Sucuri WAF intercepts and inspects all incoming Hypertext Transfer Protocol/Secure (HTTP/HTTPS) requests to a website. Then the WAF strips the malicious requests at the Sucuri network edge before it arrives at your server.
Another feature that the Sucuri Firewall offers is that its WAF includes Virtual Patching and Virtual Hardening engines. The Sucuri Firewall mitigates threats as they happen.
The Sucuri WAF keeps the threats far from your website without impacting your website negatively. Quite the opposite, the Sucuri website firewall makes a website up to 70% faster, as it is built on a Content Distribution Network (CDN).
Performance optimization is part of the Sucuri WAF features. The CDN caches dynamic and static content across all nodes in the network to ensure optimal performance around the world. The Sucuri WAF configuration makes adequate preparation for global reach, load balancing, failover, and comprehensive performance improvement.
The Sucuri WAF runs on a proprietary Globally Distributed Anycast Network (GDAN). Anycast allows a network to broadcast an IP to multiple locations from a single node, permitting the nearest node to respond to a request. Imagine your website has a global audience: the website is hosted on a server in Houston, but your main visitors are in Asia and Western Europe. If you have the Sucuri Firewall activated on your website, the content would be broadcasted from a Tokyo and London Point of Presence (PoP) via our Anycast network. The result would be an improved user experience as visitors in Asia would get a response from the Tokyo PoP, and the ones in Europe from the London PoP. To sum it up, since Sucuri WAF runs on a Global AnyCast Network, the nearest node responds to the requests, bringing improved availability, resiliency, and failover capability to any website.
This unique configuration allows for high availability and redundancy if anything fails in the network. Moreover, the Sucuri Firewall offers full Domain Name Server (DNS) services.
Another great advantage of using the Sucuri WAF solution is that it can help you increase your SEO rankings. The inclusion of an SSL certificate and improved speed from the Anycast CDN can improve SEO. You might see SEO improvement after the Sucuri WAF is activated because having HTTPS enabled and using a CDN are confirmed ranking signals from Google.
To sum it up, the Sucuri WAF:
Mitigates Distributed Denial of Service (DDoS) Attacks
Prevents Vulnerability Exploit Attempts, such as SQL injections, cross-site scripting (XSS), remote file inclusion (RFI) and local file inclusion (LFI)
Protects Against the OWASP Top 10 (and more)
Protects Against Zero-Day Exploits
Protects Against Access Control Attacks, such as Brute Force attempts
Offers Performance Optimization with its CDN
How can I add the Sucuri WAF to my Website?
In order to add the Sucuri Firewall to your website, all you need to do is add a DNS A record or switch to Sucuri nameservers. The time to go live is dictated by the DNS Time to Live (TTL). In most cases, it takes from 30 to 60 minutes. If you have any issues with the setup, or if you are not technical and need assistance, our support team can guide you through it.
As you have seen, using the Sucuri Website Application Firewall can be very valuable for your website and business. Not only do we offer protection, but also a performance boost and better SEO, which are like gold for any website owner. If you are wondering why you have not added our Firewall to your website yet — don’t worry. Chat with us and we will help you have your website protected today