DA should show some kind of Recaptcha (or another solution) if server notice high volume of visits just before start application in public_html. Why ? Because loading index.php with full framework will stuck httpd as in mine example. This will be very very nice upgrade for DA. Step forward from Cpanel and others.
Redirect users to ReCaptcha or static page when server is under high load / DDoS
- Thread starter websterPL
- Start date
Well, it would be nice for DA to integrate everything that we as users take from 3rd party's because it saves us lots of money, but the downfall is that DA would have to become more and more expansive.
Yes i do agree it would be a nice added "bonus" feature, but in reality we also know that time = money, and 'most people' don't want to spend the extra money.
Also the developers of DA are not 100% skilled security based programmers (sorry guys
) and a 3rd party can fully focus on that.
I see 10000 of options that DA could implement and make them better, stronger etc... but in reality i do think that we do have to work with 3rd party's because:
Base price of DA
Development time
Development price
Development
Specialty
etc.
TLDR: Yes, i do agree added (security) features are nice for DA to have, but for sake of base price and (specialty) development i working with think 3rd party's is better.
Yes i do agree it would be a nice added "bonus" feature, but in reality we also know that time = money, and 'most people' don't want to spend the extra money.
Also the developers of DA are not 100% skilled security based programmers (sorry guys
) and a 3rd party can fully focus on that.I see 10000 of options that DA could implement and make them better, stronger etc... but in reality i do think that we do have to work with 3rd party's because:
Base price of DA
Development time
Development price
Development
Specialty
etc.
TLDR: Yes, i do agree added (security) features are nice for DA to have, but for sake of base price and (specialty) development i working with think 3rd party's is better.
Guys, DDOS is already mitigated by Imperva. To increase secure I need to allow access to host only by Imperva IPs (https://docs.imperva.com/bundle/z-kb-articles-km/page/c85245b7.html). How I can do this in DA ?
Use a system firewall for it. It will be server-wide. If you need to limit an access on a domain bases, you will need to use .htaccess files or CUSTOM section in DirectAdmin.
In general you will need:
1. Open incoming connections to TCP:80, 443, UDP: 443 for Imperva IPs only
2. Close incoming connections to TCP:80, 443, UDP: 443 for all other IPs
For particular steps you might refer to an official documentation for your firewall. Check your case:
- CSF/LFD: https://download.configserver.com/csf/readme.txt
- Raw iptables: https://linux.die.net/man/8/iptables
- UFW: https://manpages.ubuntu.com/manpages/lunar/en/man8/ufw.8.html
Probably other forums users have more free time and are eager to guide you step-by-step with this kind of the matter.
1. Open incoming connections to TCP:80, 443, UDP: 443 for Imperva IPs only
2. Close incoming connections to TCP:80, 443, UDP: 443 for all other IPs
For particular steps you might refer to an official documentation for your firewall. Check your case:
- CSF/LFD: https://download.configserver.com/csf/readme.txt
- Raw iptables: https://linux.die.net/man/8/iptables
- UFW: https://manpages.ubuntu.com/manpages/lunar/en/man8/ufw.8.html
Probably other forums users have more free time and are eager to guide you step-by-step with this kind of the matter.