DDOS attacks and protecting your dedicated server

DDOS ATTACKS III....-.I. and Protecting your Dedicated Server When it comes to security this should be your number one concern for your Magento Dedicated Server that your business is protected from hackers and spammers and you have some sort of plan in place for when the inevitable happens A FEW WAYS Firewalls DDOS protection This should be your first consideration when running any computer or server, There are 2 option for firewalls. Passive hardware Firewall, re- active software Firewall. This is otherwise known as a Denial of Service attack and it is simple getting website to load so many times that it consumes all the resources of the server and will not load for real visitors. FIREWALLS ..... ..... ... Passive Hardware Firewall Allows set ranges to be allowed or blocked from access to a webpage, site or server. Not great for a commerce website selling to the general public but works excellent for a private client membership website. 2 Re-active Software Firewall This actively monitors connections to your server and ports, taking preventative measures to block IP addresses and ranges that attempt too many connections, incorrect passwords or just too many conniptions to the server in a short space of time. The reactive type of firewall is what is needed to keep the balance between security and public access to your website. DDOS Protection This is otherwise known as a Denial of Service attack and it is simple getting website to load so many times that it consumes all the resources of the server and will not load for real visitors. This is surprisingly easy thing to do to take down websites that have no protection against this type of attack. A large hosting company was taken down by this recently which just shows why this should be big consideration and why you should pick a host that understands this type of attack. VIC TIM WEBSITE ZOMBIE PC ZOMBIE PC Thternet ZOMBIE PC ZOMBIE PC ZOMBIE PC ZOMBIE PC ATTACKER'S PC harmful traffic commands from an attacker What to do when you do get hacked? Basically you will need to locate the infected files/code injection and null the file permissions. Update your website and any plugins and themes and then harden off the folder locations that allowed for the files to be placed on the server in the first place(usually an outdated extension or theme). This can be done using a well know linux software called maldet which will scan and locate the infections and then you need to manually remove them. For more information: www.magentodedicatedserver.com ....