Re: [liberationtech] recommendation for WP host

[Rich Kulawiec]

On Sun, Mar 03, 2013 at 09:10:30PM -0500, Rich Kulawiec wrote:
> On Sun, Mar 03, 2013 at 04:13:26PM -0500, Griffin Boyce wrote:
> >   If the problem is limited to DDoS attacks, you might find that Cloudflare
> > offers some relief.  
> 
> I agree, but: this thread (dating from today) may be of interest:
> 
>   Cloudflare is down
>   http://mailman.nanog.org/pipermail/nanog/2013-March/056564.html

Yes, I'm following up my own message.  The reason is that I think
a particular comment in that thread is worth quoting.  This comment
provides, in my opinion, sufficient reason to immediately rule out
Cloudflare from any further consideration whatsoever.

> From: "Constantine A. Murenin" 
> Date: Mon, 4 Mar 2013 12:33:42 -0800
> Subject: Re: Cloudflare is down
> 
> The issue I have is not with their network.
> 
> The issue is that they require ALL of their customers to hand over DNS
> control, and completely disregard any kind of situation as what has
> just happened.
> 
> * They don't provide any IP-addresses which you can set your A or 
> records to.
> 
> * They don't provide any hostnames which you can set a CNAME to.
> (Supposedly, they do offer CNAME support to paid customers, but if you
> look at their help page for CNAME support, it's clearly evident that
> it's highly discouraged and effectively an unsupported option.)
> 
> * They don't let you AXFR and mirror the zones, either.
> 
> So, the issue here, is that a second point of failure is suddenly
> introduced to your own harmonised network, and introduced in a way as
> to suggest that it's not a big deal, and will make everything better
> anyways.
>
> [snip]
--
Too many emails? Unsubscribe, change to digest, or change password by emailing 
moderator at compa...@stanford.edu or changing your settings at 
https://mailman.stanford.edu/mailman/listinfo/liberationtech

Re: [liberationtech] recommendation for WP host

[Rich Kulawiec]

On Sun, Mar 03, 2013 at 04:13:26PM -0500, Griffin Boyce wrote:
>   If the problem is limited to DDoS attacks, you might find that Cloudflare
> offers some relief.  

I agree, but: this thread (dating from today) may be of interest:

Cloudflare is down
http://mailman.nanog.org/pipermail/nanog/2013-March/056564.html

---rsk
--
Too many emails? Unsubscribe, change to digest, or change password by emailing 
moderator at compa...@stanford.edu or changing your settings at 
https://mailman.stanford.edu/mailman/listinfo/liberationtech

Re: [liberationtech] recommendation for WP host

[Griffin Boyce]

Hi Katy,

  If the problem is limited to DDoS attacks, you might find that Cloudflare
offers some relief.  For people who have a developer on staff, something
like Blunt Force Trauma can be a decent solution as well:
https://github.com/glamrock/blunt-force-trauma

best,
Griffin

On Sun, Mar 3, 2013 at 3:09 PM, Jillian C. York wrote:

> Also on the subject: EFF's very basic guide, designed for bloggers and the
> like, includes a guide to webhosts:
>
> https://www.eff.org/keeping-your-site-alive/
>
>
> On Sat, Mar 2, 2013 at 1:09 AM, Katy P  wrote:
>
>> Hi all.
>>
>> Sadly I was the victim of a targeted DDOS attack on my blog today after I
>> wrote some blog posts that certain people from a certain country didn't
>> like.
>>
>> However, on an upnote, a friend from the past directed me to WP Engine
>> because they scan for and fix hacking attempts.
>>
>>
>> http://support.wpengine.com/what-are-the-details-of-wp-engine-security-processes/
>>
>> It isn't cheap, but wanted to share the recommendation
>>
>> Thanks,
>> Katy
>>
>> --
>> Too many emails? Unsubscribe, change to digest, or change password by
>> emailing moderator at compa...@stanford.edu or changing your settings at
>> https://mailman.stanford.edu/mailman/listinfo/liberationtech
>>
>
>
>
> --
> US: +1-857-891-4244 | NL: +31-657086088
> site:  jilliancyork.com * | *
> twitter: @jilliancyork* *
>
> "We must not be afraid of dreaming the seemingly impossible if we want the
> seemingly impossible to become a reality" - *Vaclav Havel*
>
> --
> Too many emails? Unsubscribe, change to digest, or change password by
> emailing moderator at compa...@stanford.edu or changing your settings at
> https://mailman.stanford.edu/mailman/listinfo/liberationtech
>



-- 
"What do you think Indians are supposed to look like?
What's the real difference between an eagle feather fan
and a pink necktie? Not much."
~Sherman Alexie

PGP Key etc: https://www.noisebridge.net/wiki/User:Fontaine
--
Too many emails? Unsubscribe, change to digest, or change password by emailing 
moderator at compa...@stanford.edu or changing your settings at 
https://mailman.stanford.edu/mailman/listinfo/liberationtech

Re: [liberationtech] recommendation for WP host

[Jillian C. York]

Also on the subject: EFF's very basic guide, designed for bloggers and the
like, includes a guide to webhosts:

https://www.eff.org/keeping-your-site-alive/


On Sat, Mar 2, 2013 at 1:09 AM, Katy P  wrote:

> Hi all.
>
> Sadly I was the victim of a targeted DDOS attack on my blog today after I
> wrote some blog posts that certain people from a certain country didn't
> like.
>
> However, on an upnote, a friend from the past directed me to WP Engine
> because they scan for and fix hacking attempts.
>
>
> http://support.wpengine.com/what-are-the-details-of-wp-engine-security-processes/
>
> It isn't cheap, but wanted to share the recommendation
>
> Thanks,
> Katy
>
> --
> Too many emails? Unsubscribe, change to digest, or change password by
> emailing moderator at compa...@stanford.edu or changing your settings at
> https://mailman.stanford.edu/mailman/listinfo/liberationtech
>



-- 
US: +1-857-891-4244 | NL: +31-657086088
site:  jilliancyork.com * | *
twitter: @jilliancyork* *

"We must not be afraid of dreaming the seemingly impossible if we want the
seemingly impossible to become a reality" - *Vaclav Havel*
--
Too many emails? Unsubscribe, change to digest, or change password by emailing 
moderator at compa...@stanford.edu or changing your settings at 
https://mailman.stanford.edu/mailman/listinfo/liberationtech

Re: [liberationtech] recommendation for WP host

[Kyle Maxwell]

Blog security is a complex and important topic. A few notes:

1) Locking down your blog site will generally still leave you
susceptible to DDOS attacks. If the adversary has sufficient resources
(e.g. bandwidth) and patience, he can essentially keep you down
permanently. The only good way to deal with this is at the network
level, e.g. your host may be able to apply various mitigations
depending on the specific DDOS tactics in use. A good caching plugin
will help in certain cases; I personally have had good success with
WP-Supercache but YMMV.

2) Sucuri.net (no affiliation with them) also has a good reputation.
Experienced admins can replicate a lot of the benefits from these
types of providers separately, but most blog authors lack the
expertise or time to do this. In the meantime, take care with what
plugins and themes you use, choose a good long passphrase, and follow
the rest of the advice in the Codex at
http://codex.wordpress.org/Hardening_WordPress.

If activists have related questions, please feel free to contact me
and I may be able to assist or direct you to specific subject matter
experts.

On Fri, Mar 1, 2013 at 6:09 PM, Katy P  wrote:
> Sadly I was the victim of a targeted DDOS attack on my blog today after I
> wrote some blog posts that certain people from a certain country didn't
> like.
>
> However, on an upnote, a friend from the past directed me to WP Engine
> because they scan for and fix hacking attempts.
>
> http://support.wpengine.com/what-are-the-details-of-wp-engine-security-processes/
>


-- 
Kyle Maxwell [krmaxw...@gmail.com]
http://www.xwell.org
Twitter: @kylemaxwell
--
Too many emails? Unsubscribe, change to digest, or change password by emailing 
moderator at compa...@stanford.edu or changing your settings at 
https://mailman.stanford.edu/mailman/listinfo/liberationtech

[liberationtech] recommendation for WP host

[Katy P]

Hi all.

Sadly I was the victim of a targeted DDOS attack on my blog today after I
wrote some blog posts that certain people from a certain country didn't
like.

However, on an upnote, a friend from the past directed me to WP Engine
because they scan for and fix hacking attempts.

http://support.wpengine.com/what-are-the-details-of-wp-engine-security-processes/

It isn't cheap, but wanted to share the recommendation

Thanks,
Katy
--
Too many emails? Unsubscribe, change to digest, or change password by emailing 
moderator at compa...@stanford.edu or changing your settings at 
https://mailman.stanford.edu/mailman/listinfo/liberationtech