I want to host a web server, but there's something in my way: DDoS attacks. I'm very new to hosting a web server, and i just recently found out about them. I might be wrong, but I know that when bots send requests to the server, they do not return an answer to the server, so the server tries to send the file that the bot wants again and again. Is there a way to make a server return the file 5 times if the client "doesent get" the file, and the 6th time the server doesent return the file to that client again?
I apologize if the question or the title is a bit confusing, my english is bad.
Try using a hosting solution such as CloudFlare:
Cloudflare, Inc. is a U.S. company that provides a content delivery
network, Internet security services and distributed domain name server
services, sitting between the visitor and the Cloudflare user's
hosting provider, acting as a reverse proxy for websites. Cloudflare
is headquartered in San Francisco, California, with additional offices
in London, Singapore, Champaign, Austin, Boston and Washington, D.C...
Related
I have recently developed a website for a client and don't have much experience working with emails. I have set up and configured an info#ourdomain.com email address and can access it through our web hosting service.
However I want to be able to get my client to log into the email so they can begin working with it, ideally with Windows mail.
This is the information I have been given by the host (I changed all the information for security).
Information Provided
Would be great if I could get a step by step on what options to choose, account type, and where to put the certain port numbers etc.
Thanks in advance
The fact that I access a certain website is certainly visible to the admin in my office - i.e. at work - and to the ISPs at work, home or wherever I access that website from. But if I send an e-mail from Yahoo/Google/etc. are the sender and receiver visible to the said admin, considering the fact that the connection is thru https: ?
There's a few things to consider here:
Connecting to your service prover If you log on to https://mail.google.com or https://www.hotmail.com then you are over https and so should be secure.
However most corporates only have internet access through a proxy and like to virus scan traffic. As HTTPS traffic is encrypted they use so called man in the middle (MITM) proxies so when you connect to Gmail over https you actual connect to the proxy over https (and it provides a HTTPS certificate in Google's name) and then that proxy connects to Google.
This is allowed by web browsers if the proxy certificate is set up as a local CA on your computer (which if in such a corporate environment they will be able to install this), but is very difficult to do without access to your machine (e.g.on coffee shop wifi as you will get a HTTPS certificate error). While this sounds dodgy (and is not well liked by security professionals as can introduce more risks), it is quite common in larger companies - though often companies that do this also block access to web mail providers as well. Virus scanners installed on your machine work in the exact same way.
You can see if this is the case by looking at the HTTPS certificate change in your browser and see if it is the same as at home and chains up to a real certificate authority (CA) or to your company name.
Once a party is performing a MITM and, while most companies have neither the resources nor the inclination to read this traffic, other than to run it through an automatic virus scanner, in theory they can.
Encryption to the sender address. Once you are on your mail provider (via web mail or from an email client on your device) and send a mail, for example from your gmail account to a hotmail account you've got to consider whether that connection is encrypted. In 2026 Gmail started warning if the sender address is for a service that doesn't allow Gmail to use HTTPS to send it the message. Unfortunately that was pretty much the norm for a long time and in 2014 Google said 50% of mail it sends is unencrypted, though (partially in response to Gmail marking this as insecure I guess) that has increased to 80% at the time of writing.
Either way this is from Gmail servers so local admins (e.g. in your office) should not be able to intercept this traffic as it's not sent on the local network (unless you work for a network telco or a spy agency!), but in theory unencrypted messages could be read here.
User encrypted mail only encrypted the body. Technologies like PGP or SMIME allow you to Encrypt your email message separately before you send it via a provider but this is only for the message contents so the To Address, From Address and Subject are still visible over plain text SMIME does allow you to have different subjects but that has its own problems - see the answer here for more details). And it's a massive of a pain to use these to be honest.
Authentication technologies like do not help here When researching encrypted mail you may see mention of DMARC, DKIM and SPF but they are authentication methods (to ensure you sent the message) rather than tools to hide data so ignore any mention of those when asking about hiding data. For example the earlier Google Blog link talks about authentication as the other thing they will warn against.
Quote a broad topic, and not a great fit for a Stack Overflow question to be honest (perhaps would be OK on the sister site http://security.stackexchange.com), but hopefully that gives you some understanding anyway.
Another, more detailed answer, can be found here: Using SSL/TSL to secure your communications. What I understand summing up both answers is that the e-mail content should be encrypted separately to be completely safe. I still am not sure what the answer is re: e-mail adresses of the sender and the receiver(s).
I am working on a web application, and am having trouble with the most basic of functions, sending an email. My email code does work, I can send to gmail, yahoo, and my work email address all day long. The problem is that when ever the web application attempts to send to an Apple iCloud email address, the email never makes it. I've checked the email server logs, and it does send, which would lead me to believe that Apple is somehow blocking my emails before they ever reach the user.
System Setup
Domain name purchased through GoDaddy. I set up a DNS A record to forward all traffic that hits that domain name to our virtual server, which is hosted at 1and1
The virtual server is a windows 2008 server. I set it up as an email server that actually sends the email itself, as opposed to relaying through GoDaddy.
Note: on the above, all i did was add a *. entry in the iis email configuration
Below is my PHP test code, that sends to every where with no problems, except iCloud.
mail("person#me.com", "test", "this is a plain test", 'From: Site <no- reply#domainname.com>');
Any help would be greatly appreciated!
Had a reverse DNS entry added for our server's IP address, and got the server's IP address taken off of Apple's blacklist.
I have my own exchange for emails. There are times when my exchange service is down (because of power failure or maintanance) and during this time, my users do not have access to the exchange web access. To keep the user experience consistant, I was wondering if I can setup something like this:-
If my exchange server is down, google apps takes over and start relaying my mails. Users could log into google apps gmail account to send / receive mails. Once the exchange server is back online, they can continue using the exchange web access.
Please let me know if this is possible at all.
Thanks all in advance,
BTR Naidu
www.btrnaidu.com
www.lmcentraal.com
yes, you need to configure Google Apps as your secondary email server.. there are a few tutorials online to help you with this subject, e.g.
Understanding and Working With MX Records
How To Setup Backup or Secondary MX
I have a dedicated Linux web server where my website is running like www.example.com.
Now I want to start another service for my users and want to give mailing features like Gmail and Yahoo mail.
I want to give facility to my users to create email IDs as they create on Gmail or Yahoo Mail and use it as their email address like XYZ#example.com or ABC#example.com.
Is this possible for me to use my dedicated web server as mail server too,
or I need to hire a new specific mail server for this purpose.
Also, if I can use my server as mail server and can give IMAP and POP like features then what are the PROs and CONs in that?
My hosting company says that I have facility to create unlimited email addresses
and I have created a few for mt like support#example.com and feedback#example.com
and I am getting emails on these IDs.
Is that mean, my hosting already have setup a mail server for me (the same I mentioned in my question and want to setup)
Or this is just for me to use and manage my website and I can not share these email addresses with my users by giving an email service.
Yes you can run simultaneously a web and mail server. Follow part 3 of this guide: http://mysql-apache-php.com/ to set up email. Just make sure that your router is fully capable (supports NAT etc.) - it should be able anyway
However it does appear from your question that your hosting company has set up its own mail server. Which does mean unlimited emails, however the only issue could be the amount of space they are willing to host for you (As in you can only have 2 GB of space on their mail server). Hope this helps.