Protection

[Kaso]

Hello McM,
Is there anyone out there that can tell me some specific tactics to protect my server from DDOS attacks, cyber attacks, duping, etc... Just some tips from protecting my server from the bad.
I know about NoCheatPlus and will be configuring that. Also will have a plugin that creates automatic backups of worlds. I heard somewhere that it is important to disable links in the chat, but I am not too sure why. I was thinking when you clicked the link it would leave you liable for hacking. But, I am not altogether sure.
Thank you,
~Kase

 

[Kaso]

https://gyazo.com/c9de47c37f4392ec970b961b52253aaf

They are that cheap?

 

[kojoti]

They are that cheap?

Yes

 

[Kaso]

By the sounds of things, he is just running an MC server on it, and he is the only one with access. There is no real need to disable root. As previously stated, "Strong passwords", "fail2ban" that's enough to protect the root account from brute force. More info on that here: http://security.stackexchange.com/questions/114721/why-is-disabling-root-necessary-for-security disabling it is either a redundant practice, or due to him been the only person using the dedi. Simply not needed as long as he has a good password, and doesn't tell anyone / write it down etc.


I'm talking about the common boosters you get hit with in general. "BadLion" and "MinePlex" are large server which I have already stated that "If you have 1000+ players then you will be a target for larger / ransom attacks so more may be needed." both of those servers apply to that. The vast majority of attackers are angry players or people who jump from server to server causing problems for their own entertainment. These are the ones that use basic cheap online booters most of which are under 25Gbps. Some a little higher hence why I said 100Gbps would be decent.

I'm trying to be practical, no one is likely to attack a small - medium sized MC server with "1.1Tbps". People with that much bandwidth aren't going to really bother with the vast majority of MC servers, with just a handful of exceptions.



I have in the past, but I generally don't really like Windows servers, so don't really use them often. Multicraft can be installed on a Windows server though. Steps on how to do that here: https://www.multicraft.org/site/docs/install#1.2 however Linux is generally better for this. Linux dedis are also cheaper, since they don't have the Windows licence bringing the costs up.

I have heard bad things about mulitcraft and it doesn't give you as much control over the server as would just the computer itself. What is a root password and how many Gbps mitigation would you need for a server with up to 1000 players?