Forgive me if this would have been better placed somewhere else on the stackexchange network but I have seen a few Laravel questions being asked here so thought it would be OK.
Anyways...
I have a Laravel app which I want to get online and found some hosting here: https://www.server4you.net/virtual-server
The pricing is really good and there is root / SSH access. As I dont know if my web app will be a financial success I dont wanna go all out on a dedicated server but also don't mind migrating it at a later date (I know this will be a pain!)
I have seen a few people online recommend against using a VPS / shared server for a laravel app...my question is why?
If the servers can perform as advertised then this should be good?
I have never bought a vps or uploaded my own Laravel project to a server before so I feel like I should ask these questions now before I realise I have shot myself in the foot somehow way down the line...
Cheers!
Related
I have been doing a lot of research on this and I can't seem to find a definitive answer. Obviously these days security is a big issue, hacks are going on all over the place of major companies that invest millions into security and they're still getting hacked.
I work on Laravel a lot and use shared hosting with Hostgator or some similar company of high report. Laravel comes with a built in function for encrypting database info and decrypting to the user when requested.
However, I have a question on how secure this ACTUALLY is. If someone gets into my cPanel, my app key which is used for encryption is right there in front of them. Granted, my cPanel password is the one that's auto-generated by Hostgator and it's complete jibberish with semicolons and alphanumeric strings all over, so it's not easy to guess.
But I'm trying to learn a little bit more about security. If my app key in my env file is locked securely behind my cPanel login, is Laravels built in "encrypt()" method "enough" to call an app "secure"? Is there other measures within Laravel or my host provider that could make it more secure than just tight passwords? Is there some sort of practice of referencing the app key through an external source that's not located in the cPanel area? So even if my cPanel got hacked, my app key wouldn't be in those files and get exposed?
I'm not a security expert, but there are a few points I can share from my experience in working at highly-secured companies.
First, Laravel itself is fine. You can generally trust open source software since it's transparent and security bugs get discovered and addressed early. So you don't need to improve Laravel, just use it as is, preferably an LTS version.
Then, CPanel is a liability. You should minimize weak points on your system, i.e. those that are externally accessible. Get a VPS or a private server and access it via an SSH, don't use tools like CPanel and PhpMyAdmin on it. The less software you have that talks to the outer world, the less vulnerable you are to bugs in that software.
In my current company the production server can only be accessed via SSH from a single IP address, the address of the dev server. So I log in to dev server first, and then log in from there to the prod. It denies all connections from all other IPs.
If you are limited to using CPanel or something similar, consider protecting the login page with HTTP Basic Auth, some hosting providers allow that.
You also want to keep your system and software up to date. Not too new either as that may have bugs that haven't been caught yet. Our devops prefer to have it a couple of minor versions behind, so that the community has time to test it out and get hacked for you.
That's all I know as a web-dev, sure enough there are special tools and ddos protection services but that's beyond a dev's concern imo. If you just follow these steps, you should be safe. Hope that helped a bit, cheers :)
I have my Laravel 5 app hosted on a shared hosting service. From the beginning i saw that was a bad idea, but i didn't knew more and i leaved it that way.
Now, i need a new hosting service that can give me SSH access for using git, jenkins, run laravel commands and a good speed.(I live in est Europe).
I've made some research i found 3 hosting services: Amazon, A2hosting and Siteground.
Because i'm not a very experimented developer and my app is not that big (and i don't think it will be in the next 1-2 years) , i think choosing Amazon's services will be an overhead.Plus that, i think it will be pretty expensive.
So, what should i choose between those 3 options?
Or do you have a better idea?
If you app is not that big AWS is a great option for you. They have free tier where I am running my instance with Laravel App. Its not as expensive as it looks.
Check their calculator if you want more than free tier which is explained here https://aws.amazon.com/free/.
Calculator: https://calculator.s3.amazonaws.com/index.html
Closed. This question does not meet Stack Overflow guidelines. It is not currently accepting answers.
This question does not appear to be about programming within the scope defined in the help center.
Closed last year.
Improve this question
Does anyone know how to access Cpanel on 1&1(IONOS). One of the biggest in the web hosting market but I didn't know it was one of the worst. Knowledge Base is empty. Searching on Google doesn't result in anything.
I am startled by the fact that I found NO INFORMATION online. Absolutely NO information on google. How could it be possible? No one has ever tried to ask this question before?!?!? BTW IONOS is the worst web host. If someone has to search for 20 mins to access even cpanel, then it's the worst web host.
IONOS Screenshot
Note the below is only available if you have the right build assigned to your account.
Server administration with Plesk is conveniently done right in your browser.
Since Plesk provides its own HTTPS service for this, a web server (e.g. Apache)
does not need to be running on the server.
Open your web browser and enter your domain name (or IP address)
followed by :8443 in the address bar.
Log in with the user name Admin and your initial password.
You can log in to IONOS and find your initial password in the Server Access Data section.
I am sure by now you managed to fix your problem. But I figured I must just post how I accessed it for other people. I am assuming that you wanted to remove some of the files on your website (i.e. if a WordPress plugin destroyed your site). The way I accessed my files is as follows: Firstly go to your Ionos dashboard. Then click on the contract you are using (i.e. WP Business). Thereafter go to hosting and click manage, then a page will open and click webspace. Once you click webspace you will be able to access all of your files.
I hope this helps someone out because truly getting information about Ionos seems like thesis research.
I nearly fell for their $6-for-the-first-year Business Plan account. Whups! Good thing I asked some questions first.
The sales person answered the chat after approx 20 mins, and was not customer friendly. When I enquired about included CPanel apps, I was abruptly told that CPanel is not included - you must purchase it separately. She did not tell me (this is what I mean by "abrupt"), but I read elsewhere, that they wrote their own "CPanel-like" administration tool - but from what I can tell it is significantly less capable. And as of this writing, I still do not know if they offer Node.js (which was something that I asked the sales rep but she did not answer).
I would be interested to see a screenshot of the IONOS CPanel replacement. I also would like to know what included apps they offer, such as phpBB, SimpleMachinesForum, Node.js, Python, Ruby - and how Git management/deployment works. As of this writing, and over 30 minutes on chat with them (including wait time), I have no idea.
Here is a fairly recently article from Dec 2021 that sheds more light:
https://websitesetup.org/hosting-reviews/ionos/
You can access your Cpanel using below URL,
http://IP:2082
Note: In IP you have to set your Cpanel IP.
above link redirect to login page, In login page you need to enter your username and password,
From the look of your screenshot it looks as if the package you have purchased is not one that contains a server. Here are two options for packages with servers.
Cloud
Dedicated
Ref
Go to Servers & Cloud -> Infrastructure -> Servers and select the server you want to access.
Then, go to either the Plesk or cPanel section, there you'll find user, password and host for your server.
I am getting the run around on the net and would like to know if anyone has found a great walk through for deploying a Laravel API to Azure?
This might not answer directly your question and you may not be using/paying for forge...
But, if you use Laravel Forge. you can follow this set up and forge will do most of the deployment for you. Most of it...
https://medium.com/#piesse/laravel-forge-on-azure-d429a6cba6d4
if you never used forge, i would certainly recommend to pay at least the first month just to see what it is and to make your deployment easier. i hope this is not seen as spam, since im not trying to sell a product, im recommending a way for your deployment to be done.
I have been making Desktop applications for last few years. but now i have quite that job and thinking about doing working for myself. I have gone through many ideas. finally i decided to develop Online billing application . Since i am new in web application i know very little about web technologies.
I am thinking about developing that application in php or asp.net with mysql database. I don't know which one is better.(you can guide me here). I don't know whether its good idea or not.but i don't want to do job and work for myself that's for sure.
its going to be a big project so I was making budget for this whole project but i don't know what kind of hosting i will need for this app because database load will be very high because its billing application. i don't know how much it will cost me.I will give user free trial for 30 days to use application and if they like they can upgrade their accounts.
So i need your help to decide what kind of hosting will be appropriate.is this ok if i use webhosting that we use to host website which will cost me $10 to $15 a month or i will have to use cloud hosting which will cost me a lot?
I hope this link will give you idea. I want to make application like this : http://www.rapid-billing.com .
pls help me out. it might me small things for you but to me it matters a lot. Thanks
Initially, you won't have very high traffic, so using a cheap, shared server should be fine. If you outgrow it, then you must have some money coming in, so the added expense of cloud hosting will be more tolerable. There's no need to go all-in before you even get going.
That said, many cloud hosts offer some amount of hosting free, which would probably suit you just as well during initial development. An added plus of starting in the cloud is that you won't have to migrate later. Off the top of my head, Google App Engine and Heroku come to mind as well-known cloud hosts with a free tier. Microsoft Azure also provides a free 3 month trial, and I imagine they'd be a good host if you choose to go with ASP.