12 web hosting myths

Started by rahul123, Jul 28, 2022, 10:03 AM

Previous topic - Next topic

rahul123Topic starter

Now we will talk about the main thing - about the myths that often spoil the relationship between the hosting provider and the client.

Shared hosting is not safe!

The security of virtual hosting (VPS and VDS) is one of the most discussed and problematic issues. There are so many legends here: hosting provider employees read and steal company data, hаckers maintain a stable channel for hosting monitoring, everybody can visit data center server rooms, especially people with automatic weapons. These bikes rarely have any adequate basis under them.

Any serious hosting provider supplies highly secure enterprise-level VPS: servers are monitored by a trained staff of qualified employees, any data center is automated and equipped with monitoring and backup power systems, all intrusions are detected and stopped. As for physical security, data centers are protected in the same way as special facilities: security, video surveillance and access control structures, fireproof and vandal-resistant buildings. To get into latest data centers and harm them, you need to be at least well-armed and quite a large group of knowledgeable IT people and engineers. And they are clearly not up to it.

Free hosting drives - why pay?

Free domain, free hosting - what could be better? The proceeds can be invested in the promotion and attraction of users. However, attracted customers may be sad because they simply do not get to your site. The fact is that free hosting hides a lot of "secrets" behind it, namely, restrictions: by connection speed, by the number of simultaneous visitors, by the number of users of one public server (and this is also dependency - relatively speaking, if you are on If one server turns out to be a hаcker or drug dealer and the authorities "ban" him, then your site will also be blocked).

In addition, as a rule, free hosts have low security guarantees, low SLA and either paid or extremely limited and unhurried technical support. Simply put, free hosting is more of a bunch of problems than a way to successfully save money. Moreover, free hosting can be a marketing solution that is designed to lure you into an expensive tariff or simply one day charge for any services or technical support.

And yes, maintaining a data center with good equipment, all Russian and international licenses and certificates is very expensive, part of these funds is included in the cost of the tariff (that's why it's renting a VPS). If the contract with the provider does not contain the name Robin Hood, the words "charity" and "everything for you, dear ones," then think about it - why is it so cheap or free? What did they save on and how will these risks be shared with me?

99.9% uptime is false

Adherents of low uptime argue that 99% is an unattainable marketing level and any hosting provider provides frequent downtime better than their services. Well, maybe for free and "junk" hosting, this is a fair statement - they simply do not have the engineering and human resources to ensure stable operation. However, major providers keep their promise: uptime is even more than 99%, and any problems are solved literally with lightning speed, largely due to automatic switching to backup structures, quick incident detection and response.

Therefore, such uptime values are not a myth, but a real value.

Reviews and ratings of hosting - bullshit

There is nothing surprising in the appearance of this myth: many business services invent ratings for themselves and to collect money for participating or deleting reviews, pay for reviews or generate them from abandoned social media accounts. However, this story will not work with hosting companies: they have so many customers that it's simply impossible to keep track of everybody, and fake reviews will quickly drown in the mass of real ones.
Therefore, hosting provider ratings and reviews on them on large trust sites can be trusted - this is the opinion of real customers (albeit with an error for those who did not do their job and are angry with themselves). By the way, the absence of negative reviews, in turn, should alert you: either you got into a "biased" rating, or the provider is not very popular, so it has enough reviews written by its own managers. There is no hosting absolutely without problems, which means that there should not be reviews without negative reviews.

But reviews can just be fake or bought, so choose not mono-reviews, but reviews that compare different solutions. An important point: if there are benchmarks in the reviews, it is not at all necessary that you will get the same result for your money. Tests are usually carried out in "laboratory" conditions: on clean machines or under a "clean" load with a short ping. Therefore, the actual user experience may turn out to be either slightly better or slightly worse than those described in the provider's materials. However, for good hosts, these are minor differences that only professional admins and devopers can appreciate.

Hosting with a domain registrar is convenient!

This is the most widespread myth. Indeed, what could be simpler: one supplier, one account, one relationship. It seems to be a convenient option for both individuals and legal entities. However, in most cases, hosting with a domain registrar is only a temporary solution, which definitely should not suit you, since no registrar provides such a set of options and capacities as a hosting provider does.

Therefore, if you have a sufficiently loaded website or cloud service, it is better to refuse the services of a domain registrar for storing data. In the same way, you should refuse if you are going to develop and scale your small project - you will need flexible solutions with different properties and sets of services. The registrar packages may simply not be enough.

Website/app speed is 100% dependent on hosting speed

This is a myth, but in part. The speed of a site and application depends primarily on their architecture, design, software features and methods. For example, each page of the website of one of the cafes weighed 29 MB, since it mainly contained a high-res photo of the menu page. Of course, it loaded very slowly. An important role in the download speed is played by the connection speed of the end user - it is clear that the most optimized site or web application at 3G speed will be difficult to load. This is an external factor that cannot be influenced, but which must be taken into account and provided for both optimization of the solution as a whole and adaptive versions.

But the role of hosting in the speed of your website or application is too high to choose a weak solution. Therefore, if you are counting on a large flow of visitors, choose a secure and powerful resource so that the download is as fast as possible. Modern customers have lost the habit of waiting for a site to load, and even 2-3 seconds of delay can lead to the fact that you will lose your visitors forever. The website and web application should work invisibly.

Cheap hosting will let you down, expensive hosting won't

Alas, the exorbitant price is not a guarantee of the quality of hosting. Providers with exceptionally high prices expect customers to choose them without bothering to compare multiple providers. On the contrary, large hosting companies offer a wide range of tariff plans: firstly, for any purpose (a student, a freelancer, a large corporation needs different solutions), for any budget, and most importantly, in order to give an opportunity to test their services and make sure of their quality, to then switch to a more expensive and advanced tariff.

Any hosting provider has its own data centers

Unfortunately no. There are companies that decide to enter the web hosting market or provide services as a spin-off (eg cloud CRM and web hosting for various business purposes). In fact, they buy hosting from a large provider and resell the power at a premium, or rent servers in someone else's data center. Turning to such companies is a risky story, since the chain of interactions is too long and the possibility of non-fulfillment of requirements within this chain (relatively speaking, if the "sub-hosting provider" does not pay the owner of the servers, the sanctions will fall on the shoulders of end customers - and it will be almost impossible to agree directly). By the way, 2018-2019 was rich in such events in the Russian data storage segment.

All providers offer the same

This is only at first glance. Each of the hosting providers, from the smallest to the top, strives to compete both in the price field and due to non-price factors. Differences can be in the location and reliability of data centers, in a set of administration tools, in administration capabilities, in the quality and level of technical support, in sets of ready-made images and pre-installed programs, in the level of the server hardware itself, additional options, insurance, etc.

Therefore, before choosing your hosting, it is important not only to decide on a set of tasks, but also to compare 2-3 offers from different companies, delving into the details.

I can't handle servers!

Try to implement something in an average wholesale or trading organization: no automation, traffic control, a shredder, a printer that jammed a paper clip and 1C. And also a system administrator and ... his own server room! Unreal luxury and a source of special pride.
On board, by the way, Windows Server 2003, and even 2008! If you clean up the server room, you can find a pager. Well, okay, we exaggerated about the pager. But the fact is that companies are dragging legacy software and legacy hardware, afraid to move to the clouds: what if it's expensive, dangerous, what if we can't cope, what if migration destroys everything that is acquired by overwork?

These are vain fears and completely unreasonable anguish with the old capacities. Firstly, the hosting provider's employees will help with the migration of any complexity, and secondly, the hosting provider's admin tools are so perfect that there will be no problems with them even with many of data and tasks being solved. Convenient panels, ready-made images, pre-installed software - this is the minimum that a good provider will offer you.

If there is a VPS / VDS, a system administrator is not needed in the company

Also a common myth, but partly fair. If you have a small organization and have a manager or leader with brains and roughly straight arms, he will cope with VPS, because he is not alone - there is technical support and provider managers.

But if you have more power, have development or complex, downtime-sensitive corporate software, all office telephony and virtual PBX in the cloud, or you deliver cloud applications to your customers, a system administrator is strictly required.
Moreover, this should not be an ENI, but a professional who can solve problems independently and together with the hosting provider's employees, who can recognize and classify an incident, collect data, work with monitoring, containers, control panels, etc. Of course, a lot depends on the profile of the organization, but in general, if the business works with data (whether it be a customer base or a warehouse), it is better to keep a system administrator at hand. This is an important part of a company's information security.

And yes, the presence of a system administrator in the organization does not eliminate the need for technical support from the provider. These are complementary, but not interchangeable features.

Well, on the day of the hosting provider, we wish our colleagues reliable ping, adequate clients, nimble servers, 100% uptime.

    The following users thanked this post: Sevad


All that the hosting provider tells about his DC can be taken at his word, but it is impossible to verify - if it is still possible to arrange a tour for a VIP client, then no one will show anything to an ordinary ordinary VPS (or even DS) user, and it is not at all a fact that the measures they are talking about are really applied ( and carefully observed) in the budget segment.

And we also need to talk about the danger of registering domains with a hosting provider. There were cases when they registered themselves, and not the client, and when you want to leave, the domain name turns out to be not yours. It needs to be checked beforehand.


Timely update, according to system requirements, eliminates vulnerabilities that have been identified by developers, but are still unknown to hаckers.
In the case of Linux for CentOS systems, you can use the yum-cron package, which automatically downloads and installs updates.
OS on Ubuntu are updated via unattended-upgrades.

For any version of Windows, it is recommended to set up automatic updates in the "Update Center" of the system.
For FreeBSD systems, you can configure regular checking and downloading of security patches via freebsd-update (the — cron parameter). The team checks and downloads the necessary updates, but does not install them.
After downloading, a notification will be sent to the user's email. He will be able to view the list of downloads and install the necessary one using freebsd-update install.
Before installing updates in a production environment, they must be checked on a test web server. This will allow you to track the impact of downloaded packages on the behavior of some programs that may be violated.

Verified software
There are enough open-source products in the network that do not always meet security standards. Before installation, it is necessary to make sure that the developers and the resource are reliable.

You can download such software only from official web sources, since any third-party sites may contain malicious scripts. This even applies to resources from the first pages of search results.

Limitation of servers
Deactivate idle servers and daemons (background programs). This will greatly increase security, since it is impossible to hаck a non-functioning service. It is possible to configure a firewall so that access to various services that are not used all the time is carried out.