why not just hand your systems over to a smart 15 year old kid to run, and go take a nice beachside vacation in the meantime? probably would work out better.
Absurd nonsense.
Frontendserver also: Only needs CPU and RAM.
- Hardware they offer is more prone to fail because of using home grade hardware for long time (especially HDD).
- It's almost impossible to convince them HDD is failing even with showing SMART logs. Hardware needs to fail so they will replace it.
- Hardware replacement times are quite fast (thanks to SLA). They replace it with another used HDD, if you want something newer, than they ask some money for replacing with less used HDD.
- They scan their network regularly for hosted malware, trojan etc. so if one of your sites get hijacked and has iframe viruses etc. Hetzner will null route your server.
- If your IP gets DDOS, null route.
- If you get DMCA warning, null route without waiting 24 hours.
- If your NAT leaks your internal traffic to WLAN, null route.
- It takes almost few day to lift null route ban on your server when you get in contact with support. It's okay for support tickets to wait in queue for long time because of service level but I believe null route tickets needs priority no matter what.
We decided to move over to another provider after having problems.
Hetzner also owns few other brands like Serverloft.
"serverloft ist ein Produkt der Host Europe GmbH."
https://www.serverloft.de/unternehmen/agb/
doesnt say so on the english website thou
another german hosting provider also required you to at least respond to dmca + three strikes
Someone like Vultr, Linode, or DO is positioned well to deliver an "AWS lite" offering. They all have decent hardware, lots of locations, and a good delivery history. A bit of work to put together ELB/EC2/Lambda/S3 equivalents and a control panel would open up a new market. Especially if they offered low egress pricing.
All they did here was pre-install openstack, but leave you to keep it updated. If you can't install it yourself, good luck upgrading it when a security release comes out.
I mentioned ELB/EC2/Lambda/S3 equivalents for 2 reasons. First, AWS is clearly the market share leader, so having a similar pattern might get more buyers. Second, it's a bit easier pattern for apps that aren't cloud aware. But, they could just offer hosted K8S with some add-on ingress controllers.
Check out OVH Labs they are in the process of deploying many more services https://www.runabove.com/index.xml
Which of these has S3 or ELB equivalents? I haven't seen that. I saw DO has failover ip addresses.
The most important thing with Hetzner Servers is to monitor everything very closely:
- CPU Temperature
- RAM
- Disks (SMART)
- Software- and Hardware raids
- Network (interface) errors
The servers are usually consumer-grade hardware components which have more often issues under heavy load so you have to expect down-times and broken components. However, if you are aware of that and you can easily shift around that with your software Hetzner will save you serious money (10 to 15 times cheaper than GCP and AWS). Also to mention is that their customer support is first class if you tell them all required details and exactly what to do. Usually they respond in minutes and do hardware replacements within an hour and small downtimes.
As for temperature monitoring: how do you act on events? If the server runs heavy workloads for a while it will get hot, yes. Heck sometimes it goes above a threshold (say, 80 C) for a minute for seemingly no reason (maybe it is the period software update job?). But what do you do when you get a temperature notification? Shut the server down? For every such event? I am currently leaning towards not monitoring temperature at all because if the hardware breaks Hetzner will replace it anyway (I have backups).
[0] https://www.hetzner.de/de/hosting/produkte_rootserver/px61nv...
I believe if you don't go with the Server auction thing, then you get quite new hardware. So I guess you would not really have to expect a lot of downtime. But as always, downtimes can happen. Always plan accordingly.
You will have sole and unrestricted administration
rights to the dedicated hardware with root access.
Hetzner Online will not have access to the servers, and
will therefore not be able to provide server
administration support.
I mean if I can't provision it, it's probably problematic to update it.
OTOH, if that's what you want (many enterprises think they do), this positioning and landing page puts Hetzner into consideration.
* AMD Ryzen 5 1600X
* AMD Ryzen 7 1700X
Here is the email that I received in 2013:
Dear Client
At the end of last week, Hetzner technicians discovered a "backdoor" in one of our internal monitoring systems (Nagios).
An investigation was launched immediately and showed that the administration interface for dedicated root servers (Robot) had also been affected. Current findings would suggest that fragments of our client database had been copied externally.
As a result, we currently have to consider the client data stored in our Robot as compromised.
To our knowledge, the malicious program that we have discovered is as yet unknown and has never appeared before.
The malicious code used in the "backdoor" exclusively infects the RAM. First analysis suggests that the malicious code directly infiltrates running Apache and sshd processes. Here, the infection neither modifies the binaries of the service which has been compromised, nor does it restart the service which has been affected.
The standard techniques used for analysis such as the examination of checksum or tools such as "rkhunter" are therefore not able to track down the malicious code.
We have commissioned an external security company with a detailed analysis of the incident to support our in-house administrators. At this stage, analysis of the incident has not yet been completed.
The access passwords for your Robot client account are stored in our database as Hash (SHA256) with salt. As a precaution, we recommend that you change your client passwords in the Robot.
With credit cards, only the last three digits of the card number, the card type and the expiry date are saved in our systems. All other card data is saved solely by our payment service provider and referenced via a pseudo card number. Therefore, as far as we are aware, credit card data has not been compromised.
Hetzner technicians are permanently working on localising and preventing possible security vulnerabilities as well as ensuring that our systems and infrastructure are kept as safe as possible. Data security is a very high priority for us. To expedite clarification further, we have reported this incident to the data security authority concerned.
Furthermore, we are in contact with the Federal Criminal Police Office (BKA) in regard to this incident.
Naturally, we shall inform you of new developments immediately.
We very much regret this incident and thank you for your understanding and trust in us.
A special FAQs page has been set up at http://wiki.hetzner.de/index.php/Security_Issue/en to assist you with further enquiries.
Kind regards
Martin Hetzner