Self host websites

harsh3466@lemmy.ml

FWIW, it might be better to avoid wordpress hosting UNLESS you go with hosting from wordpress.com, since there’s kind of an all out war in the wordpress world right now and the fallout to people who just want their websites to work is unknown.

The tl;dr is that Matt Mullenweg, wordpress founder and owner/CEO of Automattic (which is the company that runs wordpress.com), has engaged in a Trumpish crazy war with wordpress hosting engine WPEngine, and in doing so has arbitrarily (in the name of his war) been doing crazy shit with the open source wordpress project.

unmapped@lemmy.ml

If its just a simple static page. Just use cloudflare pages. It scales to zero and would probably be completely free for your use case.

Vercel is even easier to setup but they don't allow businesses on the free tier sonit would be $20 a month for pro plan.

philipthebucket@ponder.cat

Yes yes this is a very good point, stay well clear of Wordpress.com, Automattic, or any similar nonsense. All I meant by "Wordpress hosting" was managed hosting from some third-party place like Bluehost or Hostinger. The software is fine, it's all open source and the worst that will happen is 6 months from now, it's not getting a lot of feature updates because the core company that was making it has imploded completely, and someone from the community has taken over security updates.

But yes you need to stay clear of the clusterfuck while it's going on. Don't use Wordpress.com or anything adjacent to it.

fuckwit_mcbumcrumble@lemmy.dbzer0.com

What are you trying to run? a VPS is pennies, and a phyiscal server isn't much more. We have a bunch of servers that are $40 a month each and they come with 5 usable IPs, 32 gigs of ram, 1tb SSD etc. The cost of getting a static IP for home will be almost as much as a server. If you want less you can get less for a lot less money.

I've self hosted my own personal website for years now and it's not really an issue outside of the power going out and my IP changing. I just update DNS and move on. But if this is for an actual work? Just pay the $10 a month, not having to worry about it is worth that money.

harsh3466@lemmy.ml

Mullenweg owns wordpress.com. It's arguably the only safe place to host WordPress since it's his company and while he seems willing to burn all goodwill down to the ground for wordpress open source, hes (probably) not going to burn his own company and cash cow to the ground.

I mean, it's not a great option, and I may be stupid for saying that, but that was my reasoning for saying so.

TBH, I'd just host it myself if I was going to do it.

lettuceeatlettuce@lemmy.ml

If you're very comfortable with containerization, networking, and security practices, plus you are a pretty decent full stack web dev, sure.

It's pretty trivial to set up a separate business internet line from your local ISP. Depending on the volume of traffic, a basic load manager and reverse proxy, combined with strong firewalls and container safety would be sufficient for most SMB needs.

You don't need much power to host a basic website. Setting up a local box with a low-impact distro, Docker, and some solid control-plane MGMT software should be plenty to host several dozen SMB websites.

There are a lot of technical and even legal considerations though. Do these small businesses need a web app on their site? Do they need a storefront? What about member-only content locked securely behind an authentication layer? Does your local ISP have rate limitations? Does your city/state/country have restrictions on offering business services like that?

Ultimately, you have to answer the question: Why shouldn't those businesses just go with an easy pre-made hosting solution like Squarespace, Wix, etc? Not saying there aren't good answers to that, but from a business perspective, the businesses will want to know that.

As with anything in business, ask yourself, what are you able to offer that they can't get easily somewhere else? I used to work for a tiny MSP that offered in-house data backups. Our clients paid a good chunk of money to have us backup their data to our own servers. I didn't say anything at the time, but our clients could have gotten much more secure and faster backup services for cheaper using something like Backblaze or Synology's S2 cloud backups.

Don't find yourself unable to clearly and concisely explain to your clients what you can give them that they cannot easily get somewhere else. If it's purely the principle of the thing, that's totally valid, but make sure that's what you're selling to them, and also what they are looking for.

philipthebucket@ponder.cat

Yeah but why would the company run by the crazy person be the only safe place?

It’s open source. Just find a different host that isn’t run by a known unstable human. Literally any other. That would be my feeling on it, at least.

catloaf@lemm.ee

Is it feasible to self host websites

yes

for small businesses

NOPE

Well, you say your business sites, so I assume you're okay with downtime. I would absolutely not self-host sites for someone else's business, because if something happens to the hosting (ISP outage, power outage, bad update, hardware failure, accidental deletion, misconfiguration, ISP block, flood/fire/storm, theft, I can go on) then it's my ass on the line. Simple hosting is cheap, spend the few bucks for a lot more peace of mind.

cole@lemdro.id

where are you getting servers that cheap

harsh3466@lemmy.ml

You're not wrong. Again, my logic for that the crazy person is on the warpath towards other hosting companies. For a time he had cut WPEngine off from wordpress.org, which meant thousands of regular people and business running wordpress couldn't update their plugins or wordpress core because they had no access to the .org registries.

Mullenweg isn't going to do that to his own company. I think Mullenweg is a piece of shit, and I would steer clear of wordpress.com. My previous comment pointing towards .com is dumb.

philipthebucket@ponder.cat

Ah, I got it. Yeah, it makes sense, WP.com is moderately likely to keep working fine probably, it's just that it would make me nervous at this stage. I just don't think he can do anything to really "punish" Bluehost if they're using his software in some way that displeases him. WPEngine's mistake was getting tangled up into a business relationship where they were depending on listings and APIs and things. Although, it probably seemed like a good idea until their business counterpart went off the deep end.

harsh3466@lemmy.ml

Agree. I'd be nervous about it too. Mullenweg seems pretty unhinged at this point.

fuckwit_mcbumcrumble@lemmy.dbzer0.com

This is one.

https://www.nocix.net/dedicated/

mhzawadi@lemmy.horwood.cloud

What I can tell you, working for a company hosting data for the UK NHS.

Is that hosting is easy, I have a very reliable homelab. I keep things up to date and make sure to secure things the best I can.

But security is hard, there are many things to secure. Blind spots you didn't even know you had.

The bast way to look at security, it to start with secure and dial things back so that it works.

naiboftabr@infosec.pub

I think the answer depends a lot on the use case of each business's website and what the business owner/employees expect from it.

Is the website a storefront? You'll be spending a lot of time maintaining integration with payment networks and ensuring that the transaction process is secure and can't be exploited to create fake invoices or spammed with fake orders. Also probably maintaining a database of customer orders with names, emails, physical addresses, credit card info, and payment and order fulfillment records... so now you have to worry about handling and storing PII, maybe PCI DSS compliance, and you'll end up performing some accounting tasks as well due to controlling the payment processing.

Does the business have a private email server? You'll be spending a lot of time maintaining spam filters and block lists and ensuring that their email server has a good reputation with the major email service providers.

Do the employees need user logins so that they can add or edit content on the website or perform other business tasks? Now you're not just a web host, you're also a sysadmin for a small enterprise which means you'll be handling common end-user support tasks like password resets. Have fun with that.

Do they regularly upload new content? (e.g. product photos and descriptions, customer testimonies, demo videos) Now you're a database admin too.

Does the website allow the business's customers to upload information? (comments/reviews/pictures/etc, e.g. is it Web 2.0 in some way) god help you.