CloudLinux, do you use it?

[Kailash]

How many have heard or Cloudlinux?
How many have heard of Betterlinux?

CloudLinux is better then BetterLinux. A leading Linux server management Rack911 performed a benchmark on both with default settings. For more information, you can refer their blog post from the following URL:

https://blog.rack911.com/hosting-control-panels/cloudlinux-vs-betterlinux-security-default-settings/

 

[6LAYER]

CloudLinux + CageFS is the minimum to get to make sure your server runs optimally

 

[edigest]

CloudLinux is a great software to limit the resource for each user. But the limit is soft limit. The server may be down due to the ddos for one user even you have limited it. It can mitigate the pain but not effective as the virtualization of vps.

I have to disagree with this. Virtualization is not protection for the overall server, either. You're comparing technologies with different purposes, but the conclusion that a virtualization completely insulates or isolates each VPS is not correct.

For example, if you have a container that is hammering the storage really hard it can effect other containers on the same server with high load.

To extend your example, a DDoS against a VPS can take down an entire server.

 

[easyhostmedia]

I have to disagree with this. Virtualization is not protection for the overall server, either. You're comparing technologies with different purposes, but the conclusion that a virtualization completely insulates or isolates each VPS is not correct.

For example, if you have a container that is hammering the storage really hard it can effect other containers on the same server with high load.

To extend your example, a DDoS against a VPS can take down an entire server.

Also if you have an OpenVZ server then you cant use CloudLinux as it will not work on OpenVZ servers

 

[ughosting]

That's not quite true.

You can run CloudLinux in OpenVZ

https://www.cloudlinux.com/blog/clnews/cloudlinux-initial-support-for-openvz-and-virtuozzo.php

But you are correct that you don't get the full on benefits.

CageFS, PHP Selector and entry process control are worth the cash $10 if you want security and some control over the memory and cpu of your VPS.

Because we varnish cache our customers VPS servers, under DDoS, the entry processes max, and then the unavailable gets cached, we tend to find the VPS can withstand the hammering until the Arbor Peak Flow notices and arrests the DDoS. We've not seen any VPSs or their servers go down under DDoS, but the site can be unusable for a couple of mins. Once the Abor kicks in and the 120s cache of the unavailable expires the site returns. But other sites on the VPSs remain up.

In our experience if not overloaded with too many containers, OpenVZ offers equal isolation to Xen or VMware (in terms of one machine affecting the other, not security) and better performance.

Obviously though Xen and VMWare would let you run real CloudLinux and offer even better tennant isolation. (I/O, CPU, Memory & MySQL use)

 

[easyhostmedia]

That's not quite true.

You can run CloudLinux in OpenVZ

https://www.cloudlinux.com/blog/clnews/cloudlinux-initial-support-for-openvz-and-virtuozzo.php

It is still in Beta Stage, so not really advisable for production use. They just started testing it in OpenVZ