Upgrade to Pro — share decks privately, control downloads, hide ads and more …

10 tips for a stable webshop - Safeshops 2017

Thijs Feryn
May 23, 2017
Technology
0
250

10 tips for a stable webshop - Safeshops 2017

More information: https://talks.feryn.eu/talks/171/10-praktische-tips-voor-een-stabiele-webshop-safeshops-caf-belsele

Thijs Feryn

May 23, 2017
Tweet

More Decks by Thijs Feryn

See All by Thijs Feryn
Caching the uncacheable with Varnish - PHP London 2020
thijsferyn
0
390
Accelerating OTT video platforms with Varnish - London Video Tech meetup 2020
thijsferyn
0
330
't Oncachebare cachen
thijsferyn
0
290
Caching the uncacheable with Varnish - PHP UG FFM 19
thijsferyn
1
610
Developing cacheable PHP applications - PHP Barcelona 2019
thijsferyn
0
570
Caching the uncacheable with Varnish - FullstackEU 2019
thijsferyn
0
430
Varnish beyond basic web acceleration - Symfony Live Berlin 2019
thijsferyn
0
350
Developing cacheable PHP applications
thijsferyn
0
360
Varnish beyond basic web acceleration - DAHO.AM 2019
thijsferyn
0
350

Other Decks in Technology

See All in Technology
スクラムチームを立ち上げる〜チーム開発で得られたもの・得られなかったもの〜
ohnoeight
2
350
iOSチームとAndroidチームでブランチ運用が違ったので整理してます
sansantech
PRO
0
130
Evangelismo técnico: ¿qué, cómo y por qué?
trishagee
0
360
個人でもIAM Identity Centerを使おう!(アクセス管理編)
ryder472
3
200
BLADE: An Attempt to Automate Penetration Testing Using Autonomous AI Agents
bbrbbq
0
300
Adopting Jetpack Compose in Your Existing Project - GDG DevFest Bangkok 2024
akexorcist
0
110
ドメイン名の終活について - JPAAWG 7th -
mikit
33
20k
適材適所の技術選定 〜GraphQL・REST API・tRPC〜 / Optimal Technology Selection
kakehashi
1
400
Exadata Database Service on Dedicated Infrastructure(ExaDB-D) UI スクリーン・キャプチャ集
oracle4engineer
PRO
2
3.2k
ExaDB-D dbaascli で出来ること
oracle4engineer
PRO
0
3.8k
Lexical Analysis
shigashiyama
1
150
透過型SMTPプロキシによる送信メールの可観測性向上: Update Edition / Improved observability of outgoing emails with transparent smtp proxy: Update edition
linyows
2
210

Featured

See All Featured
Docker and Python
trallard
40
3.1k
Designing on Purpose - Digital PM Summit 2013
jponch
115
7k
The Invisible Side of Design
smashingmag
298
50k
It's Worth the Effort
3n
183
27k
The Straight Up "How To Draw Better" Workshop
denniskardys
232
140k
Designing the Hi-DPI Web
ddemaree
280
34k
Understanding Cognitive Biases in Performance Measurement
bluesmoon
26
1.4k
Optimising Largest Contentful Paint
csswizardry
33
2.9k
Git: the NoSQL Database
bkeepers
PRO
427
64k
The Language of Interfaces
destraynor
154
24k
The Cost Of JavaScript in 2023
addyosmani
45
6.7k
Raft: Consensus for Rubyists
vanstee
136
6.6k

Transcript

  1. 10 tips for a stable webshop By Thijs Feryn

  2. Hi, I’m Thijs

  3. I’m @ThijsFeryn on Twitter

  4. I’m an Evangelist At

  5. None

  6. 10 tips

  7. ONE

  8. Own your own domain

  9. None

  10. TWO

  11. Anti-DDos measures

  12. ✓Volume-based ✓Botnets ✓Traditional UDP flow ✓(DNS) amplification & reflection attacks

    ✓Slow Loris ✓Targeted attacks DDoS

  13. ✓Web Application Firewall ✓CDN (+DNS offloading) ✓Flow monitoring + BGP

    routing ✓NAWAS Anti-DDoS

  14. THREE

  15. SSL all the way

  16. Encryption & trust

  17. ✓Domain Validation ✓Organization Validation ✓Extended Validation ✓LetsEncrypt SSL

  18. None

  19. FOUR

  20. Protect sensitive data

  21. ✓Hash passwords ✓Encrypt super-sensitive data ✓Restricted database access ✓GDPR Protect

    sensitive data

  22. FIVE

  23. Install updates, patch your code

  24. ✓OS & distribution ✓Application stack ✓Your code ✓CMS, Frameworks &

    libraries Install updates

  25. ✓Web application firewall with 0day updates ✓Patchman, maldet In case

    your forget

  26. Prevent & cure

  27. SIX

  28. Scale: up & out

  29. ✓Scale up: more resources ✓Scale out: more servers ✓Server per

    role ✓Multiple servers per role ✓Loadbalancing ✓Clustering Scale

  30. ✓Multiple webservers ✓Separate admin backend ✓Replicated databases ✓Caching servers ✓Logging

    & indexing servers Scale: in e-commerce

  31. SEVEN

  32. Caching

  33. Don’t recompute if the data hasn’t changed

  34. ✓Redis or Memcached as internal cache ✓Varnish as page cache

    ✓CDN for media ✓User profile, checkout, … cannot be cached Caching

  35. EIGHT

  36. Optimize your images

  37. ✓Compress & optimize for web ✓Inline images ✓SVG data ✓Optimize

    for connection & resolution Optimize your images

  38. NINE

  39. Deployments Automated & safe

  40. ✓Version control (Git, SVN) ✓Build server ✓Automated tests ✓SSH-based (SFTP,

    SCP, Rsync) ✓Post-deploy tasks ✓Atomic version switch ✓Rollback Automated & safe deployments

  41. TEN

  42. What kind of …

  43. None

  44. ✓Shared ✓Dedicated ✓Managed Cloud ✓Colocation ✓SaaS ✓PaaS ✓IaaS What kind

    of hosting?
  45. None