Topic: Hosting a gambling site - page 2. (Read 8171 times)

@cloverme: Thanks a ton for your very detailed input! That is a lot more than I was expecting. There are many excellent points that I will consider when choosing my host.

Running a dedicated server is most certainly the safest option, but unless a person is hosting it themselves, there will be people who need to be trusted as well.

Kudos to you!

U may like to use http ://BestHostFree.com VPS for hosting gambling sites. Website Hosting services. Try them out. Sign up with Gambling Site Hosting. A point and click web hosting CP.

Sure, so in regards to VPS and privacy, it all boils down to ownership of the virtual server. Unless you go through a lot of due diligence for encryption at rest and in transit, including configuration through a secure encrypted shell to ensure that the host isn't snooping on your sessions, then I would consider using a VPS for managing cryptocurrency to be very risky. You have to remember that most system administrators take short cuts to get their systems online as fast as possible, especially with lamp stacks, so these shortcuts may lead to openings. Known vulnerabilities or malicious ones might be hiding in the images that the VPS was deployed from, so there might be a backdoor there waiting. It may not even be on the virtual guest end but on the physical host end as well. Low end service providers offering virtual servers might be compromised through system administration weaknesses on the host provider side. As an example, host management may not be secured to specific workstations and those workstations may not be a rigorously managed as one might think. As consumers, we're often led to believe that extensive security is in place because the word "secure" and graphic of a lock is in place when you're shopping for your VPS. However, the system admin staff might be accessing the systems from their home computers or the host systems might even be running from home-built datacenter in a shed or basement. Granted, these types of situation would be with smaller niche VPS providers. The popular hosting tiers 1-3 take due diligence a little more seriously, but you should still be wary. Anything online and in someone else's building is out of your control.

That being said, you should look for the following services as a customer to help mitigate your risk as compensating controls:
1) Two factor authentication. You should not be able to administer your VPS via web-console without providing two-factor authentication.
2) You should be able to restrict access to your VPS through a managed firewall outside of your VPS (not using the virtual guest OS as a firewall)
3) You want to make sure that no one can compromise your email account, reset your hosting password, get access to the VPS console, and steal your data. Lock down your own email account, move to a provider that offers secure encrypted email with multifactor authentication.
4) Add notes (if possible) to your VPS account telling them not to reset any passwords over the phone. Email the admins and ask them how to secure your account against identify theft to access your account. If they don't know, move to somewhere else.

If you're going to be managing large amounts of cryptocurrency on a VPS, you should consider doing the following:
1) Encrypt the entire file system of your virtual guest to a cipher that is supported under FIPS 140-2 (AES256 as an example)
2) Use SSH with a private key to access your system remotely.
3) Close all open ports inbound and outbound, only open ports to specific hosts by direct ip addresses. (for SSH restrict the local ip of your VPS to your wan ip/firewall)
3a) Don't access your system from any unknown networks like from a starbucks or your friends house.
4) Change all the passwords and don't use root/administrator for logins.
5) Turn on logging and limit unsuccessful logon attempts.
6) Qualys scan your VPS before putting any cryptocurrency on there at all, you want to patch and remediate any serious risk.
7) When taking backups, make sure your backups are encrypted as well to the FIPS 140-2 standard ciphers.
8.) Protect your own workstations, if possible, use a dedicated system that you don't use daily if you manage your VPS. Keep it updated, offline when not in use, and encrypted.
9) Protect all your strong passwords (recommend you use passphrases) and secure them in an encrypted vault that you keep offline.

While not in-expensive, the major hosts (aws, azure, etc) offer high-end cyber-security which is typically reserved for unclassified technical information using high standards to manage and monitor the infrastructure. You would use this type of infrastructure to manage large amounts of cryptocurrency to ensure the host has extra taken steps around due diligence to manage systems and access. This will be branded under ISO 27001 or NIST 800-53 and typically not available without exchanging emails or phone calls with them, it's not going to be a "next, next, buy" option.

I am bumping this thread up.

@cloverme: What makes you concerned about VPS services in regards to privacy? One thing I am actually wondering about is if a cloud-based setup would be somewhat risky because the site is mirrored on servers in various countries/ jurisdictions.

@auswalk: Switzerland just recently announced to ban online gambling related websites. I am not sure if this is a good place to host online gambling related websites anymore. As far as the EU is concerned, I believe the Netherlands might be a good choice. Please correct me if I am wrong.

yah some country dont allow hosting of gambling site or anything related to digital currency. so if you need, you must check which country support and you can carry on from there. otherwise you may need to close down or even get into courts.

The California attorney sent a letter coming after someone bc one of the ip's trace to SF. Epic fail right there. Now this guy is in the dreaded legal crosshairs. He's screwed for lack of better word.

Stay off ANY server located in north america and only go to Euro countries that are neutral , not in the EU / Nato. Switzerland is the perfect spot. Nobody will ever fuck with those guys, never have, never will.

thats strange that moneypot had to move its website from one service provider to another, technically they are not a gambling website they just let other people create gambling websites there

They don't care until they do care. if You are raking in $50K a month I guarantee you they will care. Stay off the radar, don't attach your name to a damn thing and they will not bother you b/c they can't confirm you are a US citizen. Make a half ass attempt to bar US players to placate them and you should be ok, at least for 3+ years.

Pay you gambling taxes winnings and you should be fine. at the end of the day that govt is on no moral crusade, they just want their taxes.

hmm licenses apply to the btc world as well? I mean of course they do but I always thought no one really cared and most sites did not had a license.

After several hours of research, I found this winner: https://coinshost.com/en/

Takes bitcoins , dedicated server, has its own propriety DDoS protection and is in SWITZERLAND exclusively. THere are no a laws regarding online gaming licensing in switzerland. Swizterland is not part of the EU either so you are Golden here.

THe other option is the the costa rica monoply provider site, but I can't see that being anywhere close to reliable enough to run a casino.

Everything I read says the rest of the EU countries you can run into regulatory problems. SWITZERLAND is your only and best place to host. Keep all your files exclusively there and you should be good to go. That includes CDNS, everything. Tunnel is not a problem just have nothing facing or reading any files beyond the swiss border.

There are a lot of good alternatives to AWS and Heroku.Here a few :
https://www.bluehost.com/vps

https://mediatemple.net

http://www.ipage.com/

https://www.justhost.com/vps

You can read the reviews about them as well.They are actually pretty good.

There are probably a number of VPS services offered here in the forum's services section.Instead of going all main stream with AWS or any other reputed service ,its better to have the site hosted on a small dedicated server.I suggest you to find some VPS on darknet as well,they will be totally secure against Dos attacks and will be feasible for a gambling site.

its mostly the offshore hosting company that allows gambling sites without license, as far as I know some of them host nulled expensive scripts for websites.
It does sound illegal though, I'm not even sure if  people would go for such gambling site to trust their bitcoin over but I suppose we don't care much about that when we're winning


Cloudfare serves just to make the site load faster and protection for DDoS as you replace your DNS with theirs.

Bumping this. I saw tsohost.com as a recommendation. Is this good or are the better ones? VPS IS NOT AN OPTION for what I need. Also I need a SAFE country that won't flake out at some point down the line hosting a gambling site.

Cloudflare is so awesome it blocks the ability for me to find out where all these sites are hosting, so I'm asking in this forum for some names. Appreciate it!

Thanks

Did u check that BestHostFree.com ? I tested it for some time. Can recommend the Semi-dedicate plan/VPS. The support is very quick to respond.

Thanks , what about this?

www.tso host.com/knowledge-base/article/236/can-i-host-a-gambling-website

Look for dedicated servers in Switzerland, the Netherlands, Curaçao, and Russia. Isle of Man and Singapore used to be okay, but they're starting new legislation to crackdown. Stay away from VPS services, due to security and privacy issues.

Result : there is no company to host a gamling site.

Until you have a dedicated server with lots of ram and mega bandwidth at a decent price compared to those that do it

You're not a casino host level host brother

Trying to push vps for a casino project is just wrong

So push the vps and virtual hosting in other areas

You want to say you host casino's get a competitve dedicated package

You got tiny bw allocations, you got fractional ram upgrades everything about your 'casino hosting services' stinks

Why you want to act like you host casinos with vps just shows your service is clueless

I'd not involve myself into the murky conversation that is going on here. Thanks to newIndia for your support, but please refrain from further extending this conversation. We have customers across the globe and dont intend to hurt the sentiment of any country.

Just to note that our main data center is located at Kiel, Germany. One can have a data center tour here => http://besthostfree.com/data-center.html

As part of the VPS offering, we provide root access to our customers, i.e. customer can reboot his own VPS like a dedicated server. Allocated resource to the customer is never shared.

As we provide dedicated resource to our VPS customers, allocating RAM is a manual process. It can easily be ordered once the customer gets into the control panel. Any customized resource may also be ordered upfront, but for that customer needs to communicate with sales department. At this moment of writing, sales chat is live on our site. As extra RAM is physically added to the customer's server, it is required to buy for at least a year and hence additional RAM orders are yearly.

The reason for our cheap offer is we dont spend directly on marketing. Most of our sales come from Affiliate Program => http://besthostfree.com/hosting-affiliate-program.html. Hence we have been able to keep the cost lower than the competition, but still been able to provide good service.

I hope, I have been able to clarify the reasons to chose http://besthostfree.com/vps-hosting.html as your trusted hosting provider.