Hey everyone! I'm diving into fullstack engineering and currently exploring Docker deployment options after using an Azure VM for some time. I've seen a lot of posts, especially on sites like Reddit and HN, warning about unexpected, outrageous bills due to DDoS attacks even on smaller, less prominent websites. I read about someone who received a $104,000 bill for a simple site, and it has me worried. I'm curious about how to host side projects without risking crazy costs like that. I've heard folks say "just get a VM" or "don't auto-scale," but I'm particularly concerned about the costs associated with outgoing bandwidth during a DDoS attack. I have a project in mind that will involve uploading and downloading compiled WASM binaries. Given that even a small static site could incur such high fees, I'm looking for advice on how to do this safely. Is getting a VM a reliable choice? If I host a static site for free on platforms like Github or Cloudflare Pages for the front end while keeping my backend APIs somewhere else, does that mean I'm still vulnerable to DDoS attacks? Are there any hosting services with strict spending caps, especially regarding bandwidth? I appreciate any insights you can share!
6 Answers
Just a thought: Deno Deploy has strict spending limits, which is nice if you're working on JavaScript projects. But keep in mind it might not be the best fit for Rust binaries or Java backends, which is why you're asking for broader solutions.
If you choose Hetzner, you'll enjoy a fixed monthly cost which can give you peace of mind. It's straightforward and avoids unpredictable expenses.
Seriously consider alternatives like OVHCloud or Hetzner for fixed monthly costs. Providers like Azure, AWS, and GCP can be awesome, but may lead to unexpected expenses if you’re not careful. And setting up rate limits for your APIs or implementing Fail2Ban on your servers can definitely help mitigate risks.
Totally agree! Using Cloudflare with well-configured rules is a great safety net.
OVHCloud paired with Cloudflare has been a solid combo for me.
My go-to is signing up for free tiers and avoiding adding credit cards. I usually only dabble with lightweight static sites, so bandwidth hasn’t been a concern for me.
For anything that involves file downloads, I suggest using object storage instead of your web server for downloads. For instance, B2 offers some free egress and just charges $0.01 per GB after that. Plus, pairing it with a CDN like Cloudflare gives you unlimited free egress, which is a huge help.
Check out Railway if you haven't—it's got spending limits, which can help manage costs effectively.
Oh, cool! Just signed up, and it sounds perfect for my needs!
Haha, love that advice! Cheers to you! *Raises glass*