I am considering hosting something and am concerned about DDOS attacks.
I am morally opposed to cloudflare because I think they are an unethical and shitty company.
What privacy focused solutions are there to reduce the likelihood of a successful DDOS attack?
If you don’t want to go full Cloudflare you can mitigate DDOS using these kind of technique locally.
https://blog.nginx.org/blog/mitigating-ddos-attacks-with-nginx-and-nginx-plus
Cloudflare will be a lot more effective in case of attack. But I don’t think most people need more than a few mitigation rules. If DDOS really come, there are very few things you could do to mitigate anyway.