Comment on What steps do you take to secure your server and your selfhosted services?
ZonenRanslite@feddit.org 4 weeks agoThis and fail2ban
Comment on What steps do you take to secure your server and your selfhosted services?
ZonenRanslite@feddit.org 4 weeks agoThis and fail2ban
ocean@lemmy.selfhostcat.com 4 weeks ago
Anything else?
InvertedParallax@lemm.ee 4 weeks ago
There are ip lists that let you iptables drop all traffic from China and Russia.
Strongly recommend.
ocean@lemmy.selfhostcat.com 4 weeks ago
I was auto banning all countries but my own but now I’m hosting one resource that has an audience including Chinese…
Good advice outside of this use case! :)
InvertedParallax@lemm.ee 4 weeks ago
Yeah, there were other countries to ban, but those 2 cut my attacks down 90%.
Also consider a honeypot that triggers when anyone tries to ssh it at all.
lka1988@lemmy.dbzer0.com 4 weeks ago
My UDM has this capability. I’ve blocked quite a few countries that it logged as trying to get into my network.
InvertedParallax@lemm.ee 4 weeks ago
Have the rack mounted one, I usually roll my own router but I’m glad to have someone else making sure I don’t do anything stupid for security.
It’s not perfect, but it’s peace of mind.