Comment on What steps do you take to secure your server and your selfhosted services?
ZonenRanslite@feddit.org 1 week agoThis and fail2ban
Comment on What steps do you take to secure your server and your selfhosted services?
ZonenRanslite@feddit.org 1 week agoThis and fail2ban
ocean@lemmy.selfhostcat.com 1 week ago
Anything else?
InvertedParallax@lemm.ee 1 week ago
There are ip lists that let you iptables drop all traffic from China and Russia.
Strongly recommend.
ocean@lemmy.selfhostcat.com 1 week ago
I was auto banning all countries but my own but now I’m hosting one resource that has an audience including Chinese…
Good advice outside of this use case! :)
InvertedParallax@lemm.ee 1 week ago
Yeah, there were other countries to ban, but those 2 cut my attacks down 90%.
Also consider a honeypot that triggers when anyone tries to ssh it at all.
lka1988@lemmy.dbzer0.com 5 days ago
My UDM has this capability. I’ve blocked quite a few countries that it logged as trying to get into my network.
InvertedParallax@lemm.ee 5 days ago
Have the rack mounted one, I usually roll my own router but I’m glad to have someone else making sure I don’t do anything stupid for security.
It’s not perfect, but it’s peace of mind.