Comment on How do I avoid becoming one with the botnet?
melroy@kbin.melroy.org 4 weeks ago
It's all about server hardening. See https://blog.melroy.org/2023/server-hardening/
Comment on How do I avoid becoming one with the botnet?
melroy@kbin.melroy.org 4 weeks ago
It's all about server hardening. See https://blog.melroy.org/2023/server-hardening/
Atemu@lemmy.ml 4 weeks ago
Wow is that ever a load of snake oil.
I see this kind of guide as actively harmful because it creates a false sense of security.
lefaucet@slrpnk.net 4 weeks ago
Is there bad advise on there?
I skimmed it and there’s lots of good advice I think.
I’m no security expert and this is an honest question.
Atemu@lemmy.ml 4 weeks ago
Disabling su is stupid because you always need some form of privilege escalation, restricting sudo to apt offers no security benefit whatsoever as apt allows arbitrary file modification, disabling root ssh provides no benefit when the unprivileged user has sudo access – I could go on.
lefaucet@slrpnk.net 3 weeks ago
Thanks for these insights.
Us newbs have much to learn