Comment on How do I avoid becoming one with the botnet?
melroy@kbin.melroy.org 1 week ago
It's all about server hardening. See https://blog.melroy.org/2023/server-hardening/
Comment on How do I avoid becoming one with the botnet?
melroy@kbin.melroy.org 1 week ago
It's all about server hardening. See https://blog.melroy.org/2023/server-hardening/
Atemu@lemmy.ml 1 week ago
Wow is that ever a load of snake oil.
I see this kind of guide as actively harmful because it creates a false sense of security.
lefaucet@slrpnk.net 1 week ago
Is there bad advise on there?
I skimmed it and there’s lots of good advice I think.
I’m no security expert and this is an honest question.
Atemu@lemmy.ml 1 week ago
Disabling su is stupid because you always need some form of privilege escalation, restricting sudo to apt offers no security benefit whatsoever as apt allows arbitrary file modification, disabling root ssh provides no benefit when the unprivileged user has sudo access – I could go on.
lefaucet@slrpnk.net 1 week ago
Thanks for these insights.
Us newbs have much to learn