SomeBoyoApr 20, 2024

What are common practice's for hardening/securing your server?

https://feddit.de/post/11284137

Show threadfoggyApr 20, 2024

Setup Fail2ban

Login only with SSH keys. MFA on SSH login. Use SSH proto 2.

Disable passwords, x11 forwarding, root logins

Reduce Idle timeout interval

Limit users’ SSH access

That should be more than enough for the average use case.

Show threadtaladar
Regular updates are definitely necessary too. Also, if you do limit SSH users to a chroot make sure you limit TCP (port) forwarding too.
Apr 20, 2024 at 4:08pmWeb