Avatar
inpc 2w ago

Exciting day…

I have added a firewall and docker, I ran a thing in docker, it said “hello”. I got sad because computer said 100mb/s, I became happy when I changed a router setting and now computer says 1000mb/s.

Now to change all the ports, that’ll be super fun. Pretty sure Port 80 is Po Po so want a better number. At least I think that’s what I do next. It’s something to do.

At this rate I should be hacking The Pentagon sometime in Q3 in the year 2968.

Clever people, if you were building a home server but were also a massive idiot, what security measures would you put in place? I have UFW and aim to add a reverse proxy, much of this language is foreign to me but it sounds cool…

Are there some vital 101 type features a server should have to be secure?

Reply to this note

Please Login to reply.

Discussion

Avatar
arfonzo 2w ago

Check out pi-hole which you use as your DNS you host yourself, to filter out malware and many banner adverts and tracking sites.

Avatar
inpc 2w ago

Thanks, I’ve often heard about pi-hole , will investigate. Cheers.

Avatar
徒settoセット 𓁣 🏴 2w ago

funny you mention reverse proxy, i was day dreaming earlier about a way to break down some concepts for you and what analogies exist in audio engineering. The only i devised was that a proxy is kinda like a patchbay.

Anyways in terms of security top pf the charts, fail2ban is a classic banger found on most machines. It monitors login attempts on ssh, nginx or whatever and after a set amount of failures, it bans the IP of the purp! Check it out!

Avatar
inpc 2w ago

Ahh great shout on fail2ban, hadn’t thought of that, thanks!