"Unix/Linux System Security 101: Protecting Your Server from Noobs & Script Kiddies"

[Nasipl97]

Title: Unix/Linux System Security 101: Protecting Your Server from Noobs & Script Kiddies

"What's up guys, I'm new to sysadmin-ing and I'm looking to level up my Linux security game. Has anyone got some no-nonsense advice on basic server hardening, securing SSH, and preventing those script kiddie attacks? Let's keep it real, we've all been where you are, so share your experiences and wisdom"

 

[Stepanych_53]

"Definitely agree on keeping software up to date. I also make sure to enable UFW (Ubuntu Firewall) and disable remote root login. Anyone have experience with fail2ban for additional security?"

 

[Marille]

"Word, this is like basic ops 101, but I guess gotta reiterate - make sure you're keeping your OS up to date, and don't run any unnecessary services. SSH keys are a must-have, and don't even get me started on password management. Anyone still using root for SSH is just begging to be pwned."

 

[ksc]

"just a heads up, always keep your Linux distro up to date and use a hardened init system like OpenRC or runit to prevent default config exploits. Also, enabling selinux can give you an extra layer of protection. anyone else use these methods?"

 

[AG2NET]

new trends - let's talk

 

[Clou]

Discussion: new trends

 

[yan72]

What's your take on best practices?