part_1
Differences
This shows you the differences between two versions of the page.
| Both sides previous revisionPrevious revisionNext revision | Previous revision | ||
| part_1 [2025/03/01 19:53] – wizardadmin | part_1 [2025/03/01 20:01] (current) – wizardadmin | ||
|---|---|---|---|
| Line 2: | Line 2: | ||
| {{: | {{: | ||
| - | {{: | + | {{: |
| This is a diagram of what i have in mind to secure this webserver. | This is a diagram of what i have in mind to secure this webserver. | ||
| Line 9: | Line 9: | ||
| 1. Disable logging in as root | 1. Disable logging in as root | ||
| - | 2. Configure SSH to use a random port and not serve over port 22 | + | |
| + | 2. Configure SSH to use a random port and not connect | ||
| 3. Lockdown logins by forcing logins with a public/ | 3. Lockdown logins by forcing logins with a public/ | ||
| Line 15: | Line 17: | ||
| These i will not discuss but am happy to discuss in a professional environment (Job interview, job meetings) | These i will not discuss but am happy to discuss in a professional environment (Job interview, job meetings) | ||
| - | After hardening the Debian server as much as i knew, i moved onto the next steps in terms of security. A firewall! | + | After hardening the Debian server as much as i knew, i moved onto the next steps in terms of security. A firewall! |
| I went with a OPNSense firewall that again i hand built to fit into a 2u server chassis. Loaded OPNsense onto and got to work. My idea for this was that i would take advantage of OPNsense' | I went with a OPNSense firewall that again i hand built to fit into a 2u server chassis. Loaded OPNsense onto and got to work. My idea for this was that i would take advantage of OPNsense' | ||
part_1.1740858828.txt.gz · Last modified: 2025/03/01 19:53 by wizardadmin