@SomeBoyo@feddit.de to Selfhosted@lemmy.world • 2 months agoWhat are common practice's for hardening/securing your server?message-square66fedilinkarrow-up1140
arrow-up1140message-squareWhat are common practice's for hardening/securing your server?@SomeBoyo@feddit.de to Selfhosted@lemmy.world • 2 months agomessage-square66fedilink
minus-square@ShortN0te@lemmy.mllinkfedilinkEnglish2•2 months agoSecurity by obscurity is no security.
minus-squarePossibly linuxlinkfedilinkEnglish2•2 months agoIt is if you are defending against automation.
minus-square@towerful@programming.devlinkfedilinkEnglish3•2 months agoIt defends against the lowest level of automation. And if that is a legit threat in your model, you are going to have a bad time. It’s just going to trip you up at some point
minus-squarePossibly linuxlinkfedilinkEnglish2•2 months agoI’m not saying it should be your only defense. I’m saying that changing defaults is a good idea for secure systems. For instance, you should change the default WiFi password on your router.
minus-square@towerful@programming.devlinkfedilinkEnglish2•2 months agoYes, because a password is security
minus-squarePossibly linuxlinkfedilinkEnglish1•2 months agoSo is changing the port. It won’t do a lot in terms of security but it will help a tiny bit
Security by obscurity is no security.
It is if you are defending against automation.
It defends against the lowest level of automation. And if that is a legit threat in your model, you are going to have a bad time.
It’s just going to trip you up at some point
I’m not saying it should be your only defense. I’m saying that changing defaults is a good idea for secure systems.
For instance, you should change the default WiFi password on your router.
Yes, because a password is security
So is changing the port. It won’t do a lot in terms of security but it will help a tiny bit