SomeBoyo@feddit.de to Selfhosted@lemmy.world · 1 year agoWhat are common practice's for hardening/securing your server?message-squaremessage-square64fedilinkarrow-up1138
arrow-up1138message-squareWhat are common practice's for hardening/securing your server?SomeBoyo@feddit.de to Selfhosted@lemmy.world · 1 year agomessage-square64fedilink
minus-squareShortN0te@lemmy.mllinkfedilinkEnglisharrow-up2·1 year agoSecurity by obscurity is no security.
minus-squarePossibly linux@lemmy.ziplinkfedilinkEnglisharrow-up2·1 year agoIt is if you are defending against automation.
minus-squaretowerful@programming.devlinkfedilinkEnglisharrow-up3·1 year agoIt defends against the lowest level of automation. And if that is a legit threat in your model, you are going to have a bad time. It’s just going to trip you up at some point
minus-squarePossibly linux@lemmy.ziplinkfedilinkEnglisharrow-up2·1 year agoI’m not saying it should be your only defense. I’m saying that changing defaults is a good idea for secure systems. For instance, you should change the default WiFi password on your router.
minus-squaretowerful@programming.devlinkfedilinkEnglisharrow-up2·1 year agoYes, because a password is security
minus-squarePossibly linux@lemmy.ziplinkfedilinkEnglisharrow-up1·1 year agoSo is changing the port. It won’t do a lot in terms of security but it will help a tiny bit
Security by obscurity is no security.
It is if you are defending against automation.
It defends against the lowest level of automation. And if that is a legit threat in your model, you are going to have a bad time.
It’s just going to trip you up at some point
I’m not saying it should be your only defense. I’m saying that changing defaults is a good idea for secure systems.
For instance, you should change the default WiFi password on your router.
Yes, because a password is security
So is changing the port. It won’t do a lot in terms of security but it will help a tiny bit