2025-04-07, 01:51 AM
Thanks! Very useful. My system is using Ubuntu Server LTS. I have the habit of updating my system often, so I should be good. Thanks for the other tips, I will implement them:
- Not forwarding the port 80
- Using an arbitrary port other than 443
- Good password(s)
- Setting fail2ban (didn't know about that)
I also already setted a maximum of login attempt to 5. Not sure it's that useful though.
Perhaps a question about updating. The Caddy version I used is the one "provided" with the dns add-on (here: https://caddyserver.com/download). My guess is that I will have to manually download each new version and replace the one on my system? The other software are using PPA repos, so should update with a regular sudo apt update/upgrade commands)
Thanks again, it is comforting to read that, if I take the right steps, the server will be secure.
- Not forwarding the port 80
- Using an arbitrary port other than 443
- Good password(s)
- Setting fail2ban (didn't know about that)
I also already setted a maximum of login attempt to 5. Not sure it's that useful though.
Perhaps a question about updating. The Caddy version I used is the one "provided" with the dns add-on (here: https://caddyserver.com/download). My guess is that I will have to manually download each new version and replace the one on my system? The other software are using PPA repos, so should update with a regular sudo apt update/upgrade commands)
Thanks again, it is comforting to read that, if I take the right steps, the server will be secure.