You are not logged in.
I recently found myself in possession of an old PC that I thought would make a good storage server on my home network. I'm not an expert linux user by any means, but I am trying to learn the ins and outs of building a server. I'm the only one who will be using the server, and I don't foresee any immediate need to login to it remotely (from outside the LAN). I'm muddling my way through the security wiki - https://wiki.archlinux.org/index.php/Security. My eventual plans are to use this as a bittorrent box that can be administered via the web on my local network only.
Aside from what I've mentioned below, what have I missed from a security standpoint?
Are there things in the security wiki article that really don't apply to my situation?
- Changed stored passwords to use SHA512 password hashes - https://wiki.archlinux.org/index.php/SH … ord_hashes
- Installed OpenSSH, removed password based login abilities and restricted SSH logins to using SSH keys - http://wiki.archlinux.org/index.php/Using_SSH_Keys
- Installed iptables and set it up using the following tutorial - https://wiki.archlinux.org/index.php/Si … l_firewall
Thanks,
TFG
Offline
Change your SSH port to something other than 22! Make sure your ssh keys use passphrases. You can setup keychain (ssh-agent) on the server and clients to keep keys in memory if you desire without constantly retyping (and for automated backups).
Scott
Offline