In my last post, I talked about basic SSH security settings. Those settings will get you far, but they may not be enough, especially if you have open ports for services like SSH. Persistent attackers will port-scan, then they’ll try to brute force their way into the VPS. All login attempts will be logged and recorded inside the server, wouldn’t it be convenient to ban those who are continuously failing?...
I don’t think there are any reasons for me to lecture about the importance of online security; it’s public knowledge how crucial it is. Managing a VPS requires taking multiple security measures to be sure about safety of your infrastructure and data. I’m planning a series where I talk about different security layers, meant to be stacked over each other. In this one, we’re going to start from ground up and set up the basic minimum and the essential settings....
The conventional way to connect to a remote server is through SSH (secure shell). It comes preinstalled on Linux and Mac, and the protocol takes care of almost anything. Of course, you still need to provide a password or a matching ssh key. On the other hand, if you’re using Windows or Android, or if you find yourself on another machine, things may get challenging. There are many solutions for these kinds of situations....