meta data for this page
Differences
This shows you the differences between two versions of the page.
| Both sides previous revision Previous revision Next revision | Previous revision | ||
|
digital:server:hardening [2018/12/05 11:32] natrius |
digital:server:hardening [2019/04/30 20:14] (current) natrius |
||
|---|---|---|---|
| Line 129: | Line 129: | ||
| ### Install and configure UFW | ### Install and configure UFW | ||
| - | Install und enable UFW and allow only SSH default [or Enable UFW and disable all inbound traffic from eth0 on all ports except SSH from my local IP (temporary, eventually I allow SSH globally due to potential for IP changes) and disable all outbound traffic except for port 80.] and for hosted websites port 80 and if you intend to use letsencrypt or somethinglike that port 443 too. | + | Install und enable UFW and allow only SSH default [or Enable UFW and disable all inbound traffic from eth0 on all ports except SSH from my local IP (temporary, eventually I allow SSH globally due to potential for IP changes) and disable all outbound traffic except for port 80.] and for hosted websites port 80 and if you intend to use letsencrypt or somethinglike that port 443 too. UFW does not play well with Docker, keep that in mind. |
| Important commands for UFW | Important commands for UFW | ||
| Line 254: | Line 254: | ||
| To integrate later | To integrate later | ||
| + | * https:// | ||
| * DOD STIG checklists | * DOD STIG checklists | ||
| * https:// | * https:// | ||
| Line 261: | Line 262: | ||
| * https:// | * https:// | ||
| * https:// | * https:// | ||
| + | * https:// | ||
| + | * https:// | ||
| + | * https:// | ||
| + | |||
| + | |||