Raspberry Pi Forums

Hi Guys

I have a simple tutorial to protect a Raspberry Pi web server so it can be connected to the Internet
http://www.simonthepiman.com/how_to_set ... ternet.php
happy to modify if anyone notices anything incorrect

Thanks for posting this- I think everyone with a network-reachable box should be thinking about security at least a little bit. In the line-by-line descriptions, I think one was copy and pasted... shouldn't these two lines have different descriptions? I think the second one should read differently as it seems to be allowing 'ping' (based on http://wiki.debian.org/iptables ), rather than dropping ssh

I'd personally put changing the default password higher up the list of tasks
And you might want to explain in step 6 what's special about ports 80 and 443.
I never bothered to learn iptables, but there's some other stuff here http://www.raspberrypi.org/phpBB3/viewt ... =63&t=8472 and make sure you checkout the other thrread I link to in the last post. Plenty to sink your pie-teeth into
Maybe a brief overview of (or link to another webpage about) port-forwarding, for users whose router doesn't have a DMZ?

Andrew many thanks for your comments - I would rather get the tutorial right, so will make the changes suggested - Yes I did copy the Port 22 line - cut and paste can be a bad thing sometimes

Sorry jbeale thanks go out to you as well

Thanks for the guide, I'll read it later.

I've installed a little firewall called firestarter. It seems to be functioning well, allows you to wire your own policies, etc. has anyone else come across it?

ren