Hello all
I have completed a Pi server project which I am going to use it as a personal website and blog.
I am using a LAMP stack and noip dns hosting with port forwarding to serve the pages.
I have searched around the form for best practices in this project and I have secured the pi as follows
1. changed default user name and deleted the pi user.
2. added 3 factor authentication with public private key when logging in via SSH.
3. I have my firewall set up to only allow port 80 and limit 22. I used UFW.
4. I have set up the Apache config files so no one can access directories such as "images"
5. secured the SQL database with secure _installation.
I want to insure that as much as possible my internal network is secure.
Is there anything else I should do ?
Thanks all in advance.
I will post the link to the site when I have received a few replies for some feedback.
Regards
Jim
-
James.gogarty
- Posts: 18
- Joined: Tue Jan 28, 2014 7:29 pm
- Location: Louth, Ireland
- Contact: Website
Website Testing.
Raspberry Pi owner since 2013.
Hobbyist maker.
http://jago.no-ip.org
Hobbyist maker.
http://jago.no-ip.org
-
Laurens-wuyts
- Posts: 716
- Joined: Wed Aug 21, 2013 7:35 pm
- Location: Belgium
- Contact: Website
Re: Website Testing.
You could use another port for SSH, because hackers are scanning on port 22.
For example use port 1024.
Laurens
For example use port 1024.
Laurens
-
James.gogarty
- Posts: 18
- Joined: Tue Jan 28, 2014 7:29 pm
- Location: Louth, Ireland
- Contact: Website
Re: Website Testing.
Unfortunately I can not change the port on the router from 22.
I have the raspberry pi set up on a different port tough. eg 5555
I have the raspberry pi set up on a different port tough. eg 5555
Raspberry Pi owner since 2013.
Hobbyist maker.
http://jago.no-ip.org
Hobbyist maker.
http://jago.no-ip.org