Running your own little (virtual) linux server opens a whole new world of possibilities:
1. Run your own truly private VPN
2. Host your own Cloud for yourself, family and friends
3. Secure your DNS (PiHole), sync files (Syncthing), archive documents (Paperless-ngx) and so much more…
👉️👉️ BUT:
The no. 1 fear when self-hosting is: Getting hacked. Security isn't a natural occurrence. You have to do stuff to make your server secure. But what stuff is really worth it? Do I really have to follow all "best practices" out there?
👉️👉️ Introducing LAZY HIGH SECURITY
This video is all about doing the right things for beginners. Enough to be safe against all typical attacks but not so much that we have to change our lifestyle, our name and what we eat.
👉️👉️ Chapters:
00:00 Introduction: Your own Linux server & LAZY SECURITY
01:16 Get a Linux Server or VPS
02:11 Safe root password
02:48 Software updates
04:09 Add a new user with SUDO
08:03 Disable root logins
09:27 Install fail2ban
14:25 Firewall UFW: Install & configure
18:08 Automatic (unattended) upgrades / updates
20:36 SSH Keys, additional notes
I highly recommend using SSH Keys, but they are not needed if you don't feel like you want to have to manage your SSH keys as a beginner.
VPS providers:
+ EU: www.alwyzon.com
+ EU & US: www.hetzner.com
+ US: www.digitalocean.com (They help finance linuxserver.io - so they should be supported!)
+ US: www.vultr.com
+ US & UK: www.racknerd.com (Obscure payment options)