If I create a new droplet using the Ubuntu 18.04, does it come with any security enabled by default?
These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.
×Hi @mhweb,
Well, it comes with default security like patches for some known exploits however you’ll need to ensure your system is up to date by executing the
Question
apt update
apt upgrade
commands. Additionally, if you have installed any services like Apache,Nginx,Exim etc. you’ll need to keep them up to date. The vendors themselves are patching any known vulnerabilities however you’ll need to again keep everything most up to date.
Another thing you can do is, keep the ports you are using closed unless you otherwise don’t need to and that’s only for the server side.
If you have any applications, like websites and most likely you’ll need to, you’ll need to take other precautions depending on the CMS, if you are using. If you aren’t then you’ll need to make sure your code is updated approriatly depending on the new exploits in PHP,PERL,Python etc. that come one.
To summarize, it really depends but most importantly everything needs to be up to date.
Regards,
KDSys
Perhaps I wasn’t specific, I was referring to what security feature comes enabled by default when creating an Ubuntu 18.04 droplet, such as firewall and fail2ban, etc. What features and settings does DigitalOcean puts in place on droplets?