Hey I just created an Ubuntu Wordpress droplet, I added fail2ban and used UFW to deny all incoming and outgoing and allowed port 80 and port 22 for my ip only.
Can people still hack into my server (ignoring Wordpress vulnerabilities)?
These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.
×People will always be able to hack into your server; you can never ‘prevent’ your server from being hacked. You can make sure the script kiddies don’t 'hack’ into your server though; what you did is a good approach.
First off, what I would change is your SSH port. Change it from 22 to 2222, for example. I once had my SSH running on port 22, and guess what, 3 days after I deployed the droplet there were 90,000 failed login attempts…
Thanks, that’s a great idea. Will change that now. Is there a range I should stay between for my new ssh port?
As long as the port is not in use, I believe the port can be anything from 1 to 65535.
Question
To be clear I meant allowed port80 for all and port 22 for my ip*
Well if you ignore the biggest hole out of them all, things look a lot better ..
I have spent a lot of time making sure Wordpress is as secure as possible so I am not worried about that and have a firewall/file scanning setup to alert me if anything does happen. I am not as experienced with managing a server so I am interested to know if what I’ve done is good enough or if I should do more.
I’d change port 22 to something else (e.g. 2222).
Port 22 is the standard ssh port so you will get frequent bot attacks.