Question
How secure is my ubuntu server?
Hey I just created an Ubuntu Wordpress droplet, I added fail2ban and used UFW to deny all incoming and outgoing and allowed port 80 and port 22 for my ip only.
Can people still hack into my server (ignoring Wordpress vulnerabilities)?
These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.
×
To be clear I meant allowed port80 for all and port 22 for my ip*
Well if you ignore the biggest hole out of them all, things look a lot better ..
I have spent a lot of time making sure Wordpress is as secure as possible so I am not worried about that and have a firewall/file scanning setup to alert me if anything does happen. I am not as experienced with managing a server so I am interested to know if what I’ve done is good enough or if I should do more.
I’d change port 22 to something else (e.g. 2222).
Port 22 is the standard ssh port so you will get frequent bot attacks.