Question
How secure is my ubuntu server?
- Posted on April 28, 2015
- SecurityLAMP StackUbuntu
Asked by paulday
Hey I just created an Ubuntu Wordpress droplet, I added fail2ban and used UFW to deny all incoming and outgoing and allowed port 80 and port 22 for my ip only.
Can people still hack into my server (ignoring Wordpress vulnerabilities)?
This textbox defaults to using Markdown to format your answer.
You can type !ref in this text area to quickly search our full set of tutorials, documentation & marketplace offerings and insert the link!
These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.
Want to learn more? Join the DigitalOcean Community!
Join our DigitalOcean community of over a million developers for free! Get help and share knowledge in Q&A, subscribe to topics of interest, and get courses and tools that will help you grow as a developer and scale your project or business.
People will always be able to hack into your server; you can never ‘prevent’ your server from being hacked. You can make sure the script kiddies don’t ‘hack’ into your server though; what you did is a good approach.
First off, what I would change is your SSH port. Change it from 22 to 2222, for example. I once had my SSH running on port 22, and guess what, 3 days after I deployed the droplet there were 90,000 failed login attempts…