How to secure a droplet previously used for web hosting?
This is probably a stupid question but I'm being a little paranoid here.
So I previously used my droplet to host my website. I do not recall exactly what I installed to get this to happen, but it included nginx and pm2.
Anyway, I no longer wish to use my droplet for hosting, instead I want to use it to store confidential files. I am concerned that having previously opened my droplet up to being a web host has left doors open to increase the risk of my files being exposed to the internet.
Given that I previously used my droplet for hosting, is there anything y'all would advise to help lock down my droplet? Even if I hadn't used it for hosting, is there stuff I could do?
So far the only thing I've done is uninstall nginx.
I know the obvious answer is to create a new droplet from scratch, but this droplet has a bunch of installations that I want to keep.