Is it hard to maintain a VPS and have it up to date against security risks? Are there ways to simplify the tasks?
I run my own website and am worried about the security concerns, this website will be commercial and will contain valuable information so I can't risk any breach. I've read many of the digitalocean tutorials, i've set up the accounts, disabled password login to use only ssh, use sftp, disabled remote root login, enabled firewall, added fail2ban, etc.
The problem is that i am not aware on what it takes for a server to have a very solid protection, i am willing to buy management software (if it simplifies other stuff much better) or hire a server admin if necessary, i don't expect it to cost a fortune tho, so this is pretty much my situation.