Question
Is my website configuration ready to go live?
I want to know if I am missing something or no.
I have:
512MB Ram 20GB SSD Disk Singapore 1 LEMP on Ubuntu 14.04
I am building a simple PHP application.
I have done:
- LEMP one-click app installation
initial server setup
I wen to this link and applied all the things in the tutorial (Create new user, gave it Root Privileges, changed ssh port, disabled root login).key-based authentication
After doing that I have disabled login using passwordinstalled ufw firewall
I have closed all incoming and outgoing ports. and the I have opened the ones I need until this post and those are:
2222/tcp(ssh port and sftp)
80/tcp
2222/tcp (v6) (ssh port and sftp)
80/tcp (v6)
I will be openning more ports when needed. For example if I need to use something that uses port XXXX then I will open that.
- mysqlsecureinstallation I have done this and I have added a new user to not use the root.
Now my question is:
- In step 4, Do I need to open more ports In the firewall? Some ports that are necessary to be open before my website goes live.
- In step 5, Do I need to disable root in mysql or it does not matter? Or just using the other username with all privileges in my application is fine?
And the most important question, Am I missing any other setup before going live?
These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.
×
Update:
I don’t know why numbering didn’t work on the question -_-
the way it is now is 1, 2, 1, 2, 1 which is wrong.
The correct order is 1,2,3,4,5.
for example key-based authentication is number 3 not 1 again.
and number 5 (not 1 again) is
mysql_secure_installation
not mysqlsecureinstallation