What security measures to take on the droplet?

August 11, 2015 2.1k

Hi, I've implemented these security measures on my new droplet as part of the basic setup:

Enabled SSH keys
Disabled root login
Disallowed password authentication
Restricted use of PAM
Changed port number
Limited users through SSH
Installed UFW firewall

Do you think these are sufficient or there are any other security aspects that I should have on the droplet before going ahead with LAMP or LEMP stack to eventually install WordPress?

Sharing of your personal experiences will be highly appreciated. Thanks. :)

2 Answers

ryanpq MOD August 11, 2015

This is a good start! I would also recommend setting up fail2ban if you begin seeing a lot of failed ssh authentication attempts. With the changed port you might not so I'd watch your logs and set up fail2ban if it makes sense.

Linza August 11, 2015

Thanks for your reply, Ryan. Regarding fail2ban, I read in one of the tutorials here that if you disable password authentication then there is no need to install it, as it is only needed when you have the password authentication allowed.

As you mention changing the post further reduces SSH authentication attempts, but I read about port scanning too. What should I install that would help me watch the logs and alert me whenever there is port scanning. I saw a tutorial on PSAD but that needs iptables and a mail server. Let me know your views.

Linza August 11, 2015

[deleted]

Have another answer? Share your knowledge.

Share

Share your Question

What security measures to take on the droplet?

Leave a Comment

Related Questions

Almost there!

Report a Bug