admin:linux:server

Administration of Linux Servers

Security / Hardening

  • set SSH to a different port than 22 to filter out noise
  • use SELinux or AppArmor
  • use a firewall, e.g. iptables, nftables, firewalld, ufw
  • run services with their own users instead of root
  • remove the world readable bit from config files which contain credentials

Media Server

  • You can use MergerFS and SnapRAID instead of "regular" RAID for cheaper storage.

see also

  • Last modified: 2024-07-05 14:31