ramenu@lemmy.mltoSelfhosted@lemmy.world•Suggestions for Improving Linux Server Security: Beyond User Permissions and Groups?English
2·
2 months agoAbsolutely essential is using a firewall and set it as strict as possible. Use MAC like SELinux or Apparmor. This is extremely overkill for a personal server, but you may also compile everything yourself and enable as many hardening flags as possible and compile your own kernel with as many mitigations and hardening flags enabled (also stripped out of features you don’t need)
Codeberg for public repositories, cgit (if that even counts) on my own server for private ones