wmcmurray · November 8, 2021 19:39
diff --git a/basic-linode-server-security b/basic-linode-server-security
 # A default linode web server does not have a lot of configuration done,
 # those are important basic steps to perform in order to secure the server
 # and also configure it properly !

 # update dependencies
 apt update
 apt upgrade

 # define hostname and timezone
 hostnamectl set-hostname example-hostname
 timedatectl set-timezone 'America/Montreal'

 # disable ssh password login
 (make sure the ssh keys I want to use are in /root/.ssh/authorized_keys !!)
 nano /etc/ssh/sshd_config
 (and set "PasswordAuthentication no")
 systemctl restart sshd

 # setup firewall
 ufw allow ssh
 ufw limit ssh
 ufw allow 443
 ufw allow 80
 ufw show added
 ufw enable
 ufw status

 # create a user for the project
 adduser the-user-name-i-want
 su - the-user-name-i-want
 ssh-keygen -t rsa -b 4096

 ----- bonus

 # fix mysqld high memory usage
 nano /etc/mysql/my.cnf

 [mysqld]
 performance_schema='0'

 service mysql restart
	# A default linode web server does not have a lot of configuration done,
	# those are important basic steps to perform in order to secure the server
	# and also configure it properly !

	# update dependencies
	apt update
	apt upgrade

	# define hostname and timezone
	hostnamectl set-hostname example-hostname
	timedatectl set-timezone 'America/Montreal'

	# disable ssh password login
	(make sure the ssh keys I want to use are in /root/.ssh/authorized_keys !!)
	nano /etc/ssh/sshd_config
	(and set "PasswordAuthentication no")
	systemctl restart sshd

	# setup firewall
	ufw allow ssh
	ufw limit ssh
	ufw allow 443
	ufw allow 80
	ufw show added
	ufw enable
	ufw status

	# create a user for the project
	adduser the-user-name-i-want
	su - the-user-name-i-want
	ssh-keygen -t rsa -b 4096

	----- bonus

	# fix mysqld high memory usage
	nano /etc/mysql/my.cnf

	[mysqld]
	performance_schema='0'

	service mysql restart