How do I keep my Linode secure?
I've seen a handful of posts on here that talk about security, but the information seems scattered around a few posts. What best practices can you recommend around securing my Linode?
1 Reply
While we do have our own host and network-level security measures in place, the security of your Linode is ultimately dependent on your configurations, as we are an unmanaged provider, and do not manage security or other configurations internal to a customer's server.
There is not one answer to the question of how you can be sure that nobody will be able to break in, and properly securing your server requires a comprehensive plan which takes all of your specific software, services, and configurations into account. This post talks about setting up Secure FTP (SFTP) access, and since SFTP is part of SSH, those instructions also apply verbatim to securing SSH. Since SSH is the service used to access your server remotely, locking down access to it using tools like Public Key Authentication and Fail2Ban will prevent many of the most common intrusion attempts from being successful.
You should also check out our list of Firewall guides, which will help you ensure that all needed ports are opened correctly, while all unneeded ports remain closed. Beyond that, I recommend a thorough review of your OS, services, and their configurations to determine what, if any, additional security measures are needed.
While I cannot get deep into specific details about how we secure our infrastructure, this post provides a link to our page showing the various certifications we have, as well as a links to a few more posts which outline some basic security advice.