I'm in the process of hardening a VPS that I host at home using Proxmox. Since I'm not too familiar with the hardening of VMs, I wanted to reach out for some insights. I've come across various guides that mention important steps like configuring UFW and adjusting SSH settings. What specific actions are you all taking in these areas, and what might I be overlooking?
1 Answer
I'd recommend looking at guidelines like DISA STIGs or CIS benchmarks for a comprehensive approach. You can really dive deep into hardening, but some key steps I suggest include implementing two-factor authentication, ensuring your server is domain joined, using iptables or firewalld/UFW, and setting up fail2ban for extra protection.
I totally forgot about CIS! I think I’ll start with level 1. Thanks for the tip!