Howdy, Stranger!

It looks like you're new here. If you want to get involved, click one of these buttons!

Sign In Register

Quick Links


Shells Virtual Desktop
BMail.ag - Secure Email Service
Server.net
CPLicense.net
VPS Server
Buy VPN
Vultr
VMs for AI
HostDare
ReliableSite White-Label Dedicated Hosting for Resellers
InterServer VPS
BMail.ag - Secure Email Service
Best VPN
High-Performance Bare Metal Server Solutions
Karvl.com
Server Mania Cloud Hosting
DataWagon Hosting
AlphaVPS Hosting
Evoxt.com
Clouvider
VPS Hosting with NVMe
Residential IPs in the US & 4G Mobile Proxies in EU & US with Unlimited Bandwidth
ReliableSite White-Label Dedicated Hosting for Resellers
Rabisu - Hosting Solutions
Shells Virtual Desktop

Categories

In this Discussion

Home Tutorials
New on LowEndTalk? Please Register and read our Community Rules.

All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.

What are the best practices to secure a VPS?

HostNocHostNoc Member
in Tutorials

Start with a firewall (like Uncomplicated Firewall or ip tables), change default SSH ports and disable root login. Install fail2ban or similar tools to block brute-force attempts. Keep your operating system and software up-to-date. Use strong, unique passwords and consider SSH key authentication. Regularly scan for malware, use backups and monitor traffic for anomalies. Tools like ClamAV, CSF and auto-update scripts can help keep things tight.

Thanked by 1Tandoor

Comments

  • webhorizonwebhorizon Member, Host Rep

    https://github.com/imthenachoman/How-To-Secure-A-Linux-Server

  • ralfralf Member

    Just idle it and don't put anything sensitive on it. If it gets hacked, just turn it off from the control panel.

    Thanked by 4jnd JohnnySac hecatae Luka0
  • xvpsxvps Member

    You call that a tutorial? :D

  • satoriksatorik Member

    This is from the external. From internal side, VPS is never considered as secure, as provider can always dump your memory and disk.

    Thanked by 1yoursunny
  • jndjnd Member
    edited August 2025

    @ralf said:
    Just idle it and don't put anything sensitive on it. If it gets hacked, just turn it off from the control panel.

    For maximum security turn it off from the beginning, you don't use it anyway.

    In all seriousness, enable ssh key login and disable passwords, eliminates 99% brute force hacking.

    Another level is to run light apps like single golang runtime as opposed to having dozen interdependent services, hundreds of node.js packages and the like. Update your system regularly and have immutable backups (that you tried to restore) so that some potential attacker can't infect your previously backed up data.

    Personally I would be careful about having too many monitoring services (don't install from some random github project just because it looks fancy), scanning tools and AV, those are potential attack vectors too.

    Thanked by 2dediissues hecatae
  • xvpsxvps Member
    edited August 2025

    Post your IP address and root password here, and pay one of the low-end experts $7 to secure it for you.

    Don’t forget to post a review afterward. (It counts as a non-spammy post)

    Thanked by 5jnd wadhah hecatae fly056 yoursunny
  • jndjnd Member

    @xvps said:
    Post your IP address and root password here, and pay one of the low-end experts $7 to secure it for you.

    Don’t forget to post a review afterward. (It counts as a non-spammy post)

    That's how providers should do server give aways, post the IP and password, the first person to secure the machine wins.

    Thanked by 2xvps hecatae
  • plumbergplumberg Veteran, Megathread Squad

    Nice shit post to gain comment karma to apply for Provider tag for this winter

    Thanked by 2JohnnySac CheepCluck
  • angstromangstrom Moderator

    Issued warning to user for posting AI-generated text

    Thread closed

    Thanked by 1jsg
This discussion has been closed.