Hey guys,

I finally come around and started the journey of self-hosting and decided to get a VPS. After securing it, by making login via public-key default, I installed CasaOS and instantly regretted it since it now can be reached freely from the internet. A while ago, I read that you can limit the incoming connection to only VPN and ssh. And configured a Wireguard-VPN on the server via pivpn. But the server can still be reached from the internet. So what do I have to do now? Is it even the right choice, or am I missing something? How do you guys secure your VPS?

  • Algenza Algenza@sos.nekoweb.my.id
    link
    fedilink
    arrow-up
    1
    arrow-down
    1
    ·
    1 year ago

    @notepass@feddit.de @rmstyle@feddit.de Also, you can change the SSH port to something not 22. Some guide here. To connect to SSH, just use ssh -p PORT site.com

    • notepass@feddit.de
      link
      fedilink
      English
      arrow-up
      1
      ·
      1 year ago

      You can, but you should configure your server in a way that this shouldn’t be a security feature of your setup (e.g. key-auth as OP did). It does help to cut back on uninvited guests a lot tho.