#ufw is a powerful tool if used correctly. Sure, you could do:

ufw allow 22

But why do that when you can limit that allowance to specific clients or networks?

ufw allow from 10.8.0.0/24 to any port 22 comment "SSH via VPN"

#linux #cybersecurity #security #firewall

@gerowen Do you know of any good guides for using and setting up ufw? As a new Linux user who moved from Apple, I'm pretty hesitant to setup the firewall on my personal machine for fear of breaking things.

@obsolete29 as long as you don’t block your SSH port, you should be okay.

I’d block by default, and only allow ports you really need (SSH, HTTP/S, etc).

I usually use DigitalOcean as a resource when it comes to setting up a VPS: https://www.digitalocean.com/community/tutorials/how-to-set-up-a-firewall-with-ufw-on-ubuntu-18-04

@celia

I created a VPS some months ago and didn't entirely secure it for a while (I only removed root ssh access and after a few days installed fail2ban. I did remove password authentification but add to reauthorize it for reasons).
Should I completely wipe it and start it anew ?
All there's in it is the SSH configuration and a borg backup that never really worked...

@obsolete29 @uoya

Sign in to participate in the conversation
Fosstodon

Fosstodon is an English speaking Mastodon instance that is open to anyone who is interested in technology; particularly free & open source software.