SpencerJ Posted January 26, 2020 Posted January 26, 2020 Unraid 6.8.2 is now available! Along with the new release, we've published a blog on some general security tips and best practices to follow to keep your Unraid server safe and secure. What else do you do to keep your Unraid server safe? Let us know in the comments here! 5 Quote
SpencerJ Posted February 5, 2020 Author Posted February 5, 2020 No other security tips?! https://giphy.com/explore/i-dont-believe-you Quote
1812 Posted February 5, 2020 Posted February 5, 2020 I run a virtualized instance of an enterprise-grade firewall on my box. This keeps viruses and other nasties from penetrating my network and infecting my hardware. But at the same time, my friends with benefits can still gain access to my 9TB worth of Hard Disks for their pleasure. It may be hard to swallow, but taking the time to carefully setup your sever will pay dividends later with all that data going in and out, and in, and out. 5 Quote
SpencerJ Posted February 6, 2020 Author Posted February 6, 2020 15 hours ago, 1812 said: I run a virtualized instance of an enterprise-grade firewall on my box. This keeps viruses and other nasties from penetrating my network and infecting my hardware. But at the same time, my friends with benefits can still gain access to my 9TB worth of Hard Disks for their pleasure. It may be hard to swallow, but taking the time to carefully setup your sever will pay dividends later with all that data going in and out, and in, and out. I see what you did there! Great tip. Quote
Derek_ Posted February 8, 2020 Posted February 8, 2020 It's a good blog/article. Thanks. As for ideas: disable SSH OOTB. Reason: Root has no password yet. Some people have their 22 port already open for other devices they manage on their network. A warning popup before letting the user turn on SSH, unless the user has: 1. ideally set up SSH keys; or 2. At a minimum, set a strong password; or 3. They're network is internal only (i.e. 22 isn't forwarded) ...or is this thread for users rather than for Lime? If it's for users only - install the SSH plugin by @docgyver and disable root SSH login, disable passwords, pick/make a non-root user for SSH functions and only use keys. Some people also recommend not using the default port 22. It's much more secure to SSH as a limited user, with keys, and su to root if you need root. I really hope that Lime integrate these SSH features into the OS from the outset because it's essential OS security that is currently being provided by a volunteer. Bless him/her 2 Quote
SpencerJ Posted February 8, 2020 Author Posted February 8, 2020 14 hours ago, Derek_ said: As for ideas: disable SSH OOTB. Reason: Root has no password yet. Some people have their 22 port already open for other devices they manage on their network. A warning popup before letting the user turn on SSH, unless the user has: 1. ideally set up SSH keys; or 2. At a minimum, set a strong password; or 3. They're network is internal only (i.e. 22 isn't forwarded) thanks for the comment and ideas. If you would, could you post this to Feature Requests and we will put it on the board. Thanks again! 1 Quote
Derek_ Posted February 9, 2020 Posted February 9, 2020 13 hours ago, SpencerJ said: thanks for the comment and ideas. If you would, could you post this to Feature Requests and we will put it on the board. Thanks again! Done! Thanks for suggesting it 1 Quote
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.