I’ve been cryptojacked twice running self hosted apps

This page summarizes the projects mentioned and recommended in the original post on reddit.com/r/selfhosted

Our great sponsors
  • InfluxDB - Build time-series-based applications quickly and at scale.
  • Zigi - Close all those tabs. Zigi will handle your updates.
  • SonarLint - Clean code begins in your IDE with SonarLint
  • Scout APM - Truly a developer’s best friend
  • setup-ipsec-vpn

    Scripts to build your own IPsec VPN server, with IPsec/L2TP, Cisco IPsec and IKEv2

  • crowdsec

    CrowdSec - the open-source and participative IPS able to analyze visitor behavior & provide an adapted response to all kinds of attacks. It also leverages the crowd power to generate a global CTI database to protect the user network.

    Or crowdsec: https://github.com/crowdsecurity/crowdsec

  • InfluxDB

    Build time-series-based applications quickly and at scale.. InfluxDB is the Time Series Data Platform where developers build real-time applications for analytics, IoT and cloud-native services in less time with less code.

  • lynis

    Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

    I use several security auditing tools for system hardening. https://cisofy.com/lynis/ is a nice beginner one.

  • ansible-collection-hardening

    This Ansible collection provides battle tested hardening for Linux, SSH, nginx, MySQL

    It's one of the most secure services to expose over the Internet (assuming you've setup key-based authentication - and some additional measures like restricting SSH access to a group. You can harden it a lot more)

  • Nginx Proxy Manager

    Docker container for managing Nginx proxy hosts with a simple, powerful interface

    If you want to access your services outside your home network, use wireguard to connect to your home network and close all your ports except wireguard ports and if you have webservers and you want to expose Plex outside your network then open 80 and 443 and use something like nginxproxymanager the proxy manager will help you proxy your server to port 80 with domain and give it a SSL cert. I highly recommend you to proxy your servers through this

  • Zigi

    Close all those tabs. Zigi will handle your updates.. Zigi monitors Jira and GitHub updates, pings you when PRs need approval and lets you take fast actions - all directly from Slack! Plus it reduces cycle time by up to 75%.

NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a more popular project.

Suggest a related project

Related posts