Beginner guide: How to secure your self-hosted services

This page summarizes the projects mentioned and recommended in the original post on reddit.com/r/selfhosted

Our great sponsors
  • Scout APM - Truly a developer’s best friend
  • InfluxDB - Build time-series-based applications quickly and at scale.
  • Zigi - Delete the most useless function ever: context switching.
  • SonarLint - Clean code begins in your IDE with SonarLint
  • How-To-Secure-A-Linux-Server

    An evolving how-to guide for securing a Linux server.

    Not sure if it will be OS specific but such a guide reminds me of this guide. It has plenty of pointers and is a good starting point, imo, for setting up a debian server in a sane way. It doesn't cover what you seem to be focused on however.

  • wireguard-vyatta-ubnt

    WireGuard for Ubiquiti Devices

    Setting up a VPN like Wireguard is easy and secure. WireGuard has support for all major devices and it'll allow you to access your entire network from anywhere.

  • Scout APM

    Truly a developer’s best friend. Scout APM is great for developers who want to find and fix performance issues in their applications. With Scout, we'll take care of the bugs so you can focus on building great things 🚀.

  • Keycloak

    Open Source Identity and Access Management For Modern Applications and Services

    One could utilize a platform like Authelia or Keycloak to secure public-facing services.

  • authelia

    The Single Sign-On Multi-Factor portal for web apps

    One could utilize a platform like Authelia or Keycloak to secure public-facing services.

  • HomeBrew

    🍺 The missing package manager for macOS (or Linux)

    If you're using macOS you can install nmap using Homebrew ( https://brew.sh ) by issuing brew install nmap

  • lynis

    Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

    If you want a deeper look into your system security you could take a look at something like Lynis - which is one of the more accessible tools to asses system security

  • r-selfhosted-security

    Started from the beginners security guide on r/selfhosted - this repo aims to be a collection of guides

    Here you go :) https://github.com/justSem/r-selfhosted-security/tree/main/beginners-guide

  • InfluxDB

    Build time-series-based applications quickly and at scale.. InfluxDB is the Time Series Data Platform where developers build real-time applications for analytics, IoT and cloud-native services in less time with less code.

  • tailscale

    The easiest, most secure way to use WireGuard and 2FA.

    I haven’t seen anyone mention https://tailscale.com. It’s the easiest way that I’ve found to set up a VPN, and is totally free for personal use. It’s how I access all of my self hosted stuff when I’m out and about.

NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a more popular project.

Suggest a related project

Related posts