Our great sponsors
-
WorkOS
The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.
-
ssh-audit
SSH server & client security auditing (banner, key exchange, encryption, mac, compression, compatibility, security, etc) (by jtesta)
I'm using Slack Nebula as a simple VPN mechanism. Nebula is how I network all of my computers together. It works 90% of the time (until you have other VPNs on, like work VPNs, then it can get confused, but hey).
pritunl.com as the VPN server and a "roadwarrior" setup for my phone, laptop, and portable router help me route all my traffic through to my home network and out again when I stay away from home.
I'm also a fan of https://github.com/skeeto/endlessh
I wrote myself a small guide loosely based on the NIST security checklist for new servers running RHEL/CentOS/Rocky 8, but the SSH components parts may still be usable in other OSes.
And an audit script to check your server: https://github.com/jtesta/ssh-audit