It scratches the surface of the most obvious stuff. I’d only add running apps in isolation (docker or adduser) and maybe fail2ban.

    • Bipta@kbin.social
      link
      fedilink
      arrow-up
      2
      arrow-down
      1
      ·
      1 year ago

      I think it’s mostly good advice. Certainly not comprehensive but this is securing servers we’re talking about.

      • NateSwift@beehaw.org
        link
        fedilink
        English
        arrow-up
        8
        ·
        1 year ago

        Explaining why something is bad advice is as important as saying it is. Otherwise it’s just a pissing match between two random people on the internet. Why also keeps people from making similar problems.

      • F5XS@beehaw.org
        link
        fedilink
        English
        arrow-up
        4
        ·
        1 year ago

        I also want to know, being a beginner sysadmin myself. If you think that his advice is bad and you’re not elaborating, I’ll be taking his advice because his sounds sane so far.