The New Stack has posted a guide on how to harden n Ubuntu server. Ubuntu is a popular choice for container deployments, but many admins and DevOps teams overlook the importance of securing the operating system itself. The article provides a guide to hardening Ubuntu to ensure a secure foundation for deployments. The steps include:

1. Schedule regular upgrades to ensure the server is patched against the latest threats.

2. Change sudo and SSH settings.

3. Install and configure fail2ban to automatically ban IP addresses that attempt to compromise the server via SSH.

4. Secure shared memory by mounting /run/shm with certain privileges.

5. Enable and configure the Uncomplicated Firewall (UFW) and allow SSH connections.

By following these steps, admins and DevOps teams can significantly enhance the security of their Ubuntu Server deployments. Head over to The New Stack and read the guide!

Source: The New Stack.

Here is this months roundup of the changes to the awesome-sysadmin repository. The repository describes itself as

A curated list of amazingly awesome Free and Open-Source sysadmin resources. Please read the Pull Request template if you wish to add software and consider donating to the FLOSS projects you use regularly. Please consider contributing to fix one of the pinned issues if your time allows.

Here are the new additions for February 2024:

• Static Web Server - A cross-platform, high-performance, and asynchronous web server for static file serving. (Source Code) Apache-2.0/MIT Rust/Docker Please visit awesome-selfhosted/Software Development - Project Management See also: awesome-selfhosted/Database Management See also: awesome-selfhosted/File Transfer - Object Storage & File Servers See also: awesome-selfhosted/DNS See also: awesome-selfhosted/DNS Please visit awesome-selfhosted/Project Management See also: awesome-selfhosted/Remote Access Please visit awesome-selfhosted/Status / Uptime Pages
• Additions are not already listed at awesome-selfhosted

Here is this months roundup of the changes to the awesome-sysadmin repository. The repository describes itself as

A curated list of amazingly awesome Free and Open-Source sysadmin resources. Please read the Pull Request template if you wish to add software and consider donating to the FLOSS projects you use regularly. Please consider contributing to fix one of the pinned issues if your time allows.

Here are the new additions for January 2024:

Here is this months roundup of the changes to the awesome-sysadmin repository. The repository describes itself as

A curated list of amazingly awesome Free and Open-Source sysadmin resources. Please read the Pull Request template if you wish to add software and consider donating to the FLOSS projects you use regularly. Please consider contributing to fix one of the pinned issues if your time allows.

Here are the new additions for November 2023:

• HestiaCP - Web server control panel (fork of VestaCP). (Demo, Source Code) GPL-3.0 PHP/Shell/Other

Here is this months roundup of the changes to the awesome-sysadmin repository. The repository describes itself as

A curated list of amazingly awesome Free and Open-Source sysadmin resources. Please read the Pull Request template if you wish to add software and consider donating to the FLOSS projects you use regularly. Please consider contributing to fix one of the pinned issues if your time allows.

Here are the new additions for October 2023:

• Bolt - You can use Bolt to run one-off tasks, scripts to automate the provisioning and management of some nodes, you can use Bolt to move a step beyond scripts, and make them shareable. (Source Code) Apache-2.0 Ruby
• Environment Modules - Environment Modules provides for the dynamic modification of a user’s environment via modulefiles. (Source Code) GPL-2.0 Tcl - ‘^https://community.openvpn.net$’ # DDoS protection page, always returns 403