This is a suggestion for a future Ubuntu Security Podcast episode, and hopefully one that will benefit a lot of people in a similar situation to me.
I thought this might be a good place to raise this as members of the community would have the opportunity to share their favoured approaches to keeping a system secure.
I run a couple of Ubuntu boxes that provide self-hosted services such as Matrix-synapse, WordPress, dokuwiki and basic network file sharing. Since these machines are accessible from the internet what steps should I be taking to make sure my data is safe?
How can I identify any weaknesses in my current setup? Can I turn hacker for the day and try to find any holes before the bad guys do?
I’ve heard whispers of log monitoring software that might be useful or ways of identifying suspicious system activity but ideally I would like some specific advice on what direction to go.
I guess it’s clear I’m not an infoSec person, so the emphasis here is on the solutions being accessible to an amateur system admin like me.
I look forward to hearing what you suggest.