It scratches the surface of the most obvious stuff. I’d only add running apps in isolation (docker or adduser) and maybe fail2ban.

      • Bipta@kbin.social
        link
        fedilink
        arrow-up
        2
        arrow-down
        1
        ·
        1 year ago

        I think it’s mostly good advice. Certainly not comprehensive but this is securing servers we’re talking about.

        • NateSwift@beehaw.org
          link
          fedilink
          English
          arrow-up
          8
          ·
          1 year ago

          Explaining why something is bad advice is as important as saying it is. Otherwise it’s just a pissing match between two random people on the internet. Why also keeps people from making similar problems.

        • F5XS@beehaw.org
          link
          fedilink
          English
          arrow-up
          4
          ·
          1 year ago

          I also want to know, being a beginner sysadmin myself. If you think that his advice is bad and you’re not elaborating, I’ll be taking his advice because his sounds sane so far.