<- prev | Content | next ->

Security Standards and Recommendations

(not ready yet)

Encrypt the file system of your server

We propose operators to encrypt their server file system before installation. This will prevent an automatic restart of your server, but gives you some protection from possibly manipulating server hosters.

Stop and uninstall all other network services

Stop all services that accept connections from the Internet. Only SSH and the mix process should listen to outside connections. (If you do not understand these terms you should better not run a mix).

Protect your server against brute force login attacks

For making it harder to hack your server login, use SSH certificates for login or install login protection software like fail2ban or portknocking.