Security Standards and Recommendations

From JonDonym Wiki
Revision as of 14:21, 22 March 2010 by Kn (Talk | contribs)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to: navigation, search


Security Standards and Recommendations

Encrypt the file system of your server

We propose Operators to encrypt their server file system before installation. This will prevent an automatic restart of your server, but gives you some protection from possibly manipulating server hosters.

Stop and uninstall all other network services

Stop all services that accept connections from the internet. Only SSH and the Mix process should listen to outside connections. (If you do not understand these terms, you should better not run a Mix).

Protect your server against brute force login attacks

For making it harder to hack your server login, use SSH certificates for login or install login protection software like fail2ban or portknocking.

Personal tools