1·
1 year agoSome good advice here. I would say avoid using network_mode: host unless you really have to. And make use of no-new-privs feature. This is easy to do and IMO bare minimum for preventing rogue actions from containers.
- 0 Posts
- 3 Comments
Joined 1 year ago
Cake day: October 16th, 2023
You are not logged in. If you use a Fediverse account that is able to follow users, you can follow this user.
This is a skill issue. Shut down every thing you don’t consider a necessity. Problem solved.
Installing fail2ban and not configuring it is as good as not installing the program in the first place.
Include unattended-upgrades with configuration for security updates. This is essential to any actively accessible server.