←back to thread

How to secure your new VPS: a step-by-step guide

(www.kkyri.com)
47 points todsacerdoti | 3 comments | 22 Oct 24 00:52 UTC | HN request time: 0.001s | source
Show context
gjsman-1000 ◴[22 Oct 24 02:10 UTC] No.41910497[source]
Always remember though (and, before anyone says this is obvious, I once shocked an HN reader who hadn’t thought this through):

All of your VPS security is meaningless compared to your VPS provider’s security, the security imposed on the employees of the VPS provider, the security of your VPS account password, and their susceptibility to faked subpoenas and faked emergency data requests.

replies(2): >>41910536 #>>41910964 #
akerl_ ◴[22 Oct 24 02:16 UTC] No.41910536[source]
Far more VPSs are compromised through local VM attacks than provider attacks.

This is a bit like saying "When you're temping your chicken, always remember that your grocery store could be putting arsenic in it at the store". Yea, that's true. But the average consumer gets sick far more often from mistakes in the kitchen than mistakes in the grocery store.

replies(1): >>41910545 #
1. gjsman-1000 ◴[22 Oct 24 02:17 UTC] No.41910545[source]
The person in question on HN was planning to self-host email. Sure, if you don’t want Google or Microsoft in particular reading it, I get it. But if you think nobody can read it now, that’s a major (potentially life threatening) mistake. Gmail might actually be safer in many circumstances.
replies(1): >>41910790 #
2. aspenmayer ◴[22 Oct 24 02:59 UTC] No.41910790[source]
If you don’t want Google or Microsoft reading your email, Proton would be better still than Gmail, wouldn’t it?
replies(1): >>41911224 #
3. panarky ◴[22 Oct 24 04:32 UTC] No.41911224[source]
If any of your recipients are using Google or Microsoft then they already have your email whether you use Proton or not.