Posts for: #sysadmin

Awesome Sysadmin Monthly Update September 2023

Here is this months roundup of the changes to the awesome-sysadmin repository. The repository describes itself as

A curated list of amazingly awesome Free and Open-Source sysadmin resources.

Here are the new additions for September 2023:

  • Ceph - Distributed object, block, and file storage platform. (Source Code) LGPL-3.0 C++
  • GitLab CI - Gitlab’s built-in, full-featured CI/CD solution. (Source Code) MIT Ruby
  • glances - Open-source, cross-platform real-time monitoring tool with CLI and web dashboard interfaces and many exporting options. (Source Code) GPL-3.0 Python

Secure Your Container and Other Deployments with Ubuntu Server Hardening

The New Stack has posted a guide on how to harden n Ubuntu server. Ubuntu is a popular choice for container deployments, but many admins and DevOps teams overlook the importance of securing the operating system itself. The article provides a guide to hardening Ubuntu to ensure a secure foundation for deployments. The steps include:

  1. Schedule regular upgrades to ensure the server is patched against the latest threats.

  2. Change sudo and SSH settings.

  3. Install and configure fail2ban to automatically ban IP addresses that attempt to compromise the server via SSH.

  4. Secure shared memory by mounting /run/shm with certain privileges.

  5. Enable and configure the Uncomplicated Firewall (UFW) and allow SSH connections.

By following these steps, admins and DevOps teams can significantly enhance the security of their Ubuntu Server deployments. Head over to The New Stack and read the guide!

Source: The New Stack.