![]() Let me address one of the underlying assumptions: You say "although I don't really have very sensitive data on it." You may have far more data at risk than you first think. Again remember the rule is to protect things in depth.Htpasswd will do nothing to protect your ssh connection, or other services you may expose (mysql). htpasswd protection in front of phpmyadmin and any sensitive web directories (like admin directories for wordpress and the like, Is it enough alone, no. BTW the second rule of security is that there is no perfectly secure system. Keep in mind the first rule of security is defense in depth (and that mac/ip addresses can be spoofed). If you are going to access this from outside your local network then I would add SSH tunneling or a VPN (in addition to the firewall), both of which may require configuring your router to forward the required ports. ![]() If you are only accessing the Pi from your local network and are behind a cable or DSL modem that does NAT a host based firewall may be enough (check out uncomplicated firewall - a simple interface for iptables). This page should get you started in the right direction - this is not a foolproof method of securing a box since the mac address can be spoofed. What you want to do is called mac address filtering.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |