Hacker News new | ask | show | jobs
Is My SaaS Secure?
3 points by campervans 824 days ago
So there's a lot on security out there. But running a SaaS, is there a particular vector at risk?

I currently regularly upgrade packages, and servers, run a firewall (UFW), have SSH only server access, and shortly adding Snort as an IPS and run code analysis on each PR.

But rank order where's the risk and where should the focus be?
2 comments
vmoore 823 days ago
Set SSH to use a different port if you're paranoid[0]

[0] https://linuxiac.com/ssh-to-port-other-than-22/

link
cranberryturkey 824 days ago
i would also install fail2ban, had i known about this back in 2017 my 33 btc wouldn't have been stolen.
link
campervans 824 days ago
man that's a hit!

Lesson learnt, adding fail2ban

link
cranberryturkey 823 days ago
yup. i only invested around 20k over the years, then just hodled to 2.2m
link
campervans 823 days ago
All's well that ends well :)
link