Re: Securing development environment

2018-05-19 Thread Gene Heskett
On Saturday 19 May 2018 11:29:25 Andy Smith wrote: > Hello, > > On Sat, May 19, 2018 at 12:03:37PM +0200, Hubert Hauser wrote: > > On 19/05/18 07:29, Chris wrote: > > > Make those services listen to localhost and do port forwarding in > > > your SSH client. > > > > It might be a good idea but I

Re: Securing development environment

2018-05-19 Thread Andy Smith
Hello, On Sat, May 19, 2018 at 12:03:37PM +0200, Hubert Hauser wrote: > On 19/05/18 07:29, Chris wrote: > > Make those services listen to localhost and do port forwarding in your > > SSH client. > > It might be a good idea but I am not sure whether fail2ban with nginx > basic_auth mechanism is a

Re: Securing development environment

2018-05-19 Thread Andy Smith
Hello, On Sat, May 19, 2018 at 07:29:28AM +0200, Chris wrote: > Make those services listen to localhost and do port forwarding in your > SSH client. This would be my suggestions also. Have sshd as the only public service, and require login by public key. It's basically a VPN but a little bit

Re: Securing development environment

2018-05-19 Thread Joe
On Sat, 19 May 2018 12:03:37 +0200 Hubert Hauser wrote: > Hello! > > On 19/05/18 07:29, Chris wrote: > > Make those services listen to localhost and do port forwarding in > > your SSH client. > > It might be a good idea but I am not sure whether fail2ban with nginx >

Re: Securing development environment

2018-05-19 Thread Hubert Hauser
Hello! On 19/05/18 07:29, Chris wrote: > Make those services listen to localhost and do port forwarding in your > SSH client. It might be a good idea but I am not sure whether fail2ban with nginx basic_auth mechanism is a simplier solution. You have not replied me is it. Should I worry about

Re: Securing development environment

2018-05-18 Thread Chris
On Fri, 18 May 2018 23:43:45 +0200 Hubert Hauser wrote: > Which option is best solution? I am considering use VPN but I am not > sure is too complicated and that problem can be solved simpler by > nginx basic_auth mechanism and fail2ban. What are your > recommendations? Make those services

Securing development environment

2018-05-18 Thread Hubert Hauser
Hello everybody! I have been renting a VPS with installed Debian Stretch. I want to host a my personal website that includes basic functionality as blog, chat, portfolio etc. Entire website will be written using Django framework and Python 3.x, HTML5, CSS3, JS programming languages. These parts