Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

I've got two droplets now, one for email/owncloud and another for personal projects with automated backups. It's pretty easy to use, but I worry I don't have the sysadmin chops to keep it secure.

Edit: I followed tutorials on auto-updating packages through cron, securing ssh, and setting up ufw for only services needed when I set it up. It's been about 2 years now so maybe I shouldn't worry.



This page is a good starting point https://www.digitalocean.com/community/tutorials/7-security-...


Would anybody be interested in esoteric hosting?

Think Linode, but specifically for FreeBSD/OpenBSD/Plan9/TempleOS/MinuetOS/etc.?


I want one where I can run Dragonfly. I'm using vultr at the moment but I had to do some manual stuff, I just want to choose Dragonfly like you choose ubuntu at digial ocean.


Digital Ocean supports FreeBSD ;)


and if you feel a bit daring http://www.tubsta.com/2015/04/openbsd-on-digital-ocean/


TempleOS has no networking :)


Which makes it that much cheaper to operate ;)


Presumably it has serial drivers though, yes?


Well, that's because an omniscient god is the lowest network layer!


I've been thinking about using DFlyBSD as a host platform for such things, given some of it's awesome networking/virtualization features.


It'd be great for a webhost or something where you choose the OS, but I don't think you could run FreeBSD or OpenBSD on top of it.


Honest question. How much would you pay to have something that manages the updates and setup for you and give you the sysadmin help when you need it?


That's what Rackspace does. I haven't used them in a while, but it looks like it's ALL they do now. (moved to DO, since it was half the cost and I /do/ have enough sysadmin chops to keep two linux servers patched).

http://www.rackspace.com/cloud/compare-service-levels


Rackspace doesn't actively maintain the servers by applying updates, etc. You can go to them if 3rd party software breaks on your servers and they will help you out, but I know for a fact that they don't actively update the servers, and that's a good thing considering you'd want to probably roll that into doing a release where you take that server out of rotation.


Yea but what if it was vendor agnostic? Rackspace has always been super expensive compared to the rest.


Judging by the general implosion of the PaaS industry, not enough to make it worthwhile.

It's a much more complex problem than most people think.


what makes you say the PaaS industry is imploding?


You should check out some of the documentation on Linode's site. They have some great tips about doing some very basic security such as securing SSH, keeping things updated, etc. Worth a peek.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: