[DiscordArchive] Hello I'd like to hear some opinions regarding security and running a server. How safe do you think
[DiscordArchive] Hello I'd like to hear some opinions regarding security and running a server. How safe do you think
Original source
Hello I'd like to hear some opinions regarding security and running a server. How safe do you think it is to keep ports open and allow any IP address to connect to them. I was being paranoid when I configured my server on my old linux computer so I used Uncomplicated Firewall to set it up in such a way that it only allows connections to the server from people that I have received IP and added it to the allowed connections list in UFW. It has given me a piece of mind, but being rather traveling type I might not be at my home for a week. This causes issues for my friends since they have Dynamic IPs of course. So they'll lose access to the server when their IP changes and I am not at home to change it.
I'd need some opinions regarding this matter. Do you just run the server open without this sort of firewall setup?
rektbyfaith
03-29-2023, 02:42 PM #1Archived author: Scortas • Posted: 2023-03-29T14:42:33.034000+00:00
Original source
Hello I'd like to hear some opinions regarding security and running a server. How safe do you think it is to keep ports open and allow any IP address to connect to them. I was being paranoid when I configured my server on my old linux computer so I used Uncomplicated Firewall to set it up in such a way that it only allows connections to the server from people that I have received IP and added it to the allowed connections list in UFW. It has given me a piece of mind, but being rather traveling type I might not be at my home for a week. This causes issues for my friends since they have Dynamic IPs of course. So they'll lose access to the server when their IP changes and I am not at home to change it.
I'd need some opinions regarding this matter. Do you just run the server open without this sort of firewall setup?
Original source
most servers on the internet have a few ports open and allow any IP address to connect to them
rektbyfaith
03-29-2023, 02:43 PM #2Archived author: mynameismeat • Posted: 2023-03-29T14:43:55.066000+00:00
Original source
most servers on the internet have a few ports open and allow any IP address to connect to them
Original source
Keep the DB port behind the firewall, but for the worldserver/authserver it's not that big of a deal to have the port open
rektbyfaith
03-29-2023, 02:44 PM #3Archived author: mynameismeat • Posted: 2023-03-29T14:44:43.083000+00:00
Original source
Keep the DB port behind the firewall, but for the worldserver/authserver it's not that big of a deal to have the port open
Original source
It's mostly safe to keep the authserver and worldserver ports open for all IP addresses, you'll sometimes get a TCP connection from random port scanners but that's pretty much it
rektbyfaith
03-29-2023, 02:45 PM #4Archived author: Roboto • Posted: 2023-03-29T14:45:25.132000+00:00
Original source
It's mostly safe to keep the authserver and worldserver ports open for all IP addresses, you'll sometimes get a TCP connection from random port scanners but that's pretty much it
Original source
you're going to be best off taking backups of the database, so in the incredibly unlikely event that something happens, you can just restore the backup and go on with your day
rektbyfaith
03-29-2023, 02:45 PM #5Archived author: mynameismeat • Posted: 2023-03-29T14:45:51.765000+00:00
Original source
you're going to be best off taking backups of the database, so in the incredibly unlikely event that something happens, you can just restore the backup and go on with your day
Original source
Is it a problem that the computer also has old windows installation with personal stuff with it?
rektbyfaith
03-29-2023, 02:47 PM #6Archived author: Scortas • Posted: 2023-03-29T14:47:10.063000+00:00
Original source
Is it a problem that the computer also has old windows installation with personal stuff with it?
Original source
Yeah I got creeped out once by a port scanner the first time I setup a server
rektbyfaith
03-29-2023, 02:48 PM #7Archived author: Scortas • Posted: 2023-03-29T14:48:14.754000+00:00
Original source
Yeah I got creeped out once by a port scanner the first time I setup a server
Original source
personally i would advice that if u never setup a server and u dont want to be hacked or ddos attacked or turned into botnet u probably shouldnt do it urself in server which will be connected to internet
rektbyfaith
03-29-2023, 02:48 PM #8Archived author: Rymercyble • Posted: 2023-03-29T14:48:45.739000+00:00
Original source
personally i would advice that if u never setup a server and u dont want to be hacked or ddos attacked or turned into botnet u probably shouldnt do it urself in server which will be connected to internet
Original source
and if there are personal data on that pc i mean cmon u cant ask that seriously
rektbyfaith
03-29-2023, 02:49 PM #9Archived author: Rymercyble • Posted: 2023-03-29T14:49:14.120000+00:00
Original source
and if there are personal data on that pc i mean cmon u cant ask that seriously
Original source
If it's your personal computer, you're probably better off using something like tailscale to keep it behind a private network instead of opening it to the internet. That's just because its a personal machine, though.
realistically though, if it's just the authserver and worldserver ports you're probably going to be fine.
rektbyfaith
03-29-2023, 02:49 PM #10Archived author: mynameismeat • Posted: 2023-03-29T14:49:17.492000+00:00
Original source
If it's your personal computer, you're probably better off using something like tailscale to keep it behind a private network instead of opening it to the internet. That's just because its a personal machine, though.
realistically though, if it's just the authserver and worldserver ports you're probably going to be fine.
1 Guest(s)
1 Guest(s)