ShadowPWN Posted October 1, 2019 I'm working on a Hidden Service for my e-store (a legal one) since I don't want to pay for a lot of the DNS bullshit from my ISP. Can you guys give me some good tips on how to harden it? Software Specs: Ubuntu 18.04 Apache2 Webserver MySQL PHPmyAdmin P.S. Some tips on a good firewall setup would be good as well :) Quote Share this post Link to post Share on other sites
ShadowPWN Posted October 1, 2019 Also I'm kind of inexperienced in web development, so please forgive me for sounding stupid lol. I'm working on me CEH Certification rn. Quote Share this post Link to post Share on other sites
digininja Posted October 1, 2019 Why would you need to pay for DNS? For locking things down, Google hardening Apache, there are loads of guides out there. Don't expose any services except the web server. Don't expose phpmyadmin. The vulnerabilities are more likely to be in your web app than anything else. 1 Quote Share this post Link to post Share on other sites
Uspeh Posted October 7, 2019 My knowledge is not yet enough to implement such projects. Quote Share this post Link to post Share on other sites
aethernaut Posted October 8, 2019 20 hours ago, Uspeh said: My knowledge is not yet enough to implement such projects. Then don't do it until your knowledge IS enough. 1 Quote Share this post Link to post Share on other sites
digininja Posted October 8, 2019 I was going to say exactly the same thing. Quote Share this post Link to post Share on other sites
