I just setup a minecraft server on an old laptop, but to make it acessible i needed to open up a port. Currently, these are the ufw rules i have. when my friends want to connect, i will have them find their public ip and ill whilelist only them. is this secure enough? thanks

`Status: active

To Action From


22/tcp ALLOW Anywhere Anywhere ALLOW my.pcs.local.ip`

also, minecraft is installed under a separate user, without root privlege

  • 2xsaiko
    link
    fedilink
    English
    arrow-up
    17
    ·
    2 months ago

    Don’t use passwords for public SSH in the first place. Disable password authentication and use pubkeys.

    • catloaf@lemm.ee
      link
      fedilink
      English
      arrow-up
      10
      arrow-down
      1
      ·
      2 months ago

      And disable ssh to root. Hell, just disable root login altogether and use sudo.