Setting up a personal site on local hardware has been on my bucket list for along time. I finally bit he bullet and got a basic website running with apache on a Ubuntu based linux distro. I bought a domain name, linked it up to my l ip got SSL via lets encrypt for https and added some header rules until security headers and Mozilla observatory gave it a perfect score.
Am I basically in the clear? What more do I need to do to protect my site and local network? I’m so scared of hackers and shit I do not want to be an easy target.
I would like to make a page about the hardware its running on since I intend to have it be entirely ran off solar power like solar.lowtechmagazine and wanted to share technical specifics. But I heard somewhere that revealing the internal state of your server is a bad idea since it can make exploits easier to find. Am I being stupid for wanting to share details like computer model and software running it?
I’m an absolute rookie here who listens to absolute pros and try to understand stuff. Here’s what Ive got: You don’t want to do this from your home network. Ideally you have a VPS running some entry level (unsure but my guess is you filter humans from bots )stuff then tunnel back things from there to your home network. You can use other solutions to do this (i think) like clouflared with a d. Also having a static ip as a consumer is rare afaik so unless you did specifically requested your ISP your ip might change the worst possible time (this im talking from experience lol) Oh and ofc the modern problems like the ai scrapers who’ll do 300 parse a sec if there’s any info for them to feed on. That’s all the scary stuff I could muster from memory and exp. I hope it helps and I’m not sure about any of this but I believe these are topics you could look up and educate yourself also feel free to correct me anywhere here