Welcome to the Inedo Forums! Check out the Forums Guide for help getting started.
If you are experiencing any issues with the forum software, please visit the Contact Form on our website and let us know!
Server hardening for open internet use
-
For business reasons, we require our ProGet installation to be open over the public internet, but we intend this to hold proprietary packages not meant for public consumption.
Is there a checklist for hardening the ProGet installation in such a manner? Is this recommended against? I would expect things like disabling anonymous authentication, requiring SSL, enabling policies to enforce max password attempts, and so forth to be included in such a checklist.
Product: ProGet
Version: 3.1.2 -
Sounds like you basically just made that check list :)
There is no "max password attempts" option as the built-in invalid credentials delay mechanism is sufficient to protect against brute-force/guess attacks.
Otherwise, SSL and no anonymous is sufficient.
Hello! It looks like you're interested in this conversation, but you don't have an account yet.
Getting fed up of having to scroll through the same posts each visit? When you register for an account, you'll always come back to exactly where you were before, and choose to be notified of new replies (either via email, or push notification). You'll also be able to save bookmarks and upvote posts to show your appreciation to other community members.
With your input, this post could be even better 💗
Register Login