Difference between revisions of "Securing OpenEMR - Linux"

From OpenEMR Project Wiki
Line 8: Line 8:


* Set Up UFW to Allow 22, 80, & 443 and limit Brute Force attacks:
* Set Up UFW to Allow 22, 80, & 443 and limit Brute Force attacks:
*   Allow 80 and 443
** Allow 80 and 443
sudo ufw allow ‘Apache Full’
** sudo ufw allow ‘Apache Full’
Allow SSH
* Allow SSH
sudo ufw allow ssh
** sudo ufw allow ssh
Prevent SSH Bruteforce Attachs
* Prevent SSH Bruteforce Attachs
sudo ufw limit ssh
** sudo ufw limit ssh




Revision as of 19:07, 9 September 2018

[under review]


Change page name to "Linux Security"


1 Enable UFW

  • Set Up UFW to Allow 22, 80, & 443 and limit Brute Force attacks:
    • Allow 80 and 443
    • sudo ufw allow ‘Apache Full’
  • Allow SSH
    • sudo ufw allow ssh
  • Prevent SSH Bruteforce Attachs
    • sudo ufw limit ssh


  1. 2 Enable ClamAV?
  1. 3 Enable Secure NTP?
  1. 4 Enable CSF?
  1. 5 Passwords for root and regular user?
  1. 6 Probably need a section on SSH keys for all those who don't use a cloud provider where keys are default
Retrieved from "https://www.open-emr.org/wiki/index.php?title=Securing_OpenEMR_-_Linux&oldid=27886"