I’m not great with Docker or networking, so when I picked up an n100 mini pc for self hosting I installed Ubuntu and Tipi to get started.

I used Tipi to install Immich and forwarded my ports, then setup cloudflare tunneling to expose it to the internet. Currently I’m migrating from Google Photos.

But since I’m new to this I’m worried about exposing Immich to the internet without really knowing what I’m doing. Any suggestions on ways to monitor my setup to make sure nothing goes wrong or gets hacked? Ideally any application suggestions would come from the Tipi app store but I’m willing to learn if there’s no other option. Thanks!

  • /bin/bash/
    link
    fedilink
    English
    1010 months ago

    trough ssh when you connect to your machine run :

    lastb -10

    This will show you the last 10 login failed attemps you can change to 20 or whatever

    you can also run: last -10 to see the last successful logged in

    use :

    more history

    to see all the commands that someone have typed

    on the dir /var/logs you have a lot of another logs too

    for more paranoid level use

    netstat -a

    This will show you all incoming and outgoing communications

    and like the others said considere using firewall and fail2ban

    Note: don’t relly to much on firewalls since they are easy to bypass

    keep all softwares updated

    read frequently about new vulnerabilities if there is some vulnerability that affects your software until gets patched turn of that service.