Fedora provides many modern security features by default, but it’s still a good idea to apply a few quick protections after deployment. These steps are safe for new users and don’t require advanced knowledge.
Disclaimer:
These are general suggestions to help improve the security of your VPS. Enviroweb provides unmanaged VPS hosting and does not configure, manage, or audit the security of your server. You are responsible for securing and maintaining your system.
1. Keep the system updated
sudo dnf upgrade --refresh -y
This installs the latest packages and security patches from Fedora’s repositories.
2. Enable the firewall
sudo systemctl enable firewalld --now
sudo firewall-cmd --permanent --add-service=ssh
sudo firewall-cmd --reload
This enables the firewall and allows SSH access to avoid being locked out.
3. Install fail2ban (optional)
sudo dnf install fail2ban -y
sudo systemctl enable fail2ban --now
Fail2ban helps protect your VPS by banning IPs that fail login repeatedly.
4. Set a strong password
passwd
Update your default user's password to something secure and unique.
These steps provide a basic layer of protection without altering critical system settings. You can expand on them as your server setup grows based on your needs and use case.
For more Fedora security guidance, see the official Fedora Security and Hardening documentation:
https://docs.fedoraproject.org/en-US/bootc/security-and-hardening/