Cloudron makes it easy to run web apps like WordPress, Nextcloud, GitLab on your server. Find out more or install now.


Skip to content
  • Categories
  • Recent
  • Tags
  • Popular
  • Bookmarks
  • Search
Skins
  • Light
  • Cerulean
  • Cosmo
  • Flatly
  • Journal
  • Litera
  • Lumen
  • Lux
  • Materia
  • Minty
  • Morph
  • Pulse
  • Sandstone
  • Simplex
  • Sketchy
  • Spacelab
  • United
  • Yeti
  • Zephyr
  • Dark
  • Cyborg
  • Darkly
  • Quartz
  • Slate
  • Solar
  • Superhero
  • Vapor

  • Default (No Skin)
  • No Skin
Collapse
Brand Logo

Cloudron Forum

Apps | Demo | Docs | Install
  1. Cloudron Forum
  2. Feature Requests
  3. Way to boost Security

Way to boost Security

Scheduled Pinned Locked Moved Feature Requests
4 Posts 3 Posters 714 Views 3 Watching
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • R Offline
      R Offline
      roofboard
      wrote on last edited by
      #1

      Looking for a way to make Cloudron more secure. Rather - have more auditable security. Last year I spent time trying to get bitninja.io to play nice with Cloudron but ultimately gave up because BN was crashing my services, and it was too risky to fiddle around... Actually I was unable to remove it and had to migrate to a whole new server to restore normal functionality.

      Has anyone had luck getting Cloudron to play nice with an active treat detection program? How did you set it up, which ones did you use?

      The security ven diagram.

      Cloudron.
      Easy to install, and kind of builds a nice wall. If you don't have the password you cannot get in.

      BitNinja or Other Sec Software
      Actively scans your system looking for signs of an attack, suspicious traffic, and logins from strange destinations and strange queries.

      REQUESTED FEATURE

      Low Level Plugin Support for Bit Ninja or other active threat management software.
      Note - this could be a revinue source for cloudron as you will get a referral fee any time some creates a paid account on an external service like this.

      girishG 1 Reply Last reply
      2
      • R roofboard

        Looking for a way to make Cloudron more secure. Rather - have more auditable security. Last year I spent time trying to get bitninja.io to play nice with Cloudron but ultimately gave up because BN was crashing my services, and it was too risky to fiddle around... Actually I was unable to remove it and had to migrate to a whole new server to restore normal functionality.

        Has anyone had luck getting Cloudron to play nice with an active treat detection program? How did you set it up, which ones did you use?

        The security ven diagram.

        Cloudron.
        Easy to install, and kind of builds a nice wall. If you don't have the password you cannot get in.

        BitNinja or Other Sec Software
        Actively scans your system looking for signs of an attack, suspicious traffic, and logins from strange destinations and strange queries.

        REQUESTED FEATURE

        Low Level Plugin Support for Bit Ninja or other active threat management software.
        Note - this could be a revinue source for cloudron as you will get a referral fee any time some creates a paid account on an external service like this.

        girishG Offline
        girishG Offline
        girish
        Staff
        wrote on last edited by
        #2

        @roofboard said in Way to boost Security:

        Low Level Plugin Support for Bit Ninja or other active threat management software.

        I don't have experience with BitNinja but what are the popular alternatives in this space?

        1 Reply Last reply
        1
        • necrevistonnezrN Offline
          necrevistonnezrN Offline
          necrevistonnezr
          wrote on last edited by
          #3

          Wasn‘t Crowdsec almost ready for Cloudron but somehow got forgotten?!

          1 Reply Last reply
          5
          • R Offline
            R Offline
            roofboard
            wrote on last edited by
            #4

            Something like Crowdsec is surely a step in the right direction. Unfortunately I do not know enough about security to write the guide on configuring these solutions. However - I know enough to know that it is desperately needed. Especially for SMB and Enterprise applications.

            In general - Wouldn't it be nice to have a control center where you can know who is accessing your server, what they are doing, and if anything suspicious is going on?

            1 Reply Last reply
            1
            Reply
            • Reply as topic
            Log in to reply
            • Oldest to Newest
            • Newest to Oldest
            • Most Votes


              • Login

              • Don't have an account? Register

              • Login or register to search.
              • First post
                Last post
              0
              • Categories
              • Recent
              • Tags
              • Popular
              • Bookmarks
              • Search