Fundamentals of DevOps and Software Delivery » FAQ

How do I harden my servers and secure my infrastructure?

Server and infrastructure hardening means reducing attack surface, enforcing least privilege, and continuously validating security posture. Effective hardening combines baseline controls, automation, and ongoing monitoring.

Practical guidance

Use hardened base images and keep OS and packages patched continuously.
Apply least-privilege access controls, network segmentation, and MFA.
Store secrets in dedicated secret managers, not in code or plain text files.
Continuously audit, monitor, and test controls through automation.

Relevant chapters from the book

Chapter 8: How to Secure Communication and Storage
Chapter 7: How to Set Up Networking
Chapter 10: How to Monitor Your Systems