Web lists-archives.com

Re: Securing development environment




On Sat, 19 May 2018 12:03:37 +0200
Hubert Hauser <hubot@xxxxxxxx> wrote:

> Hello!
> 
> On 19/05/18 07:29, Chris wrote:
> > Make those services listen to localhost and do port forwarding in
> > your SSH client.  
> 
> It might be a good idea but I am not sure whether fail2ban with nginx
> basic_auth mechanism is a simplier solution. You have not replied me
> is it. Should I worry about maximum length of passwords (8
> characters)?
> 

You might consider using a client-side authentication certificate. Here
are some hints:
https://fardog.io/blog/2017/12/30/client-side-certificate-authentication-with-nginx/

-- 
Joe