As the title says, I want to know the most paranoid security measures you’ve implemented in your homelab. I can think of SDN solutions with firewalls covering every interface, ACLs, locked-down/hardened OSes etc but not much beyond that. I’m wondering how deep this paranoia can go (and maybe even go down my own route too!).

Thanks!

    • MigratingtoLemmy@lemmy.worldOP
      link
      fedilink
      English
      arrow-up
      16
      ·
      9 months ago

      It would be funny if that were the case. I was just hoping to be a little more paranoid from you lot and maybe improve on the things I’ve thought about

      • betterdeadthanreddit@lemmy.world
        link
        fedilink
        English
        arrow-up
        17
        ·
        9 months ago

        Yeah, just having a little fun in the role of a paranoid admin. My setup isn’t worth mentioning since it fits my threat model (i.e. nobody gives a shit about my network, just don’t be the low hanging fruit) but I’m interested in other replies. Hope you get some useful responses here.

    • hakunawazo@lemmy.world
      link
      fedilink
      English
      arrow-up
      10
      ·
      edit-2
      9 months ago

      No, honestly I’m not an attacker, but your local bank. We just need your help to update our systems. Please provide us the following credentials to continue using our phish- *ugh* services.

      Credit card number: _____________
      CVV: ___
      Expiration date: ______