MMDVMHost Security Guideline
Welcome to the MMDVMHost Security Guideline. At this WIKI-Pages you are learning how to set up your MMDVM-Repeater in a secure way.
As we are still living in a parted world of computer systems this subject would be divided into the two main environments, MMDVMHost-systems would be running on:
An additional part to get security on is the dashboard of the MMDVMHost developed by DG9VH, wich is also available via github at https://github.com/dg9vh/MMDVMHost-Dashboard. The steps to get more security in this point are listed in a separate page: Securing the Dashboard
It is recommended to keep following principle of network security in mind:
Provide as much services as needed but with the less access rights as possible. This means: From the place of view of a user from world wide web, your repeater should only be reachable on the ports necessary for correct function but not for more!
If you need access to remote desktops or somewhat else, think it over and try to provide them within a VPN (for example an openvpn-connection) or through an SSH-tunnel.