firefrost-gaming/firefrost-operations-manual
3
0
Fork 0
Code Issues 146 Pull Requests Packages Projects Releases Wiki Activity
Files
52c3293f1f09bab300d03e59e577be97ffdd45bf
firefrost-operations-manual/docs/tasks/command-center-security
History
Claude 3542afbe28 feat: Add YAML frontmatter to all 57 task READMEs 
Phase 1 of task management consolidation (per Gemini consultation).

Added standardized frontmatter with:
- status: open | blocked | complete
- priority: P1 | P2 | P3 | P4
- owner: Michael | Meg | Holly
- created: YYYY-MM-DD

Final counts:
- 39 open tasks
- 17 complete tasks
- 1 blocked task

Metadata extracted from existing inline markdown and audit results.
Ready for Phase 2: 11ty mobile index generation.

Chronicler #69
2026-04-08 14:21:41 +00:00
..
deployment-guide.md
docs: Add Command Center security hardening deployment guide
2026-02-17 23:59:44 +00:00
README.md
feat: Add YAML frontmatter to all 57 task READMEs
2026-04-08 14:21:41 +00:00

README.md

status, priority, owner, created
status priority owner created
open P1 Michael 2026-01-01

Command Center Security Hardening

Status: Ready
Priority: Tier 1 - Security Foundation
Time: 1 hour
Last Updated: 2026-02-16

Overview

Defense-in-depth security hardening for Command Center VPS (Dallas hub). Install Fail2Ban, harden SSH, review firewall rules.

Current State

  • UFW enabled (default deny incoming)
  • Ports 22, 80, 443 open
  • Fail2Ban not installed
  • SSH allows password auth
  • No rate limiting on SSH

Tasks

  1. Install Fail2Ban (auto-ban brute force)
  2. SSH Hardening:
    • Disable password auth (key-only)
    • Optional: Change SSH port
    • Set MaxAuthTries=3
  3. Review UFW rules (close unnecessary ports)
  4. Document in deployment-plan.md
  5. Test SSH with keys before closing password auth

Success Criteria

  • Fail2Ban active and monitoring
  • SSH key-only authentication
  • Command Center locked down
  • Security config documented

Fire + Frost + Foundation 💙🔥❄️

Reference in New Issue View Git Blame Copy Permalink