The commands below might vary from OS to OS. However, I will show them for Ubuntu Server.
1.Set up a Redis Server password:
First thing you want to do is to open the redis.conf in /etc/redis.
Search for this line:
# requirepass foobared
And uncomment it, just like replace the password with yours, e.g.:
Now simply enter:
service redis restart
Lastly you want to edit the config.json file in your nodeBB installation directory, where you insert it as well. Restart nodeBB to be sure the changes have been fully applied.
Next we want to disable the direct root login.
You may ask why. Imagine this scenario:
Someone manages to access your server. But not only with basic permissions. Now he can do whatever he likes...
So we do not want that.
First step is to create a user by using:
Set a password you like.
Now open /etc/ssh/sshd_config and check for a line like this:
Change it to something random and unused on your server. This sort of "custom" number is also a little extra to add slight security. Be sure to connect to your chosen port then, instead of 22 as before.
Afterwards go to
and uncomment it.
Now restart SSH, by using
service sshd restart
To login in as root again, either use sudo su and entering your users password or su -.
I only showed you what is possible without extra software, if you want to have a look at Fail2Ban & ClamAV.