{"id":"2033546675063554213","url":"https://x.com/levelsio/status/2033546675063554213","text":"When I set up a new Hetzner VPS first thing I do install Tailscale and once I'm in via Tailscale lock down the firewall to only accept web traffic on HTTPS 443 for Cloudflare IPs and SSH 22 for Tailscale IP\n\nThat way nobody can get in\n\nI know I keep repeating this but it should be basics of setting up a new VPS\n\nSo basic IMHO it should be part of any VPS service to default install Tailscale and enable it so it's the only way to get in\n\nWhy?\n\nA VPS server is just like your laptop or destop computer but now imagine if it's connected to the entire internet with 8 billion people that can access it and try hack it\n\nYou want to only have it accessible to you\n\nAnd if you want to host a website on your VPS (like I do), you should only let Cloudflare access your VPS so it can stand in front and block any hack attempts\n\nNever expose a VPS to the world wide web which realistically is the world WILD web","author":{"name":"@levelsio","username":"levelsio","avatarUrl":"https://pbs.twimg.com/profile_images/1996831016720486400/vycHz0uG_200x200.jpg"},"createdAt":"Mon Mar 16 14:11:23 +0000 2026","engagement":{"replies":206,"retweets":209,"likes":4214,"views":817504},"quoteTweet":{"id":"2033544509477544201","url":"https://x.com/areeburrub/status/2033544509477544201","text":"@levelsio @nfcodes I created a redis instance on hetzner with public port open for few minutes and someone was running a cryptominer the next moment taking 50% CPU 💀\n\nAfter that I always use @Tailscale 👌","author":{"name":"Areeb ur Rub","username":"areeburrub","avatarUrl":"https://pbs.twimg.com/profile_images/1822979568224878592/Cnwbrplz_200x200.jpg"},"createdAt":"Mon Mar 16 14:02:47 +0000 2026"},"adhxContext":{"savedByCount":1,"publicTags":[],"previewUrl":"https://adhx.com/levelsio/status/2033546675063554213"}}