mirror of
https://github.com/home-assistant/home-assistant.io.git
synced 2025-05-02 09:17:35 +00:00
a01d73b732
* Revise and update Automation * Helpers updates * Android updates * Fix link typo * Rectify wording * Update to macOS * Update securing text * Update updating * Update basic info * Further basic updates
1.7 KiB
1.7 KiB
| layout | title | description | date | sidebar | comments | sharing | footer |
|---|---|---|---|---|---|---|---|
| page | Securing | Instructions how to secure your Home Assistant installation. | 2016-10-06 06:00 | true | false | true | true |
One major advantage of Home Assistant is that it's not dependent on cloud services. Even if you're only using Home Assistant on a local network, you should take steps to secure your instance.
{% linkable_title Checklist %}
- Protect your web interface with a password
- Secure your host. Sources could be Red Hat Enterprise Linux 7 Security Guide, CIS Red Hat Enterprise Linux 7 Benchmark, or the Securing Debian Manual.
- Restrict network access to your devices. Set
PermitRootLogin noin your sshd config (usually/etc/ssh/sshd_config) and to use SSH keys for authentication instead of passwords. - Don't run Home Assistant as root – consider the Principle of Least Privilege.
- Keep your secrets safe.
If you want to allow remote access, consider these additional points:
- Protect your communication with TLS
- Protect your communication with Tor
- Protect your communication with a self-signed certificate
- Use a proxy