secure-vps-setup

This skill is an instructional guide for hardening a VPS and is internally consistent with its stated purpose. No deliberate malicious code or hidden backdoors are present in the text. Primary security concerns are operational: executing remote install scripts via curl | sh (runs code from external servers as root), potential information disclosure if a user configures an untrusted Discord webhook, and the danger of locking out administrative access when removing public SSH rules. Recommend: review remote install scripts before running, use vendor HTTPS URLs (as shown), only configure webhooks that you control/trust, and ensure provider console access before changing firewall rules.