Curious about what folks due to harden/secure their servers. Specifically I am NOT asking to be told what to do/how to do it.
More interested in hearing about different practices and approaches, e.g., firewall management - iptables/nftables vs something like Check Point, limiting installed packages to what is necessary, closing unused ports, access restrictions, etc.
Best would be vigorous debate and disagreement.