Debian · Ubuntu Server · VPS-safe

Debian server configuration.
Done securely.

Profile-based automation with VPS-safe security hardening, network protection, and package management. Built for production servers.

Download script Read the docs
~/debian-server-post-install
$ sudo ./debian-server-post-install.sh --server-profile prod --hardening server
Debian Server Post-Install v1.0.0 — Production profile with server hardening
Step 1 — System update completed.
Step 2 — Essential packages installed (default profile).
Step 3 — Network hardening applied (9/9 components).
Step 4 — SSH already configured. Skipping.
Step 8 — Firewall configured with production ruleset.
$
5
Server profiles
10
Apps-profiles
9
Network hardening
VPS
Safe by default
Why this script

Server automation.
Security first.

Built for system administrators who value security, reliability, and automation. Every hardening option is VPS-safe by default.

VPS-safe hardening

Security defaults prevent remote lockout. Root SSH enabled, password authentication allowed by default for emergency access.

⚙️

Profile-based configuration

5 server profiles with 10 inheritance-based app profiles for targeted package management.

🔒

Modular network security

9 network hardening components. Enable exactly what you need with individual flags.

Quick start

Deploy in one command.

Download the script, review it, run it with your preferred profile. No installer, no packages, no complex setup required.

# Download and make executable
curl -O https://raw.githubusercontent.com/franckferman/debian-server-post-install/main/debian-server-post-install.sh
chmod +x debian-server-post-install.sh

# Review (important!)
less debian-server-post-install.sh

# Basic installation (VPS-safe, no Docker)
./debian-server-post-install.sh

# Production with Docker
./debian-server-post-install.sh --server-profile prod

# Development stack
./debian-server-post-install.sh --server-profile dev

# Default + Docker installation
./debian-server-post-install.sh --install-docker
./debian-server-post-install.sh --docker-type ce

# For root users
./debian-server-post-install.sh --allow-root