A great example of a technical post on steemit. With referenced image below. These recommendations are close to best security practises and should be read by users running a witness.

So many linux servers ive seen these settings being left default with the best root passwords set.