If I configure my cable modem' built-in router to forward port 80 or port 443 to my upcoming Raspbian host, what else do I need to do to un the router's settings and in the Raspbian settings to keep this host secure from the outside world?
I'm planning on setting up a Raspberry Pi running Raspbian at my home with an easy to set up web server (e.g. Apache or Nginx) for serving static files (e.g. documents) outside my home network, basically providing an easy way for someone (me) to go to the dynamic DNS web site and download the documents from a public, untrusted computer running any arbitrary software, keylogger, and who knows what.
For this reason, I do not want to serve the files from anything such as Dropbox or Google that requires me to log-into anything substantial.
Also for this reason, I would prefer to keep the Raspbian host on my "external" home network available through my cable modem's built-in router on the 192.168.1.x network rather than on my "internal" network with trusted devices behind a second 192.168.0.x router that is behind the cable modem.
