Riseup also has a comprehensive guide on setting up a secure hidden service: <a href="https://help.riseup.net/en/security/network-security/tor/onionservices-best-practices" rel="nofollow">https://help.riseup.net/en/security/network-security/tor/oni...</a>