Your IP-address is: this Saturday 09, Dec 2023, 22:54:22

Security For Linux.

Most Linux users live a bit in a fantasy world, where they believe that Linux isn't vulnerable, only Windows is vulnerable and that's not quite true.

This statement is backed up by statistics.

Linux is both faster and yes, "safer" by default, yet it still exists rootkits, malware and ransomware for Linux.

It's a smart move to always keep your system updated, have a well-configured firewall and an antivirus programs installed, since your computer will most definitive communicate with Windows computers, you don't want to be spreading viruses around.

Below you will find different security solutions as in finding out how to better secure your Linux Debian 11 or LMDE5 system.

Some of the listed solutions, will also work on Ubuntu, Linux Mint and other distributions.

Tiger - Security, Audit And Intrusion Detection Tool

Tiger - Security, Audit And Intrusion Detection Tool.

Tiger is a security tool that can be use both as a security audit and intrusion detection system. It supports multiple UNIX platforms and it is free and provided under a GPL license. Unlike other tools, Tiger needs only of POSIX tools and is written entirely in shell language.

Unlike Tiger few of the tools available focus on the complete host-side of intrusion detection.

Snort IDS System For Linux

Snort IDS System For Linux.

Snort is the foremost Open Source Intrusion Prevention System (IPS) in the world. Snort IPS uses a series of rules that help define malicious network activity and uses those rules to find packets that match against them and generates alerts for users.

Lynis Security Review Tool For Linux

Lynis Security Review Tool For Linux.

Lynis is a security review tool for UNIX derivatives like Linux, MacOS, BSD, Solaris, AIX and others. It performs a deep security scan of your system, reminds you of the weaknesses you need to fix and give you tips and recommendations.

The program is free to use and released under GPL V3.0.

Lynis is available in Debian 11 Stable repository.

Version in repository: 3.0.2

Latest version: 3.0.9

LinEnum – Linux Enumeration And Privilege Escalation Tool

LinEnum – Linux Enumeration And Privilege Escalation Tool.

The script will automate many Local Linux Enumeration & Privilege Escalation checks.

This is a basic shell script that performs several checks, getting anything from kernel information to locating possible escalation points such as potentially useful SUID/GUID files and Sudo / rhost mis-configurations, like for example in LMDE5 my USER has full root access by default.

Journal File System Such As Ext4

Journal File System Such As Ext4.

Ext4 is now used by default in most Linux distributions. No secure erase programs operating at file system level can clean files on these file systems, as sensitive data and metadata can be written to the Journal file system.

Disable journal entry on ext4 file system partition is recommended.

tune2fs allows system administrator to adjust different file system parameters on Linux ext2, ext3 or ext4 file system.

Grype - Vulnerability Scanner

Grype - Vulnerability Scanner.

Grype  is a vulnerability scanner for container images and filesystems.

As a Linux user, you probably believe your Linux system is 100% secure, let me correct you right here, it is not!

Why is there not a tool like this for Windows?

Ask Microsoft...