Security For Linux.
Most Linux users live a bit in a fantasy world, where they believe that Linux isn't vulnerable, only Windows is vulnerable and that's not quite true.
This statement is backed up by statistics.
Linux is both faster and yes, "safer" by default, yet it still exists rootkits, malware and ransomware for Linux.
It's a smart move to always keep your system updated, have a well-configured firewall and an antivirus programs installed, since your computer will most definitive communicate with Windows computers, you don't want to be spreading viruses around.
Below you will find different security solutions as in finding out how to better secure your Linux Debian 11 or LMDE5 system.
Some of the listed solutions, will also work on Ubuntu, Linux Mint and other distributions.
Tiger is a security tool that can be use both as a security audit and intrusion detection system. It supports multiple UNIX platforms and it is free and provided under a GPL license. Unlike other tools, Tiger needs only of POSIX tools and is written entirely in shell language.
Unlike Tiger few of the tools available focus on the complete host-side of intrusion detection.
Spectre & Meltdown Checker is a shell script for checking if your Linux installation is still vulnerable against the 3 “speculative execution” CVEs that were made public early 2018.
Right click and "Save link as".
Snort is the foremost Open Source Intrusion Prevention System (IPS) in the world. Snort IPS uses a series of rules that help define malicious network activity and uses those rules to find packets that match against them and generates alerts for users.
Lynis is a security review tool for UNIX derivatives like Linux, MacOS, BSD, Solaris, AIX and others. It performs a deep security scan of your system, reminds you of the weaknesses you need to fix and give you tips and recommendations.
The program is free to use and released under GPL V3.0.
Lynis is available in Debian 11 Stable repository.
Version in repository: 3.0.2
Latest version: 3.0.9
The script will automate many Local Linux Enumeration & Privilege Escalation checks.
This is a basic shell script that performs several checks, getting anything from kernel information to locating possible escalation points such as potentially useful SUID/GUID files and Sudo / rhost mis-configurations, like for example in LMDE5 my USER has full root access by default.
Ext4 is now used by default in most Linux distributions. No secure erase programs operating at file system level can clean files on these file systems, as sensitive data and metadata can be written to the Journal file system.
Disable journal entry on ext4 file system partition is recommended.
tune2fs allows system administrator to adjust different file system parameters on Linux ext2, ext3 or ext4 file system.
Grype is a vulnerability scanner for container images and filesystems.
As a Linux user, you probably believe your Linux system is 100% secure, let me correct you right here, it is not!
Ask Microsoft...
The cheapest all-in-one solution. No-logs, good speeds and a lot of protection. Offer valid until January 2nd, 2024.
Offer valid from November 29th, 2023 to January 9th, 2024..
Protect all your passwords with a no-hacked solution for a very reasonable price. Save on 2-year plans. Get the Premium NordPass plan with 56% off for $1.29/month and the Family plan with 58% off for $2.49/month. Get 3 extra months with 1 and 2 year plans. Offer valid between: Nov 29, 2023 - Jan 9, 2024.
OFFER Expired: New coming soon....
