Last active
July 6, 2024 12:31
-
-
Save AnnoyingTechnology/34a415f6931aca97cc2c38dd144c6f66 to your computer and use it in GitHub Desktop.
Install debian basic security utilities. You still need to configure some of those, and a lot of other things have to be manually tweaked across a system to keep it secure.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| apt update | |
| apt install \ | |
| # rootkit scanner | |
| rkhunter \ | |
| # another rootkit scanner | |
| chkrootkit \ | |
| # checksums of system files for sanity checks | |
| debsums \ | |
| # check for bugs before updates | |
| apt-listbugs \ | |
| # open ports on demand | |
| knockd \ | |
| # ban bruforce attacks | |
| fail2ban \ | |
| # detect and block portscans | |
| portsentry \ | |
| # checks if system needs a restart after updates | |
| needrestart \ | |
| # applies reliable security upgrades on its own | |
| unattended-upgrades \ | |
| # audits a system for best security practices | |
| lynis \ | |
Author
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Ideas :