Custom Jails for Fail2ban
MAC (Mandatory Access Control) and Linux Security Modules (LSMs)
https://wiki.archlinux.org/index.php/security#Mandatory_access_control
Security-Enhanced Linux / SELinux
https://en.wikipedia.org/wiki/Security-Enhanced_Linux
https://linuxtechlab.com/beginners-guide-to-selinux/
https://linuxtechlab.com/replicate-selinux-policies-among-linux-machines/
https://teamignition.us/how-to-stop-being-a-scrub-and-learn-to-use-selinux.html
AppArmor
https://wiki.archlinux.org/index.php/AppArmor
https://security.stackexchange.com/questions/29378/comparison-between-apparmor-and-selinux
http://www.insanitybit.com/2012/06/01/why-i-like-apparmor-more-than-selinux-5/
disk encryption
Rkhunter and chrootkit
http://www.chkrootkit.org/
http://rkhunter.sourceforge.net/
https://www.cyberciti.biz/faq/howto-check-linux-rootkist-with-detectors-software/
https://www.tecmint.com/install-rootkit-hunter-scan-for-rootkits-backdoors-in-linux/
shipping/backing up logs - https://news.ycombinator.com/item?id=19178681
CIS-CAT - https://learn.cisecurity.org/cis-cat-landing-page
debsums - https://blog.sleeplessbeastie.eu/2015/03/02/how-to-verify-installed-packages/
Last updated 8 days ago
Was this helpful?
