What's the best security software for linux so nobody will hack my server
>>55028125
openBSD
>>55028125
linux itself. you just have to know how to use it
btw, is that really her? ffs, she was ugly as hell
>>55028125
Install Gentoo
You should have bought a Gibson. No one can hack a Gibson
No one wants to hack your server
OpenBSD
>>55028125
Disable SSH that's all I can really think of. What kind of server are we talking here?
>taking security advice from /g/
>laughing_girls.jpg
>>55028125
From talking with someone in the know, She ran Blackberry Enterprise Server 10 with regular security patches. Its actually a pretty secure system.
The only real difference between this and the secure systems are that secure systems have to have a safe room protected 24 hours a day. Clinton's house was surrounded by secret service 24 hours a day.
Honestly her server seems secure.
Properly configured aide.
>>55028125
NO REMOTE ACCESS
O
R
E
M
O
T
E
A
C
C
E
S
S
>>55028425
they do, but only if they can get in relatively easily and install a cryptolocker variant to try to part you with your shekels
>>55028125
Heya, Hills. How's it hanging?
>>55028125
>for linux
nothing
>>55028186
>btw, is that really her? ffs, she was ugly as hell
You're kidding, right? She's the definition of nerdy hot girl who's probably a serious freak in bed.
>>55032150
>wanting to fug shillary
Ew
>>55028125
Who is this demon?
>>55028581
This. Especially considering that nobody even mentioned a fucking firewall.
Everyone can go home now.
>>55028186
She still is.
>>55028125
SELinux
>>55032150
implying she was so good in bed that Bill didn't cheat on her.
>>55028125
Dang Hillary. Nerdy white girl was a seamen demon. Would wreck/10
>>55036019
I bet they were both freaks.
Bill just cheated because pussy is like pizza. You don't wanna eat the same pizza for the rest of your life.
>>55036052
well ya
>>55028125
All the security software in the world won't protect you from treason charges. Better start fellating Obama, Soros and others who can help James Comey commit suicide with four bullets in the back of his head. Not Billy Boy though: he knows better than to have sexual relations with you.
>>55028125
IpTables
>>55028125
The only things you need to secure any linux or unix server are TCP Wrappers, portmap and rpcbind.
ftp://ftp.porcupine.org/pub/security/index.html
>>55028137
this. selinux, grsec and pax are pretty good, but openbsd will remain the most secure. don't forget tripwire, remote syslog and a good nids.
>>55028186
Yep, feminazis always are.
>>55028223
Dade Murphy can, you just need to download the garbage file too.
>>55036019
I'd rather of had a fat kike intern than hillary too.
>He doesn't use ssh
iptables
Only ports open to everyone on my VPS are 25, 465 and a non-standard VPN port.
IMAP, SSH and all the other ports are only available from my home IP or from the VPN tun interface.
>>55039608
And the VPN, like SSH uses publickey authentication.
>>55039608
>iptables
firehol
>>55039697
>We're gonna make iptables real simple
How many of these projects are there?
How much of an issue is it anyway?
I looked up a few guides on securing a VPS, ran iptables-save to a file from which they're restored on bootup by a script and have just been editing that file where I can see all the conventions.
>>55028125
>best security software
It's not windows. Linux security is DIY.
Have MAC or RBAC enabled. Don't log in as a root.
Only install the softwares from your distro's secure repo
Use the Grsec kernel with PaX patches.
Use uBlock origin. HTTPS everywhere, Disconnect and Decentraleyes.
Use a Secure DNS.
Never keep yourself logged into anything.
Use a password manager. Best way is to maintain own encrypted spreadsheet.
Never use flash.
Install and keep firewall enabled at startup.
Keep bluetooth and printer service disabled by default.
Never give your windows VM any network access.
Do not bank or shop online unless you really have to. NEVER INSTALL YOUR BANK'S APP IN YOUR PHONE.
Randomly change all your 16 digit passwords. Use your spreadsheet to keep track of it.
Analise your data traffic to check for network tapping.
Always keep a mirror backup of your data. Create your own cloud storage if you are really serious.
Lastly, only visit trusted websites
>Protip:
You cannot "download" or "install" security
>>55039835
firehol is the one that's actually used on real servers by real admins and supported by real distros
>>55040203
might as well add: https://firehol.org/
check out some of the examples, for both firehol and fireqos. they're really nice.
Look, I know iptables syntax by heart but that doesn't mean I need to waste my time thinking about the exact chain setup I want when firehol can do it with a single command, including properly marking connections to accept return packets etc.
(and as for fireqos, well, I've been bashing my head against tc/qdisc for years now and have still never figured out how exactly to program it to get something with this degree of complexity: https://0x0.st/c05.conf)
>>55037779
>he uses ssh on standard ports
>>55037679
Seen her lately though? She's a proper milf!
>>55028125
Virginity
fail2ban is pretty cool against brute force attacks.
>>55036052
Bill once said that hillary had eaten more pussy than he has in his life.
So yea they were real sex freaks.
>>55028581
