Lmst

Landlock is coming on nicely:

**How To Secure A Linux Server**

An evolving how-to guide for securing a Linux server that, hopefully, also teaches you a little about security and why it matters.

https://github.com/imthenachoman/How-To-Secure-A-Linux-Server

https://github.com/moltenbit/How-To-Secure-A-Linux-Server-With-Ansible

Hoy en nuestro curso de #almalinux hablamos de #hardening

https://youtu.be/GjSc-KzDm0s

#linux #servidores #curso

New post 💥
After deploying my own certificate authority I updated all my NGINX configurations to be almost exactly the same, with a few exceptions. Detailed config along with explanation of required changes please find in the post.
https://www.mitim.net/2025/05/my-nginx-configuration?g=5
#NGINX #ReverseProxy #CyberSecurity #Hardening

El lado del mal - Taxonomía de Fallos de Seguridad en Agentic AI: Memory Poisoning Attack con Cross-Domain Prompt Injection Attack (XPIA) https://www.elladodelmal.com/2025/05/taxonomia-de-fallos-de-seguridad-en.html #IA #AI #PromptInjection #XPIA #AgenticAI #InteligenciaArtificial #Hacking #Ciberseguridad #hardening

El lado del mal - Cómo pasar del exploit automático de bugs hecho por IA a la detección de malware en nanosegundos con eBPF & Spectral Clustering https://www.elladodelmal.com/2025/05/como-pasar-del-exploit-automatico-de.html #malware #hardening #kernel #ebpf #exploiting #bug

I nearly finished the transition to #ansible now and it feels great! I've done system #hardening, #docker deployments and package management.

I'll now have to set up some more services, add my desktops to be managed and create a shared #zfs pool.

The effort is worth it.

https://medium.com/@js_9757/advanced-nginx-hardening-15bf96058327

#nginx #howto #hardening

about:config

In the digital age, browser security is crucial, especially in sensitive environments. These personal notes outline critical configurations for Mozilla Firefox to ensure optimal security, and compliance.

Paste: https://0.0g.gg/?006bb821c595f869#Dk3nVRj78cqNEfLjpsRqxMzSU9MuoxKwa2LHJoGU6QCe

#aboutconfig #browser #firefox #gecko #harden #hardening #mozilla

Anyone currently have a take on the #security concerns of #linux #kernel user #namespaces #usernamespaces? I have been rereading into it wondering whether enabling or disabling is the best approach. They seem rather insignificant with considerable surface area for attack, from my understanding. However, more applications check for/need them nowadays.

I think kernel #hardening advice is still to disable. Makes me wonder if should e.g. be considered only if #AppArmor / #SELinux is active.

GrapheneOS install and hardening

https://1312blogs.org/arg/grapheneos-install-and-hardening

El lado del mal - Llama Protections: LlamaFirewall con PromptGuard 2, LlamaGuard 4, AlignmentCheck, CodeShield + AutoPatchBench & CyberSecEval 4 https://www.elladodelmal.com/2025/04/llamafirewall-con-promptguard-2.html #Llama #LLM #Hardening #Ciberseguridad #PromptInjection #Jailbreak #Llama4 #CodeShield #IA #OpenSource #IA

#BashCore is secure because it's based on #Debian, but don’t expect a fortress like #Kicksecure, #Whonix or #Tails...
It’s a Swiss knife: light, flexible, powerful.

For those who like to play hard: #Lynis is included, so you can test your setup and fix what you break. Have fun! 🤪

#Linux #CyberSecurity #Pentesting #InfoSec #Hardening #MinimalLinux