Want to use Linux as main OS but help on hardening it.

• How-To-Secure-A-Linux-Server

  48 16,738 4.5

  An evolving how-to guide for securing a Linux server.

As mentioned, there is some great software here https://www.privacytools.io/ and nearly everything you need to know to get started here https://wiki.archlinux.org/title/Security (useful even if you don't use Arch/Arch based distros, some of the stuff may be overkill and you need to figure out where to draw the line yourself in terms of tradeoffs). This guide, although it is geared towards servers also has some useful tips that apply to any linux system and is a little easier to follow https://github.com/imthenachoman/How-To-Secure-A-Linux-Server

• Pi-hole

  2,357 46,973 7.8 Shell

  A black hole for Internet advertisements

  

It is also important to secure the network your system is on, you can use something like https://opnsense.org/ or if you want something simpler, https://pi-hole.net/ is great for blocking most ads/telemetry, and since it should be running on its own machine with nothing else, it is harder for it to become compromised. If you want to monitor connections from individual applications, there is a pretty good tool here that is like GlassWire on windows https://github.com/elesiuta/picosnitch

• InfluxDB

  www.influxdata.com featured

  Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

  

• picosnitch

  33 591 8.6 Python

  Monitor Network Traffic Per Executable, Beautifully Visualized

It is also important to secure the network your system is on, you can use something like https://opnsense.org/ or if you want something simpler, https://pi-hole.net/ is great for blocking most ads/telemetry, and since it should be running on its own machine with nothing else, it is harder for it to become compromised. If you want to monitor connections from individual applications, there is a pretty good tool here that is like GlassWire on windows https://github.com/elesiuta/picosnitch

• core

  241 2,980 9.9 PHP

  OPNsense GUI, API and systems backend (by opnsense)

  

It is also important to secure the network your system is on, you can use something like https://opnsense.org/ or if you want something simpler, https://pi-hole.net/ is great for blocking most ads/telemetry, and since it should be running on its own machine with nothing else, it is harder for it to become compromised. If you want to monitor connections from individual applications, there is a pretty good tool here that is like GlassWire on windows https://github.com/elesiuta/picosnitch

• Flatseal

  54 1,034 9.1 JavaScript

  Manage Flatpak permissions

The most important tip I have to give though is never run anything from outside a trusted repository or trusted source. If you must, test it out first in a virtual machine, and if it is some proprietary binary, even if you're not using Arch, there is usually a PKGBUILD for it in the AUR where you can confirm the hash (and see if there are any negative comments). And stick to flatpaks if you can since they are sandboxed and there's a very easy to use permission manager for them https://github.com/tchx84/Flatseal

• SaaSHub

  www.saashub.com featured

  SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

  

Suggest a related project