Skip to content

Security

ulises-jeremias edited this page Jan 21, 2024 · 7 revisions

Although I like making it look as nice as possible, these dotfiles also try to be private and secure. This is a journey, not a destination, and I am open to any input.

  • Manually keeping system up to date using the OS package manager. I use Arch, btw so I run yay -Syyu every day.
  • Malware scanning and database updating (clamav)
  • Firewall (ufw)
  • Ban IPs (fail2ban)
  • Using Signal (when possible)
  • Using a password manager. For this dotfiles repo, I use LastPass, but I'll probably switch to Bitwarden soon!
  • Hosting API keys in a private repo, encrypted file or a password manager.
  • I could install the hardened Linux kernel, but that might be slightly pedantic...
  • Port scanning (nmap, rustscan)