Chapter 6. Security

Table of Contents

Introduction to computer security
APK
Services

In this chapter, we will review best practices for keeping your Adélie Linux systems secure.

No one book can teach you everything about computer security. Computer security is not simply an item on a list that must be done once and then it is "completed". Computers are very powerful tools, and just as they can be used to teach, create, and produce, they can also be used for more nefarious purposes. By taking a proactive approach to computer security, and treating it as a process, you will be much more successful in keeping the security, confidentiality, and integrity of your data intact. You first need to identify your threat model; that is, what adversaries are you attempting to keep out? A sophisticated nation-state requires a much different security plan than a random hacker.

The suggestions in this handbook are a starting point to help you develop an actionable plan to keep your computer secure. They are by no means exhaustive. Remember to always keep learning; knowledge is power.

  • Only use repositories and mirrors with HTTPS.

  • Run system updates whenever it is convenient.

  • Ensure any custom or third-party repositories have high-grade signature keys and that you trust the developers.

  • If a service is only being used in your internal network, make sure it is configured to only accept connections from that network. This reduces the chance that an external attacker from the Internet can connect to it.

  • Keep track of best practices for the services you run. The service's documentation is likely to contain good advice for security.