https://linuxeries.org/tags/hardening/ Recent content in Hardening on ShieldedBytes Hugo en Wed, 13 May 2026 11:01:32 +0200 https://linuxeries.org/post/2026-05-13-hardening-ssh-with-linux-kernels-built-in-fea/ Wed, 13 May 2026 11:01:32 +0200 https://linuxeries.org/post/2026-05-13-hardening-ssh-with-linux-kernels-built-in-fea/ <h2 id="introduction-to-ssh-hardening">Introduction to SSH Hardening</h2> <p>Securing your SSH connection is crucial - I&rsquo;ve seen this go wrong when a friend of mine had his server compromised due to a weak SSH setup. In today&rsquo;s world, with cyber threats lurking around every corner, hardening your SSH setup using Linux kernel&rsquo;s built-in features and sysctl tweaks is essential. This article will guide you through the process of securing your SSH connection using practical examples and commands.</p> https://linuxeries.org/post/2026-05-12-hardening-your-linux-desktop-with-mandatory-a/ Tue, 12 May 2026 11:50:33 +0200 https://linuxeries.org/post/2026-05-12-hardening-your-linux-desktop-with-mandatory-a/ <h2 id="introduction-to-mandatory-access-control">Introduction to Mandatory Access Control</h2> <p>Mandatory Access Control (MAC) is a security framework that enforces access control decisions based on a set of rules, rather than relying on user identity or group membership. On Linux, one of the most popular MAC implementations is SELinux (Security-Enhanced Linux) and AppArmor. I&rsquo;ve found AppArmor to be generally easier to use and more widely supported, so we&rsquo;ll focus on hardening your Linux desktop using AppArmor.</p> https://linuxeries.org/post/2026-05-11-hardening-your-linux-desktop-with-mandatory-a/ Mon, 11 May 2026 11:46:42 +0200 https://linuxeries.org/post/2026-05-11-hardening-your-linux-desktop-with-mandatory-a/ <h2 id="introduction-to-linux-hardening">Introduction to Linux Hardening</h2> <p>I&rsquo;ve seen many Linux systems compromised due to lack of proper hardening. To prevent this, you can use a combination of Mandatory Access Control (MAC) and namespace isolation. These two security features can help prevent unauthorized access to sensitive data and system resources. In this article, we&rsquo;ll explore how to implement MAC and namespace isolation on a Linux desktop.</p> <h2 id="mandatory-access-control">Mandatory Access Control</h2> <p>Mandatory Access Control is a security feature that enforces a set of rules defining what actions a user or process can perform on a system. One popular MAC system for Linux is SELinux (Security-Enhanced Linux), which was integrated into the Linux kernel in 2003. SELinux provides a robust security framework that can help prevent attacks such as buffer overflows and privilege escalation. Don&rsquo;t bother with other MAC systems unless you have a specific reason to - SELinux is well-maintained and widely supported.</p>