Advanced Security R3j3ct's Home Laptop Config 2024

Last updated
Feb 15, 2024
How it's used?
For home and private use
Operating system
Other
Other operating system
Linux Mint 21.3 x86_64
On-device encryption
N/A
Log-in security
    • Basic account password (insecure)
Security updates
Allow security updates
Update channels
Allow stable updates only
User Access Control
N/A - Linux / Mac / Other operating system
Smart App Control
N/A - Linux / Mac / Other operating system
Network firewall
N/A
About WiFi router
Apartment building has WiFi for tenants
Real-time security
none
Firewall security
Built-in Firewall for Mac/Linux
About custom security
UFW Firewall
- Incoming set to reject
- Outgoing set to allow
Apparmor /Firejail
Set Cloned MAC address to random for WiFi
Fail2Ban
Disabled Cups
Disabled Avahi
Periodic malware scanners
VirusTotal
Rkhunter & Chkrootkit
Malware sample testing
I do not participate in malware testing
Environment for malware testing
N/A
Browser(s) and extensions
Firefox (Firejailed)
- Ublock Origin
- Privacy Badger
- Malwarebytes Browser Guard

Librewolf (Flatpack)
- Ublock Origin
- Privacy Badger
- Malwarebytes Browser Guard

Set browsers to use system DNS
Both set to not save and clean when closed
Secure DNS
Quad9
Desktop VPN
Torguard
- Killswitch ON
- Quad9 DNS
Password manager
KeePassXC
Maintenance tools
Stacer
File and Photo backup
Backup regularly to external drive
Subscriptions
    • None
System recovery
Timeshift
Risk factors
    • Browsing to popular websites
    • Buying from online stores, entering banks card details
    • Downloading software and files from reputable sites
    • Streaming audio/video content from trusted sites or paid subscriptions
    • Streaming audio/video content from shady sites
Computer specs
Lenovo ThinkPad T430
CPU: Intel i5-2540M (4) @ 3.300GHz
GPU: Intel 2nd Generation
Memory: 12 gig
HDD
Notable changes
(2-15-2024)
Kernel: 6.1.76-x64v2-xanmod1
Drivers: Kisak-Mesa
DNS: Quad9
- Set browsers to use system DNS & Torguard had option to use Quad9
Malwarebytes Browser Guard
Disabled Cups & Disabled Avahi
What I'm looking for?

Looking for medium feedback.

R3j3ct

R3j3ct

Level 1
Thread author
May 12, 2023
22
all i got for a update, switched from ubuntu to linux mint, and i find it less of a pain in the ass then ubuntu and the mess they had a few months ago with the updates and blah...
 
F

ForgottenSeer 103564

Good to see you are using timeshift, excellent program. With apparmor are you running standard security profile, or is yours custom, have you added profile extras, if so what issues did you run into that needed corrected via applications.

chrootkit vs rkhunter.
chrootkit only scans for rootkits on the local host whereas rkhunter verifies consistency of a configuration, symlinks in file system, open TCP sockets on a localhost ect. I personally use rkhunter.

There is also a tool called Lynis you can look into, a paid and free version. It is a system auditing tool that can help you learn of CVE's and harden your system.
 
  • Like
  • +Reputation
Reactions: silversurfer, R3j3ct and harlan4096
R3j3ct

R3j3ct

Level 1
Thread author
May 12, 2023
22
Ultimate Vision said:
Good to see you are using timeshift, excellent program. With apparmor are you running standard security profile, or is yours custom, have you added profile extras, if so what issues did you run into that needed corrected via applications.
Click to expand...
I am just running standard security profiles, i didn't want to try any custom or profile extras mainly cause i'm lazy and don't want to fix/deal with any experimental profiles.

Ultimate Vision said:
There is also a tool called Lynis you can look into, a paid and free version. It is a system auditing tool that can help you learn of CVE's and harden your system.
Click to expand...
yea, i forgot to run Lynis, might get to that today!
 
  • Like
Reactions: Moonhorse
F

ForgottenSeer 103564

R3j3ct said:
I am just running standard security profiles, i didn't want to try any custom or profile extras mainly cause i'm lazy and don't want to fix/deal with any experimental profiles.


yea, i forgot to run Lynis, might get to that today!
Click to expand...
Not much point in running Linus if you do not wish to finagle and mess with the system, as it requires quite a bit to "harden" the system, Linus just shows you where it needs to be done.
 
  • Like
Reactions: R3j3ct and Moonhorse
R3j3ct

R3j3ct

Level 1
Thread author
May 12, 2023
22
lmao, i hear you! but i ran lynis to just see! lynis gave me a score of 70 which i think i just fine for what i use this for...never the less, being new to linux full-time that is, i always want and accept knowledge! i was at 60+ before i ran lynis, i added fail2ban & debsum i think it was, checks hashes of software i think...is there anything i should be paying attention to and am not doing it already?
 
  • Like
Reactions: ForgottenSeer 103564
F

ForgottenSeer 103564

R3j3ct said:
lmao, i hear you! but i ran lynis to just see! lynis gave me a score of 70 which i think i just fine for what i use this for...never the less, being new to linux full-time that is, i always want and accept knowledge! i was at 60+ before i ran lynis, i added fail2ban & debsum i think it was, checks hashes of software i think...is there anything i should be paying attention to and am not doing it already?
Click to expand...
I would state you are more than likely fine other than watching those URLs since you do your banking and buying online.
 
  • Like
Reactions: R3j3ct
R3j3ct

R3j3ct

Level 1
Thread author
May 12, 2023
22
Switched to the Xanmod kernal, Quad9 DNS - Set Quad9 in firefox by using system dns & Torguard had option to use Quad9, Malwarebytes Browser Guard.

Seen the Quad9 & Malwarebytes Browser Guard on a recent post as advice for someone & applied to my system so appreciate it forum!
 
Last edited:
  • Like
Reactions: oldschool, harlan4096 and Moonhorse

Similar threads

Divine_Barakah
    • Like
    • Applause
Advanced Security Divine Barakah's PC Security Config 2024
Replies
97
Views
4,037
PC Setup Configuration Help & Showcase
Divine_Barakah
Divine_Barakah
Vitali Ortzi
    • Wow
    • Like
Danger Vitali Low end laptop config 2024
Replies
17
Views
486
PC Setup Configuration Help & Showcase
Vitali Ortzi
Vitali Ortzi
Nautilus
    • Like
    • Applause
Advanced Plus Security Nautilus Security Config 2024
Replies
0
Views
194
PC Setup Configuration Help & Showcase
Nautilus
Nautilus

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top