Any Forums how would you recomend securing a computer with a brand new linux distro installed?

Any Forums how would you recomend securing a computer with a brand new linux distro installed?

Attached: 9u3g34xyo6r01.jpg (640x475, 34.62K)

Unironically arch linux. Expect to fail.

see

No sudo without a password.
Install UFW or learn to use iptables.
If you leave ssh open, disable password login and use keys. Normally ed25519 is recommended. Curve algorithm implementations might have back doors. RSA implementations might have front doors. You do whatever you want.

As soon as you connect to the internet, there's no security or privacy.

Nope that’s where you’re wrong bucko

>everything gets sent to your ISP
>hardware is full of backdoor shit
>every website sends your information to whoever they want
>programs send everything to whoever they want

Qubes OS, and hopefully the laptop is a thinkpad that supports coreboot or in the best case heads

>programs send everything to whoever they want
not a problem on linux

Not plugging it into network

Do you read and understand all code for every program and install it from source? If not, then it's a problem.

He doesn't, he just installed Linux and now he is the king of the world 200000iq smart man

i do install from source, everything else doesn't matter
retard

what do you mean by "securing" a computer nigger? There isnt a "state" of secure, only a process and a vague notion of good enough. Depending on your requirements you might want to superglue the ports, idk. on the software side, a virtual machine started from a fresh instance would be a decent start.

Depends on the distro. For example, if you are using any distro that uses systemd for its init and process management, then your computer has a unique machine-id fingerprint used to identify it across the internet and your DNS requests will be filled by Google's 8.8.8.8 server regardless of your settings. If you're paranoid about being spied on then you will have to use one of the whopping 5 distros that doesn't use systemd. Then you can deal with your kernel-level mitigations, or just use SELinux and enjoy the backdoors.

also, unironically this

Attached: TerryVisitsDC.gif (700x364, 3.44M)

dumb schizo

just say it faggot...its all compromised, all of it.

how do lolberts reconcile their boner for muh private property (cringe) and their hateboner for corporate slavery (based)

iptables is obsolete, use bpfilter you retard

TempleOS