These are the security auditing results for a fresh install of Lubuntu withsudo lynis audit system
Ubuntu is arguably the most popular linux distro in the world, and yet it ships with a security profile that is abysmal. This is WinXP-tier security.
How can linuxfags defend this?
>>56637087
>Using anti virus
Most people have common sense
>>56637087
Debian is pretty bad too.
Good thing I use GNU/Linux and not 'Linux'.
Yes, but in the end you are more likely to get a security breach of your system on any Windows OS as compared with Linux.
>>56637087
I'd just like to interject for a moment. What you're referring to as Linux, is in fact, GNU/Linux, or as I've recently taken to calling it, GNU plus Linux. Linux is not an operating system unto itself, but rather another free component of a fully functioning GNU system made useful by the GNU corelibs, shell utilities and vital system components comprising a full OS as defined by POSIX.
Many computer users run a modified version of the GNU system every day, without realizing it. Through a peculiar turn of events, the version of GNU which is widely used today is often called "Linux", and many of its users are not aware that it is basically the GNU system, developed by the GNU Project.
There really is a Linux, and these people are using it, but it is just a part of the system they use. Linux is the kernel: the program in the system that allocates the machine's resources to the other programs that you run. The kernel is an essential part of an operating system, but useless by itself; it can only function in the context of a complete operating system. Linux is normally used in combination with the GNU operating system: the whole system is basically GNU with Linux added, or GNU/Linux. All the so-called "Linux" distributions are really distributions of GNU/Linux.
This tool sounds retarded.
>>56637723
It is. It docks points for dumb shit like having only one DNS server or "weak" motd banners.
>>56637087
Lincucks BTFO!
>>56637877
>It docks points for dumb shit like having only one DNS server
The fuck?
>>56637877
>>56637956
I consider this a test of "Are you paying attention?" when looking through the tests... You can disable these for a more 'true' sense of security.
That being said, multiple DNS servers can help against DNS poisoning. Keep in mind I think this tool was mainly intended for Enterprise not Home usage.
Depending on the distro/system as well, it can offer other helpful advice depending on what you're trying to do with it. For example, if it detects apache or nginx, it'll check configs for security modules/misconfigured shit. PHP? It'll check to see if allow_fopen or expose_php being True/On.
It's a rather handy tool if you need to harden something.