Language Selection

English French German Italian Portuguese Spanish

Bastille: rated security with education

Filed under
Software

Bastille is a program for improving system security on Debian, Fedora, Gentoo, Mandriva, Red Hat Enterprise Linux, and SUSE. Unlike packet sniffers, anti-virus programs, and the majority of security programs available today, Bastille does not wait to react to possible security breaches, but prevents them by removing system vulnerabilities. With many distributions softening security in their default installations in the name of convenience, this approach is enough by itself to make Bastille an essential program.

Bastille is more than just a system hardener. With its assessment tool, Bastille gives a system security rating, comparable to that provided by the Center for Internet Security benchmark, that allows you to see the relative effects of individual security choices. Moreover, because it runs interactively, explaining the possible choices at each step and giving users every opportunity to back out of changes before committing them, using Bastille also amounts to taking a brief but thorough introductory tutorial on GNU/Linux security.

If you are serious about system security, then you should probably start by customizing every possible option during installation of your operating system, so that you know exactly what is on your system. However, even if you reject this approach as too time-consuming, you can still improve your system's security by installing and running Bastille immediately after installation.

Full Story.

More in Tux Machines

Canonical Releases Snapcraft 2.23 Snap Creator for Ubuntu 16.04 LTS and 16.10

Canonical's Snappy development team have released a new maintenance version of the Snapcraft 2.x tool that lets applications developers package their apps as Snap packages for Ubuntu and other GNU/Linux distributions that support Snaps. Read more

Mandriva Fork Mageia 5.1 Lets Users Install the Linux OS on NVMe-Based Drives

The development team behind the Mandriva fork Mageia Linux distribution are announcing the release and general availability of the first, and probably the last, point release of the Mageia 5 series. Read more

Linux 4.9-rc8

So if anybody has been following the git tree, it should come as no surprise that I ended up doing an rc8 after all: things haven't been bad, but it also hasn't been the complete quiet that would have made me go "no point in doing another week". Extra kudos to Arnd, who actually root-caused the incredibly annoying "modversions do not work with new versions of binutils", bisecting it to a particular change to symbol handling in binutils, and then adding a small one-liner patch to the kernel to work around the issue. We already had other workarounds in place, but it's always good to know exactly what in the tool chain changed to cause things like this. Read more Also: Linux Kernel 4.9 Slated for December 11 Release as Linus Torvalds Outs RC8 Linux 4.9-rc8 Kernel Released