You've protected your Ubuntu system from physical attacks, annoyed network hackers, and sandboxed potentially malicious applications. Great! Now, the next logical steps to locking down your OS include thoroughly auditing Ubuntu for weak points, using antivirus software that respects your privacy, and monitoring system logs like a boss.
This is the final part of our mini-series on strengthening your primary Ubuntu system. You'll learn about hardening weak points in the OS using a well-respected, open-source auditing tool. Besides that, we'll check out ClamAV, an antivirus software that won't send your sensitive files to for-profit company servers. You'll also see how to allow or deny web access for all the apps on your computer. And when I say "monitoring system logs like a boss," I'm talking about the /var/log/ directory.
If you missed the beginning of this article series, you should check out the first part to learn more about my motivations for starting this four-part guide.
[embedded content]
Step 1: Audit Your System with Lynis
Lynis, created by CISOfy, is a security auditing tool for Linux and UNIX-based operating systems that assists penetration testers with system hardening and information security compliance standards such as ISO27001, HIPAA, and locking linux using ubuntu primary auditing antivirus monitoring
