git404hub

what is linux-hardening-checklist fr?

trimstray/linux-hardening-checklist — explained in plain English

Analysis updated 2026-07-17 · repo last pushed 2024-11-19

1,634Audience · ops devopsComplexity · 3/5StaleSetup · moderate

tl;dr

A prioritized checklist for securing a Linux server before production, covering disk layout, permissions, network config, and logging with example commands for each fix.

vibe map

mindmap
  root((repo))
    What it does
      Security checklist
      Priority levels
      Example commands
    Topics covered
      Disk partitioning
      User permissions
      Network config
      Logging setup
    Use cases
      Server hardening
      Production readiness
      OpenSCAP alignment
    Audience
      DevOps engineers
      Sysadmins

Code map

Detail Auto

An interactive map of this repo's files and how they connect — its source is parsed live in your browser. Click Visualize to build it.

filefunction / class

what do people make with this?

VIBE 1

Walk through a prioritized checklist to harden a new Linux server before deploying it to production.

VIBE 2

Apply concrete commands to restrict permissions on shared memory and temp folders against malicious code execution.

VIBE 3

Separate system logs and boot files onto different drives to limit the blast radius of a disk failure or compromise.

VIBE 4

Use the checklist as a quick reference during infrastructure setup, checking items off as you go.

what's the stack?

LinuxBash

how it stacks up fr

trimstray/linux-hardening-checklistn8n-io/n8n-docskarpathy/arxiv-sanity-lite
Stars1,6341,6351,637
LanguageHTMLPython
Last pushed2024-11-192023-06-19
MaintenanceStaleDormant
Setup difficultymoderatemoderatemoderate
Complexity3/52/52/5
Audienceops devopspm founderresearcher

Figures from each repo's GitHub metadata at analysis time.

how do i run it?

Difficulty · moderate time til it works · 1h+

It's a reference checklist, not software, applying it means manually running commands across your server.

prompts (copy fr)

prompt 1
Walk me through the high-priority items in trimstray/linux-hardening-checklist for hardening a fresh Ubuntu server.
prompt 2
Show me the exact commands to restrict permissions on /tmp and shared memory as recommended in this checklist.
prompt 3
Explain why this checklist recommends keeping logs and boot files on separate drives, and show me how to set that up.
prompt 4
Help me align my server's configuration with OpenSCAP standards using this checklist as a guide.
prompt 5
Turn the high-priority items from linux-hardening-checklist into a bash script I can run on server setup.

Frequently asked questions

what is linux-hardening-checklist fr?

A prioritized checklist for securing a Linux server before production, covering disk layout, permissions, network config, and logging with example commands for each fix.

Is linux-hardening-checklist actively maintained?

Stale — no commits in 1-2 years (last push 2024-11-19).

How hard is linux-hardening-checklist to set up?

Setup difficulty is rated moderate, with roughly 1h+ to a first successful run.

Who is linux-hardening-checklist for?

Mainly ops devops.

peek the repo → explain another one

This repo across BitVibe Labs

double-check against the repo, no cap.