Hello, I am going to be using a Linux OS, more specifically Debian, for the first time in my life and I would like to receive some feedback on some good measures that I could take in order to have a more secure and private experience.
Could someone recommend me some good guides on how to harden Debian and the basics of the terminal? I don’t know if there are different kinds of hardening or what they accomplish, so if you can recommend me some basic stuff it would be nice. Also, I have used the terminal a bit so I know certain stuff, just to keep in mind.
These are a couple of good practices that I think should be taken in order to achieve what I previously mentioned, please correct me if I’m wrong:
- Having a superuser password
- Having full disk encryption
- Having your main folder encrypted
- Inside my main folder, encrypt the databases of my passwords
- Using a fire-wall
- Sandboxing every possible software
- Trying to use VMs whenever possible to connect to the internet (Whonix, Tails, etc)
I have a few doubts regarding passwords here though, if I have to use one password for my SU account, one for full disk encryption, one for decrypting my databases and another for opening these, should I remember 4 passwords in order to be able to use my machine? Would using a diceware for my SU and another for decrypting my HD be less secure?