I am considering my obligations to get UK ‘Cyber Essentials’ that includes secure configuration of all servers and workstations. That means in broad terms to not install software or services that is not needed (to do your job), change default passwords, secure weaknesses etc etc. It’s good to not do stupid things, yes?
The UK National Cyber Security Centre (NCSC) have released a script to secure Ubuntu after initial installation. I wondered what folks here think of it?
https://www.ncsc.gov.uk/collection/device-security-guidance/platform-guides/ubuntu-lts
The article refers to a Github page that hosts a bash script, which you can get directly to here:
It could be a discussion point for Tom’s weekly live stream, maybe?