====== Security ======

[[Security:Common Security Mistakes|Common Security Mistakes]]



[[Security:DLP (Data Loss Prevention)|DLP (Data Loss Prevention)]]

[[Security:HPKP (HTTP Public Key Pinning)|HPKP (HTTP Public Key Pinning)]]

[[Security:OWASP (Open Web Application Security Project)|OWASP (Open Web Application Security Project)]]

[[Security:Rootkits|Rootkits]]

[[Security:SQL Injection (SQLi)|SQL Injection (SQLi)]]

[[Security:XSS (Cross-site Scripting)|XSS (Cross-site Scripting)]]


----


The following sections if followed, will ensure that you end up with an extremely secure system.

[[Security:Group Security|Group Security]]


http://www.slideshare.net/ennael/kernel-recipes-2015-hardened-kernels-for-everyone


DAC - Discretionary Access Control
MAC - Mandatory Access Control
namespace - Process Separation
IPSec - Network traffic encryption
dm-crypt - disk encryption

Kernel self protection

Mempo project


grsecurity vs SELinux vs AppArmor vs


http://www.slideshare.net/ennael/kernel-recipes-2015-linux-kernel-io-subsystem-how-it-works-and-how-can-i-see-what-is-it-doing

https://www2.suse.com/support/security/apparmor/features/selinux_comparison.html

https://www.digitalocean.com/community/tutorials/7-security-measures-to-protect-your-servers