HPKP (HTTP Public Key Pinning)
OWASP (Open Web Application Security Project)
The following sections if followed, will ensure that you end up with an extremely secure system.
http://www.slideshare.net/ennael/kernel-recipes-2015-hardened-kernels-for-everyone
DAC - Discretionary Access Control MAC - Mandatory Access Control namespace - Process Separation IPSec - Network traffic encryption dm-crypt - disk encryption
Kernel self protection
Mempo project
grsecurity vs SELinux vs AppArmor vs
https://www2.suse.com/support/security/apparmor/features/selinux_comparison.html
https://www.digitalocean.com/community/tutorials/7-security-measures-to-protect-your-servers