A quick, practical set of commands for keeping your system patched, watching authentication activity, and checking what’s running.
sudo apt update && sudo apt upgrade -ysudo cat /var/log/auth.log | grep "Failed"sudo tail -f /var/log/auth.logsudo systemctl start fail2ban
sudo fail2ban-client statusUse separate profiles for different contexts (e.g., GitHub, Fiverr, banking) to isolate cookies and sessions.
Launch Firefox Profile Manager:
firefox -Psudo apt install ecryptfs-utils
ecryptfs-migrate-home -u $USERIf you already use full‑disk encryption, per-user home encryption may be unnecessary.
Install and run Lynis (security auditing):
sudo apt install lynis -y
sudo lynis audit systemView processes:
htopNetwork listeners:
sudo apt install net-tools
sudo netstat -tulpn| Category | Tool/Command | Purpose |
|---|---|---|
| System Updates | apt update && apt upgrade |
Stay patched |
| Firewall | ufw |
Block unauthorized access |
| Intrusion Detection | fail2ban, lynis |
Detect & block attacks |
| Browser Isolation | Brave/Firefox profiles | Keep accounts separate |
| VPN | ProtonVPN / Mullvad | Encrypt traffic |
| 2FA | Authenticator app | Secure logins |
| Monitoring | htop, netstat, auth.log |
Watch system behavior |