@Dimitri,

Thank you for your suggestion. OpenSCAP has been added to the article. Your input is greatly appreciated.

Open source, crowdsourced protection against malicious IPs.

I created a tool (started in 2007, still maintained) that might help readers. It is Lynis, a security scanner for Linux and Unix systems. Open source and free to use.

You did manage to bring a couple of tools to my attention I was not familiar with like Nitco. One thing I have learned through the years is that an ounce of prevention goes a long way. Being aware of the potential threats is the first step in mitigating them. I use many of the tools mentioned, regularly. Usually, the biggest problem I have to deal with is WiFi intrusions. Had to deal with is more accurate because it’s zipped up like Fort Knox now.

Computer security is not something everyone puts a premium on. That always amazes me, too. Just about everyone uses WiFi but does not secure it well. Kali and a laptop, tells me so. The sheer amount of WEP tells me that the owner probably never updates anything or using outdated equipment. Even if that is the case WPA/WPA2 is available, I would think.

Many people are just not security conscious, or savvy. Or, they don’t care. I ran into that all the time when I worked in IT trying to keep Windows workstations secure and working. It was a job. A very stressful job.

I must admit though, that when it came to Windows, the user posed the main problem. Windows has issues, to be sure but the reality is they can be minimized and mostly eliminated with a little effort and know-how. Unfortunately, there is little that can be done when the user practices bad computing habits, such as opening attachments, installing software from shady sources, or dangerous web surfing.

Much of that was prevented in company owned systems thru restriction protocols and other methods. Even with restrictions in place some systems would become infected because of a user visiting a shady site(often porn) that hadn’t made it on the restricted list.

My point, is that the user is either the first line of defense, or the problem. Mostly, it’s the latter. A large part of Windows users practice bad computing habits and believe the fault is the system. Home computers rarely have adequate security implements and are basically ticking time bombs.

Ironically, Linux is the system that type of computer user would be better off using. Those users who are security conscious rarely have many problems, even using Windows. Linux users seem to all be security conscious, by default, and most Windows users that decide to make the switch are cut from the same cloth.

The type of Windows user I was referring to earlier has no interest in security and will not change their habits. They could care less about Linux and will believe something went wrong with Windows when malware takes their system out. The majority will go out and buy a new computer and start the process all over never understanding, or caring, why these things happened.

Those types were a thorn in our side more than Windows ever was. For those of us in IT, it was a running battle and we were always to blame when their system broke. Whenever, we would attempt to educate them they wouldn’t listen and always claimed they did not do anything to cause the problem. They were obviously unaware that everything was logged. Needless to say, I do not miss any of that.

To get back to your article, have you ever tried setting up your own VPN? If so, I would be interested to know the outcome. I have been boning up on the subject and it has me interested. For one, it’s free which is always a bonus (not that I mind paying, especially for peace of mind). Mainly, it’s something I have never attempted and it sounds like it could be a good learning experience. I will let you know my findings and if it was a worthwhile endeavor.

I use NordVPN and have no complaints but my curiosity often dictates my direction.

Thank you.

Yes, NordVPN is awesome although it is neither free nor open-source. I mentioned it in a different security and privacy-related post.