Overview

This issue tracks the process of hardening a Linux Mint PC and securing an EE broadband connection, with an emphasis on enforcing HTTPS and improving overall network security.

Objectives

-closing and blocking all open ports but 443
-no unauthorised 3rd party access without a valid certificate
-scanning for any harmful softwares or downloads
-closing any Ports listinging
-making sure no one can see or alter browser credentials

• Audit and enhance device and network security settings on Linux Mint.
• Configure Linux Mint firewall (such as UFW) for optimal protection.
• Ensure browsers and applications default to HTTPS wherever possible (consider add-ons like HTTPS Everywhere).
• Harden EE broadband router: change default credentials, disable remote admin, keep firmware up to date.
• Disable unnecessary services (e.g., WPS) and ensure strong WiFi encryption (WPA2/WPA3).
• Identify and close unused ports on both PC and router.
• Apply regular software updates and security patches.
• Consider VPN usage for additional privacy and security.

Rationale

Improving endpoint and network security helps defend against eavesdropping, unauthorized access, and other network-based attacks.

References

• Linux Mint Security Guide
• EFF: HTTPS Everywhere
• EE Broadband Security