Automate safe system upodates with a single script (for APT + systemd systems)

THE PROBLEM Keeping a Linux system fully updated usually means doing several things by hand: Update APT package lists Upgrade installed packages Remove unused dependencies and cached files Update Flatpak apps (if you use Flatpak) Update firmware via fwupd (if available) Decide whether to reboot or shut down None of that is hard, but it is repetitive and easy to skip steps, especially firmware updates. This script turns that whole workflow into a single, safe command. REQUIREMENTS This script assumes: Package manager Uses APT Example: Debian, Ubuntu, Linux Mint and similar Init system Uses systemd (for systemctl reboot/poweroff) Shell bash (script uses “#!/usr/bin/env bash” and “set -euo pipefail”) You can run it with: bash script.sh Privileges Your user has sudo rights Optional components Flatpak (optional) If not installed, Flatpak steps are skipped fwupd (fwupdmgr, optional) If not installed, firmware steps a...
0

Password security

Encryption 


Password encryption is ensured by the service called SHA-512 (Secure Hashing Algorithm 512 bits). It includes the protocols:

  • TLS
  • SSL
  • PHP
  • SSH
  • S/MIME
  • IPSec
SHA-512 is invoked with sha512sum. To see the encryption of the word "table":
$ echo -n table | sha512sum


Security enhancement

  • Password aging
    It sets the expiration date on a password, enabling its periodic replacement. The command to use is chage.

  • Forcing users to set strong passwords
    This can be done by using PAMPluggable Authentication Bodules. It is based on one of thefollowing libraries:
    • pam_cracklib.so
    • pam_passwdqc.so (provides more options


Comments

Post a Comment