So basically I would like to use my Pi as a Smart TV on steroids to browse the net.
Here is the way I was thinking of having my security in place on my Pi (model 3 b) as well as some questions to finish everything. If you have any suggestions go ahead. The idea is to stay safe against scripts in ads executing malicious code, viruses (if any on Linux) and prevent getting hacked and used as a botnet. I'm not very savvy so I'm trying to stay simple but efficient.
- - I was thinking of creating and using a new standard user and have it's home folder deleted at every boot (kind of like the Guest account on Mac). What is that and a firewall enough as security to just browse the internet and protect against malicious scripts in ads for example ? Thanks !
I was thinking of following this set up, what do you think, are the commands all legit ? I checked and to me it seems yes:
https://raspberrypi.stackexchange.com/q ... 4712#14712
https://raspberrypi.stackexchange.com/a/58778/62747
Question: How do I add the new users to Audio and Video groups ? Do I have to add new users there ? What groups are needed to browse the net as this new user ?
- - Do I have to set a password for root ? Based on research I have found it's not a good idea.
- How can I require password for sudo ?
- How can I check current status or disable remote login to the root account ?
- How can I deactivate FTP and check its status ?
- Are elements like Chromium adding I chose and UFW settings automatically applied to all current AND FUTURE users ?
- Can the recovery partition be hacked ?
That's all my "easy but efficient" strategy, should it be enough according to you ? If you have any suggestions go ahead, thanks !
