Rarely a thing as “secure by default” so I’m curious to what steps the “security freaks” take during and after installation to go that extra mile on security/anti-forensics.
Obviously FDE, but do people use other options than LVM with FDE?
Second SSD with “tougher” security for “special VMs”?
Any other hardening tips for desktops?
Would be interesting to hear, both to implement some myself as well as self education in the realm of security.