* Russell Coker: > I think it would be good to have a package for improving system > security. It could depend on packages like spectre-meltdown-checker > and also contain scripts that look for ways of improving system > security. For example recommend SE Linux or Apparmor (if you don't > have one installed), recommend lockdown=confidentiality if using > kernel 5.4 or greater, and do other similar checks and warnings. > For each issue there would ideally be a URL provided (maybe to the > Debian Wiki, maybe to somewhere else) that describes the issue.
This sounds related to OpenSCAP <https://www.open-scap.org/>. Some people value having such tools.
