Linux is not secure in default configuration

Security can be increased to a very high level, however it must be balanced with functionality and ease of use.

The correct Linux distribution must be chosen, and minimum installation done

Patches must be diligently applied

Syslog logs must be analyzed periodically

Network Services must be kept to a minimum

User and groups must be periodically audited

File/folder access control lists must be set

File Integrity software may be used in high-security installations

Application-specific security measures are also a must