The main point here is to go into some topics of "easy", practical and doable steps in regards to security and to focus on that rather than better but more impractical options or things that you can do, but will end up not doing because it is too complicated, impractical or difficult. In a way this is a continuation of this:
https://www.linuxquestions.org/quest...to-self-38348/
LSM,...