I was browsing around and found this https://github.com/NexusOne23/noid-privacy-linux a tool written in bash to audit your linux system and generate an AI prompt to help you fix these issues, it looks pretty cool overall but im not very trusting when it comes to these types of tools.
You need to give root to the tool in order to scan your whole system and make AI work on it, wich for me is a red flag, but whatever
Has anyone tried this, audited the code? I read some overall but i dont know much about bash so
It looks like an automation script for their Fedora hardening guide, and I don’t understand why they don’t refer to it in their script instead of telling you to ask an AI.
From a cursory read of the code I can’t see anything malicious, but the red flags are requiring root to run, being over 6400 lines long, vibe coded and some dubious coding decisions (like re-reading
/etc/passwdmultiple times, munging separate checks together in functions) - I wouldn’t run it myself on anything important, even if it looks like it could be handy.such a long shell script, didn’t read it carefully but i bet the ‘author’ doesn’t really know what they just wrote… don’t use this.
Looks like a scam to me. It can do all these tests to find security issues, but instead of telling you how to fix things (or do it itself) it has you input it to an AI?
