Not exactly what they meant by “hotboxing.”

Aegis is popular and will serve the purpose.

Standard TOTP 2FA is simple. You get a token when you enable 2FA, which you enter into the app (often there’s a QR code you can scan, but it’s always possible to enter it manually). The app generates a code (usually six digits) based on the token and the current time. Then when you log into GitHub you enter that code when prompted. That’s it.

So what’s the problem with setting up TOTP 2FA?

The man can’t leave if he’s shitting his brains out.

The CIS benchmarks for Linux are a good start. There are some off the shelf tools that let you run those, notably linux-bench. Another tool in a similar fashion is lynis. You can also use eBPF tools like callander to examine your workload behaviour and help tighten your seccomp policies.

Once you’ve established a baseline for your system, you’ll next want to harden your environment. This means network scans, OWASP, etc. As far as off the shelf tools go, OpenVAS is quite popular even in Enterprise environments.

Finally there’s the continuous security tasks. Continuous package updates, runtime security, log analysis, etc. There are some free tools that cover part of this like Security Onion, but if the price is right a SaaS tool can save you a lot of time.

data centers

recharge while the computer is off

I don’t know of many data centers that don’t run their servers 24/7

Don’t forget heat! In space you can’t dump heat into the atmosphere, so PDLs would not be able to support as much of a continuous firing rate as PDCs.

Also PDCs can be used to lay down a flak screen, potentially intercepting additional missiles.