11 Security — Cyber & Access Control

Security is not a feature. It’s the foundation.

Purpose

This domain manages all security-related knowledge — access control policies, credential management practices, threat monitoring, incident response, and security decisions.

What Lives Here

11 Security (Cyber)/
├── Access/              # Who has access to what
├── Credentials/         # Credential management (no actual creds here)
├── Incidents/           # Security incident logs
├── Policies/            # Security rules and decisions
└── Monitoring/          # Alert configs and monitoring setup

Core Principles

Secrets never in code — 1Password for all credentials, op:// references only
Least privilege — agents get minimum tools needed for their scope
Audit trails — all sensitive ops logged
Defense in depth — Tailscale + systemd sandboxing + firewall

Tools

1Password — credential vault (vault: 00-24 UI)
Tailscale — zero-trust network access
UFW — VPS firewall
Fail2ban — brute-force protection

One Mind Codex

Explorer

11 Security — Cyber & Access Control

11 Security — Cyber & Access Control

Purpose

What Lives Here

Core Principles

Tools

Graph View

Table of Contents

Recently Updated

SOP: {Process Name}

{Weekly|Monthly|Quarterly} Review — {date range}

{Project Name}

{Full Name}

Decision: {What was decided}