switching back to tmpfs instead of a seperate partition
Better encryption for cryptsetup
"Delays can be a deterent against bruteforcing login attempts. Simply add this line to it's corresponding section in /etc/pam.d/login:"
jitterentropy should be in /etc not in /usr/lib