Results 1 to 9 of 9

Thread: Windoze user trying to secure Linux

  1. #1
    Senior Member
    Join Date
    Feb 2002
    Posts
    130

    Windoze user trying to secure Linux

    Being in the middle of making the change over to Linux.... or trying to as the case may be, I have been trying to work out how to secure it, at least a bit, before I let it loose on the Net. After reading posts on here I have downloaded myself a copy of Firestarter and Snort, to take care of the firewall/ IDS side of things, just having trouble finding a decent free piece of anti-virus software. The only ones I have managed to locate so far seem to run at the command line, or through scripting only. Being a windoze user most of the time I would much rather have a GUI to look at aswell as having real-time protection rather than having to rely on scheduled scans. Any ideas anybody... before I tear the rest of my hair out? lol

    Any other tips on securing the Linux box would be appreciated to, the Linux box is running Mandrake 8.2 on an Intel platform, connected to the nia via a cable modem (USB connection)

    thanks

  2. #2
    The only ones I have managed to locate so far seem to run at the command line, or through scripting only.
    Welcome to Linux. Command line is good. Look atFreshmeat.net for any linux software.
    Give man a fish and he will ask for more.
    Teach man to fish and he will never ask again.
    \"Chinese proverb\"

  3. #3
    Junior Member
    Join Date
    Sep 2001
    Posts
    6
    The first thing you want to do is use the built-in firewall capabilities of the kernel. That will keep all the bad stuff out, unless you want to use it as a server of some sorts, then you could let *some* of that stuff in, if you wanted to. You DID compile support for iptables into your kernel, didn't you?

    There are some GUI frontends for iptables/ipchains(PMFirewall, etc.), but I'm not familiar with them. There are numerous articles on the web on configuration of iptables/fwadmin.

    Secondly, you'd want to look at hardening the OS, which would involve shutting down unnecessary services and patching known exploits.

    I would worry about IDS last. If you properly lock your box down by hardening and firewalling, you'll have very little IDS stuff to worry about.

  4. #4
    There is a great tutorial for beginners called "Armoring Linux" that I got as a link from a good friend, and I hope this will help you also:

    http://www.enteract.com/~lspitz/linux.html

    Next, as you get a little more advanced , there are specific HOWTOs regarding security for you Linux box as listed on the Linux Documentation Project which is a indespensible resource:

    Security HOWTO: http://www.ibiblio.org/pub/Linux/doc...Security-HOWTO

    IPChains HOWTO: http://www.ibiblio.org/pub/Linux/doc...IPCHAINS-HOWTO

    Security QuickStart HOWTO: http://www.ibiblio.org/pub/Linux/doc...ickstart-HOWTO

    The HOWTO Index in Plain Text: http://www.ibiblio.org/pub/Linux/docs/HOWTO/

    Next, there is an in-depth guide:

    The Linux System Administers Guide: http://www.tldp.org/LDP/sag/sag-0.7.pdf

    Securing and Optimizing Red Hat Linux ver 1.3: http://www.tldp.org/LDP/solrhe/Secur...ition-v1.3.pdf

    Enjoy

  5. #5
    Add new group for trusted users. And let use "su", "sudo" and similar only for that group of peoples.
    Give man a fish and he will ask for more.
    Teach man to fish and he will never ask again.
    \"Chinese proverb\"

  6. #6
    Junior Member
    Join Date
    Sep 2001
    Posts
    6
    As a follow-up, guard-dog is a very good GUI frontend to iptables for newbies to the whole ipchains, etc.

  7. #7
    Senior Member
    Join Date
    Apr 2002
    Posts
    634
    You can use Bastille which is a not really a GUI firewall but an easy to use script (with a GUI) in order to secure your Linux (and not only your firewall).
    go on http://www.bastille-linux.org/
    Life is boring. Play NetHack... --more--

  8. #8
    Senior Member
    Join Date
    Apr 2002
    Posts
    317
    For Antivirus software on a *nix machine I'd have to recommend Kaspersky's AV Suite.

    For firewall config, I'd recommend IPTables. View Str34m3r's tut on how to set it up w/ ease : http://www.antionline.com/showthread...light=IPTables

    Stateful firewalling is definitely a worth while endeavor..

    Regards and good luck
    \"I believe that you can reach the point where there is no longer any difference between developing the habit of pretending to believe and developing the habit of believing.\"


  9. #9
    Senior Member
    Join Date
    Feb 2002
    Posts
    130
    Thanks everyone for the advice, think I have enough to be going on with for a while, quite a long while infact. Anyway at the moment the *nix box is very secure, I can't manage to set up the network config to recognise the cable modem on the USB port, had to come back onto the 2000 pro box to even get on the net. Its going to be one of those days, lol

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •