Configuring Fedora correctly

[Bahal]

Can you help me in Fedora´s security Configuration??Thanks

[kr5kernel]

what exactly are you trying to do?

[Hard2eXecute]

That was a rather nebulous question.....

[Relyt]

Good Evening,

Sure can for Fedora 2 and it probably works for the original. But with the limited information you have provided I will have to make some assumptions about your install. I’m gonna assume that you completed a default install on your computer and now you want to try to improve your security on the doggon thing using the Security Level Configuration utility.

That utility will assist you in setting up a simple packet-filtering ruleset (firewall) and allow you to disable/enable various services based on your need. It will also allow you to enable or disable some network devices.

Remember your root password, you’ll need it in a minute if you are not logged in as root. From the Systems Settings menu: Start system-config-securitylevel. You’ll be prompted for the root password if you are not root. After entry of the password etc., the client window will appear. On the top it should say “Security Level Configuration”. Just below that you should see a Sentence that says: “Please choose the security level for the system”. Below that you will see: Security Level: with a drop down menu. Click on the arrow to the right and select – “Enable firewall”. In the white pane just to the right of “Trusted Services”, you should see 5 items with boxes to check or uncheck. This will enable/disable those services. Click the services you want to enable. Most likely in this scenario click in the box (to put a check mark in) adjacent to WWW(HTTP). Leave the others blank. Move down to the Trusted devices pane and click to enter or remove a device. If you are on a network, make sure a check is in the box adjacent to eth0, eth1, or which every Nic is appropriate. If you’re on a dialup with a modem that is linux friendly, it may be there as well. So if appropriate, click on it to add the check in the box. Next click on “OK”

That was the graphical firewall configuration client. If you feel adventuresome later. You can create special rulesets and restrictive polices using “lokkit” which is a console based firewall client. However at this point in time, you probably should become more familiar with what you already have and then study up on using a console or terminal window to run “lokkit”. Also you'll need to be familiar with the su command. When you are ready, here's how to get to "lokkit":

at the prompt enter: su -c /usr/sbin/lookkit

How that helps some. If not please provide more info and we’ll see what we can do!

cheers