LITTLEBLACKDOG.COM

Moderator Joined: 05 Dec 2000 Posts: 5941 Location: USA

Are there any simple Linux security tutorials out there ... the little I know revolves around ZoneAlarm and that other OS ... just want to surf, check e-mail, and game like I'm used to in that other OS ... for now ...

September 11, 2001

Edited by - squito on 10/03/2001 00:55:06

Moderator Joined: 26 May 2001 Posts: 8155 Location: Borneo

Bastille on mandrake(and maybe on redhat too)

it is an hardening script. You call it as root with
#InteractiveBastille

Moderator Joined: 05 Dec 2000 Posts: 5941 Location: USA

Quote:
Bastille on mandrake(and maybe on redhat too)

it is an hardening script. You call it as root with
#InteractiveBastille

Thank's csign ... don't recall installing it (Mandrake 8.1) ... will check it out ...

September 11, 2001

Moderator Joined: 05 Dec 2000 Posts: 5941 Location: USA

I gave the Firewalling in the Mandrake Control Center a go ... it installed the packages it needed (Bastille this and that) ... configured (not running any servers) and saved it ... I'm secure now (seems too easy) ... Question

:

September 11, 2001

Moderator Joined: 26 May 2001 Posts: 8155 Location: Borneo

Security is more a state of mind than anything else. So do as little as root as possible, don't run any services you don't need(drakxservices or ls /etc/rc5.d/S*), check what you install(where did you get it from and with rpm's did you checksum them),

and as user don't click on everything(although on *nix this is not as defestating as on windows)

Moderator Joined: 05 Dec 2000 Posts: 5941 Location: USA

Quote:
Security is more a state of mind than anything else. So do as little as root as possible, don't run any services you don't need(drakxservices or ls /etc/rc5.d/S*), check what you install(where did you get it from and with rpm's did you checksum them),

and as user don't click on everything(although on *nix this is not as defestating as on windows)

... only root when need arises ... checksums good ... will check running services ... thank you for your time ...

September 11, 2001

Moderator Joined: 26 May 2001 Posts: 8155 Location: Borneo

And something important i forgot. keep up with the security updates. That means running Mandrake Update ones a day/week.

Mandrakesoft has also an mail-alert list

Moderator Joined: 05 Dec 2000 Posts: 5941 Location: USA

I'm pretty good with the security updates ... didn't know about that mail-alert list though ... that would save me some surfin'time ... [ Very Happy

]

September 11, 2001

Moderator Joined: 26 May 2001 Posts: 8155 Location: Borneo

Quote:

I'm pretty good with the security updates ... didn't know about that mail-alert list though ... that would save me some surfin'time ... []

September 11, 2001

You don't have to surf, just run MandrakeUpdate and it will ask for an ftp site where it should get the updates from. After that every time you will start MandrakeUpdate it will look at that ftp site and if it finds update it will let you know and ask you if you want to download them. If you say yes than it will get them, check there checksum if they are really from Mandrakesoft and install them.
The only problem is kernel, That is advised to be done by hand because a borged kernel is something really nasty.
In that case download the rpm, do rpm --checksig kernel-2.4.***rpm and than install it with rpm -ivh kernel-2.4.***rpm.(MandrakeUpdate does an rpm -Uvh, that will throw the old kernel away)

Moderator Joined: 05 Dec 2000 Posts: 5941 Location: USA

Quote:
You don't have to surf, just run MandrakeUpdate and it will ask for an ftp site where it should get the updates from. After that every time you will start MandrakeUpdate it will look at that ftp site and if it finds update it will let you know and ask you if you want to download them. If you say yes than it will get them, check there checksum if they are really from Mandrakesoft and install them.
The only problem is kernel, That is advised to be done by hand because a borged kernel is something really nasty.
In that case download the rpm, do rpm --checksig kernel-2.4.***rpm and than install it with rpm -ivh kernel-2.4.***rpm.(MandrakeUpdate does an rpm -Uvh, that will throw the old kernel away)

... won't be doing anything 'till our cable is back up ... will check this out ... never got MandrakeUpdate to work well in 7.2 or 8.0 ... things are better in 8.1 ... Confused

:

September 11, 2001

Posted: Sat Oct 06, 2001 7:33 am Post subject:

the Linux System Admin HOWTO, has lots of useful info on security, and jus regular usage, check it out at http://www.linuxdoc.org , or a number of other places, good luck ..
-neural

Moderator Joined: 05 Dec 2000 Posts: 5941 Location: USA

Quote:
the Linux System Admin HOWTO, has lots of useful info on security, and jus regular usage, check it out at http://www.linuxdoc.org , or a number of other places, good luck ..
-neural

Thanks neural ... guess I should of went there first (d'oh) ... those how-to's are great ... already figured out how-to enable my identity (so I can get into the chatroom) ... w Big Smile

f !!!

September 11, 2001

Moderator Joined: 26 May 2001 Posts: 8155 Location: Borneo

The howto-html-rpm should contain them(reasonable uptodate)

Posted: Sat Oct 06, 2001 2:20 pm Post subject:

security??
I connect through a hardware firewall.Also I'm under the impression nothing gets done till there is a userid and pass entered. Am I wrong, or wide open?

Moderator Joined: 26 May 2001 Posts: 8155 Location: Borneo

A firewall is as secure as what it allows tru. It is the most secure if it doesn't let pass anything but than it would be cheaper to just cut the connection. But with security it is often wise to have safety build in. So in this case you should set your machine so up that it wouldn't need a firewall and than add the firewall as backup

Toxin wrote:

Quote:

Toxin wrote:

Quote:

Toxin wrote:

Quote:

Toxin wrote:

Quote:

Quote:

Toxin wrote:

Toxin wrote: