Linux - GeneralThis Linux forum is for general Linux questions and discussion.
If it is Linux Related and doesn't seem to fit in any other forum then this is the place.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
I am still learning Linux. Now I have several questions about setting up my server. I put a server exposed to the net for less than 24 hours before I was cracked. I have since clean installed RH 8.0 and updated it. My plan is to have a web server that I can that I can let my family upload pictures etc to. I want set up users that can do this with encryption. I have installed ssh with this system. I use putty on my other machines to test the configurations. But I have not set up any users yet. I am running behind two firewall/routers. I have port 80 nat'd to the server. It is on a separate network from the rest. I have found little help to guide me in setting up the server and the clients to be able to upload using a secure ftp program, maybe sftp?. Also I may want to set up a few virtual sites to allow other groups to view or upload files etc. Can anyone help. I have read the manual and even the book but its never clear on how the clients access the server. All help is greatly appreciated.
For ftp, I would go with pro, real secure. By chance, how did you come to find you were cracked? What was your setup, and what additional software did you apply? RH, isn't a very secure distro, and takes a bit of tweaking to get it that way, but it can be made as secure as is reasonable. Always start and finish your build all tweaks and security in place before you attach it to any network, and be sure to run an nmap on it prior to placement. Tripwire it, run the usual(bastille works fine for redhat since you are running that). Just make sure it is as you want it to be before you place it.
William,
I found out I was cracked when I got up in the morning and my switch lights were going crazy. Lots of traffic. Well I checked to see what was running on the machine and got the program that was flooding the network. I cannot remember the name today but I did a search for it and I found that it was a trojan. Any way at that time I was running RH 7.2 with WU-FTP. I had most ports open and did little to write any chains or else. Now I am using the Dlink router as a gate, and Mikrotik as the next firewall and router. I am having a little trouble with the Mikrotik router but will master that soon. Btw the Mikrotik router is great. I have used in the past for a masqurade gate. It's free without support. Here's a link if you are not familiar with it.
I have the http server running now. I think its relatively safe behind the routers. But what I need is some instruction on how to upload to it securley. Thanks. jeff
Originally posted by jeffpoulsen William,
I found out I was cracked when I got up in the morning and my switch lights were going crazy. Lots of traffic. Well I checked to see what was running on the machine and got the program that was flooding the network. I cannot remember the name today but I did a search for it and I found that it was a trojan. Any way at that time I was running RH 7.2 with WU-FTP. I had most ports open and did little to write any chains or else. Now I am using the Dlink router as a gate, and Mikrotik as the next firewall and router. I am having a little trouble with the Mikrotik router but will master that soon. Btw the Mikrotik router is great. I have used in the past for a masqurade gate. It's free without support. Here's a link if you are not familiar with it.
I have the http server running now. I think its relatively safe behind the routers. But what I need is some instruction on how to upload to it securley. Thanks. jeff
I would definately avoid washington ftp, and make sure to set everything up right before you drop it on the net. Since you are running 7.2, bastille would be just right for you. Sorry to hear that mate. Be sure to wipe the drive, then rebuild offline. proFTP also.
BTW, are you running this as a full box, or just as a server. If it is just as a server, you might be better off using one of the distros that is specific to the task. The less services you are running, the more inherently secure the system.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.