LinuxQuestions.org
Help answer threads with 0 replies.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie
User Name
Password
Linux - Newbie This Linux forum is for members that are new to Linux.
Just starting out and have a question? If it is not in the man pages or the how-to's this is the place!

Notices


Reply
  Search this Thread
Old 01-06-2005, 05:40 PM   #1
Surfmonkey
Member
 
Registered: Nov 2003
Location: S. CA
Distribution: redhat 7.2-Fedora
Posts: 132

Rep: Reputation: 15
Linux security


I was wondering, after reading this article, that maybe I sould install a good firewall.
http://www.securitypipeline.com/news/51202581

I always thought one of the best features besides being stable, was the Linux security. Anyone have any thoughts, or software suggestions for me to protect my pc?
 
Old 01-06-2005, 06:16 PM   #2
Surfmonkey
Member
 
Registered: Nov 2003
Location: S. CA
Distribution: redhat 7.2-Fedora
Posts: 132

Original Poster
Rep: Reputation: 15
nobody?
 
Old 01-06-2005, 06:20 PM   #3
paranoid times
Member
 
Registered: Jan 2005
Distribution: Fedora Core 3, 4
Posts: 135

Rep: Reputation: 16
looks like propaganda to me. also they are running an apache server, so they couldn't be too worried about what they are talking about
http://uptime.netcraft.com/up/graph/...typipeline.com

i've never had problems with all the attacks from script kiddies that have decided to attack my machine, that and the firewall that comes with fedora works great.

Last edited by paranoid times; 01-06-2005 at 06:24 PM.
 
Old 01-06-2005, 06:23 PM   #4
Peacedog
LQ Guru
 
Registered: Sep 2003
Location: Danville, VA
Distribution: Slackware, Windows, FreeBSD, OpenBSD, Mac OS X
Posts: 5,296

Rep: Reputation: 168Reputation: 168
There are a number of security references here.

http://www.linuxquestions.org/questi...threadid=45261

You may want to look into a gui based front end for iptables like fwbuilder.

http://www.fwbuilder.org/

good luck.
 
Old 01-06-2005, 06:26 PM   #5
Surfmonkey
Member
 
Registered: Nov 2003
Location: S. CA
Distribution: redhat 7.2-Fedora
Posts: 132

Original Poster
Rep: Reputation: 15
Quote:
Originally posted by paranoid times
looks like propaganda to me. also they are running an apache server, so they couldn't be too worried about what they are talking about
http://uptime.netcraft.com/up/graph/...typipeline.com

i've never had problems with all the attacks from script kiddies that have decided to attack my machine, that and the firewall that comes with fedora works great.
Looks more like the OS they use is BSD.
http://uptime.netcraft.com/up/today/top.avg.html
1 wwwdir1.telia.com 148 1664 1706 1706 BSD/OS Apache/1.3.26 (Unix) TeliaNet
2 wwwdir.telia.com 205 1659 1824 1704 BSD/OS Apache/1.3.26 (Unix) TeliaNet
3 www.lan.ne.jp 314 1608 1652 1653 FreeBSD Apache/1.2.6 Japan Telenet LTD
4 www.ehokenstore.com 330 1491 1535 1536 BSD/OS Oracle_Web_Listener/4.0.8.1.0EnterpriseEdition Japan Network Information Center
5 www.eol.ee 312 1416 1460 1461 FreeBSD Apache/1.2.5 Uninet servers
6 www.hs.sll.se 321 1401 1445 1446 FreeBSD Apache/1.3.6 Ben-SSL/1.32 (Unix) IBM-corner
7 dermis.hs.se 243 1401 1445 1446 FreeBSD Apache/1.3.6 Ben-SSL/1.32 (Unix) IBM-corner
8 solo.merita.fi 315 1385 1429 1430 BSD/OS TANTAU Application Server/2.1.1 Union Bank of Finland Ltd
9 solo.nordea.fi 321 1385 1429 1430 BSD/OS TANTAU Application Server/2.1.1 Union Bank of Finland Ltd
10 b1.bestsystems.net 187 1375 1420 1420 FreeBSD Apache/1.3.33 (Unix) PHP/3.0.18-i18n-ja-3 Isle, inc
11 www.ampr.org 129 1310 1327 1328 BSD/OS Apache/1.3.26 (Unix) University of California, San Diego
12 www.kanezawa.co.jp 255 1188 1235 1235 FreeBSD Apache/1.3.33 (Unix) Isle, inc
13 www.icard.com.hk 314 1163 1541 20 BSD/OS Apache/1.3.6 (Unix) HKNet Company Ltd.
14 www.yoshihara.co.jp 315 1081 1372 24 BSD/OS Apache IIJ Internet
15 www.wicona.de 313 1079 1123 1124 Windows 2000 Apache Deutsche Telekom AG
16 www.necmagnus.com 194 1059 1373 28 BSD/OS Apache IIJ Internet
17 www.bloom.co.jp 253 1051 1373 28 BSD/OS Apache IIJ Internet
18 www.e-energy.co.jp 275 1049 1373 28 BSD/OS Apache IIJ Internet
19 www.mals.jp 282 1048 1372 28 BSD/OS Apache IIJ Internet
20 www.fintec.co.jp 250 1044 1373 28 BSD/OS Apache IIJ Internet
21 www.oarks.co.jp 184 1035 1373 29 BSD/OS Apache IIJ Internet
22 www.logic-research.co.jp 264 1033 1372 28 BSD/OS Apache IIJ Internet
23 sv10.isle.ne.jp 275 1031 1075 1076 FreeBSD Apache/1.3.33 (Unix) PHP/3.0.18-i18n-ja-3 Isle, inc
24 selfnet.ne.jp 165 1031 1075 1076 FreeBSD Apache/1.3.33 (Unix) PHP/3.0.18-i18n-ja-3 Isle, inc
25 www.pof.or.jp 284 1031 1075 1076 FreeBSD Apache/1.3.33 (Unix) PHP/3.0.18-i18n-ja-3 Isle, inc
26 www.dsup.co.jp 260 1028 1373 28 BSD/OS Apache IIJ Internet
27 www.market.co.jp 97 1027 1373 28 BSD/OS Apache IIJ Internet
28 www.sigmalab.co.jp 266 1027 1372 29 BSD/OS Apache IIJ Internet
29 www.patchcare.jp 116 1024 1373 29 BSD/OS Apache IIJ Internet
30 www.ldschurch.jp 117 1013 1373 29 BSD/OS Apache IIJ Internet
31 www.seil.jp 114 1013 1373 29 BSD/OS Apache IIJ Internet
32 www.fukuju.co.jp 327 1012 1372 29 BSD/OS Apache IIJ Internet
33 www.linksys.co.jp 312 1012 1372 28 BSD/OS Apache IIJ Internet
34 www.mex.go.jp 373 1009 1372 29 BSD/OS Apache IIJ Internet
35 www.nhk-ed.co.jp 369 1009 1372 29 BSD/OS Apache IIJ Internet
36 solution.iij.ad.jp 126 1009 1372 29 BSD/OS Apache IIJ Internet
37 www.eandm.co.jp 371 1009 1372 29 BSD/OS Apache IIJ Internet
38 www.aisin-aw.co.jp 315 1008 1372 29 BSD/OS Apache IIJ Internet
39 www.rolandberger.co.jp 280 1008 1372 29 BSD/OS Apache IIJ Internet
40 www.archives.go.jp 317 1008 1372 29 BSD/OS Apache IIJ Internet
41 www.ask-corp.co.jp 311 1008 1372 29 BSD/OS Apache IIJ Internet
42 www.nhk-ts.co.jp 318 1008 1372 29 BSD/OS Apache IIJ Internet
43 www.digital-staff.co.jp 311 1008 1372 29 BSD/OS Apache IIJ Internet
44 www.aplus.co.jp 303 1008 1372 29 BSD/OS Apache IIJ Internet
45 www.chuosystem.co.jp 316 1008 1372 29 BSD/OS Apache IIJ Internet
46 www.dbgroup.co.jp 290 1008 1372 29 BSD/OS Apache IIJ Internet
47 www.studio-ego.co.jp 317 1008 1372 29 BSD/OS Apache IIJ Internet
48 www.tnc.co.jp 301 1008 1372 29 BSD/OS Apache IIJ Internet
49 www.aosyn.co.jp 294 1008 1372 29 BSD/OS Apache IIJ Internet
50 www.xpiral.co.jp 321 1008 1372 29 BSD/OS Apache IIJ Internet
 
Old 01-06-2005, 06:32 PM   #6
paranoid times
Member
 
Registered: Jan 2005
Distribution: Fedora Core 3, 4
Posts: 135

Rep: Reputation: 16
but www.securitypipeline.com isn't anywhere in the longest running sites list. though it is quite true that BSD servers stay up longer than any others, but www.securitypipeline.com is running a solaris OS.
 
Old 01-06-2005, 06:44 PM   #7
Surfmonkey
Member
 
Registered: Nov 2003
Location: S. CA
Distribution: redhat 7.2-Fedora
Posts: 132

Original Poster
Rep: Reputation: 15
Quote:
Originally posted by paranoid times
but www.securitypipeline.com isn't anywhere in the longest running sites list. though it is quite true that BSD servers stay up longer than any others, but www.securitypipeline.com is running a solaris OS.
now, how can I make my Fedora Core 1 bullet proof?

also, is an antivirus or adaware type program a good idea with linux?
 
Old 01-06-2005, 06:49 PM   #8
paranoid times
Member
 
Registered: Jan 2005
Distribution: Fedora Core 3, 4
Posts: 135

Rep: Reputation: 16
i've been running different distros of linux for the past 5 or so years, and when it comes to adware, spyware, and all asortments of viruses I've never had problems. I will sometimes get a virus as an email attachment, and I click on them, and try to get them to run, I'm always sad to find out that they don't. So when it comes to adware, and viruses Linux isn't prone to them.
 
Old 01-06-2005, 07:05 PM   #9
Surfmonkey
Member
 
Registered: Nov 2003
Location: S. CA
Distribution: redhat 7.2-Fedora
Posts: 132

Original Poster
Rep: Reputation: 15
Quote:
Originally posted by paranoid times
i've been running different distros of linux for the past 5 or so years, and when it comes to adware, spyware, and all asortments of viruses I've never had problems. I will sometimes get a virus as an email attachment, and I click on them, and try to get them to run, I'm always sad to find out that they don't. So when it comes to adware, and viruses Linux isn't prone to them.
Thank you PT
 
Old 01-06-2005, 07:09 PM   #10
paranoid times
Member
 
Registered: Jan 2005
Distribution: Fedora Core 3, 4
Posts: 135

Rep: Reputation: 16
glad I could be of use.
 
Old 01-06-2005, 07:42 PM   #11
tamoneya
Member
 
Registered: Jan 2005
Location: MA
Distribution: Ubuntu 7.10
Posts: 558

Rep: Reputation: 30
small target

One of the main reasons people say linux is more secure is that it is not a big target for hackers. You can infect more computers if you write for a windows operationg system(and it uses IE).
 
Old 01-06-2005, 07:51 PM   #12
paranoid times
Member
 
Registered: Jan 2005
Distribution: Fedora Core 3, 4
Posts: 135

Rep: Reputation: 16
i've heard that, and it does make sense to a degree. however I have also heard of many attempts at viruses being made to attack Linux, their being highly unsuccessful. Linux generally keeps itself safe from viruses by how it is put together. to do any real damage you would need root access, and under normal circumstances you wouldn't be answering mail as root, and it isn't very easy to get root access without a password while a system is up. so I find it fairly safe from viruses. however you are right that if there were more linux users that there would be more crackers trying to break into their systems. thus the number of attacks would go up. and the number that actually do something, would also rise. although I haven't heard of much activity in linux systems that have been broken into without very clever attacks, even though the number of linux users is on the rise. have I just been missing out on information?
 
Old 01-06-2005, 08:25 PM   #13
macnut
LQ Newbie
 
Registered: Sep 2004
Posts: 18

Rep: Reputation: 0
You really don't need to worry too much about a firewall, what you DO need to worry about is making sure your applications are properly updated and patched. Script kiddies take advantage of well known security holes in application like Apache, OpenSSH and whatnot. But these vulnerabilities are usually found and patched quickly, usually hours after they are found, but not everyone applies the updates and patches.

You need to find out how Fedora applies updates and patches, and run that process regularly. That's the main way to avoid having your machine hacked.
 
Old 01-07-2005, 12:55 AM   #14
Surfmonkey
Member
 
Registered: Nov 2003
Location: S. CA
Distribution: redhat 7.2-Fedora
Posts: 132

Original Poster
Rep: Reputation: 15
thanks again everyone
 
Old 01-07-2005, 05:20 AM   #15
scuzzman
Senior Member
 
Registered: May 2004
Location: Hilliard, Ohio, USA
Distribution: Slackware, Kubuntu
Posts: 1,851

Rep: Reputation: 47
Whoever says you don't need a firewall is incorrect, sorry to say. Sure, you can be safe by keeping up with security patches, but before a bug is fixed it must be documented... You want to be the one to fall victim to a bug known only to a small group of people?

Now, most linux firewalls are simply front ends for iptables. I use GuardDog, and it's the best I've found.
Very easy to configure, very powerful, and well documented. You can get it here if interested, docs are here.

Enjoy.

Last edited by scuzzman; 01-07-2005 at 05:21 AM.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
help needed in security ,vonarabilities ,loopholes in linux security haseebnazar Linux - Security 2 11-23-2005 07:16 PM
[Security Questions] Last Login, how good is this feature for security breach info? t3gah Linux - Security 2 06-14-2005 01:02 AM
linux security hariiyer Linux - Security 8 06-01-2005 11:42 PM
todays requirements regarding security (not limited to linux security) markus1982 Linux - Security 8 04-25-2004 10:58 PM
Linux security Vs Windows security keene General 50 11-01-2003 11:22 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie

All times are GMT -5. The time now is 12:05 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration