LinuxQuestions.org
Review your favorite Linux distribution.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie
User Name
Password
Linux - Newbie This Linux forum is for members that are new to Linux.
Just starting out and have a question? If it is not in the man pages or the how-to's this is the place!

Notices


Reply
  Search this Thread
Old 12-16-2002, 09:39 AM   #1
boomtown
LQ Newbie
 
Registered: Dec 2002
Posts: 2

Rep: Reputation: 0
Locking down Mandrake workstation


Can someone please let me know the best way to lock down a Mandrake 8.2 workstation? We are using it for a web browsing station only and need to restrict access to one web site using Konqueror (or someting else if you recommend it). Thank you.
 
Old 12-16-2002, 11:48 AM   #2
tangle
Senior Member
 
Registered: Apr 2002
Location: Smithville, TN
Distribution: Slackware
Posts: 1,745

Rep: Reputation: 71
I was wondering the same thing.

I am on dial up and took the 5 hour to do the automatic update. After that I used it for a router and setup a blocked all ports except http, https and ssh. After having updated another PC, I found that someone hacked my server that I used as a router. He made an account called preman, the removed most privilages that root had and change permmissions on a lot of files.
 
Old 12-16-2002, 12:07 PM   #3
unSpawn
Moderator
 
Registered: May 2001
Posts: 29,332
Blog Entries: 55

Rep: Reputation: 3533Reputation: 3533Reputation: 3533Reputation: 3533Reputation: 3533Reputation: 3533Reputation: 3533Reputation: 3533Reputation: 3533Reputation: 3533Reputation: 3533
Re: Locking down Mandrake workstation

Quote:
Originally posted by boomtown
Can someone please let me know the best way to lock down a Mandrake 8.2 workstation? We are using it for a web browsing station only and need to restrict access to one web site using Konqueror (or someting else if you recommend it). Thank you.
I would recommend using Opera in kiosk-mode with enabled filter.ini.
Should be something like this (untested):
; filter.ini
; This file is part of the Opera browser.

[prefs]
prioritize excludelist=0

[include]
http://the.site.youwanttogo.to

[exclude]
*
 
Old 12-16-2002, 12:19 PM   #4
unSpawn
Moderator
 
Registered: May 2001
Posts: 29,332
Blog Entries: 55

Rep: Reputation: 3533Reputation: 3533Reputation: 3533Reputation: 3533Reputation: 3533Reputation: 3533Reputation: 3533Reputation: 3533Reputation: 3533Reputation: 3533Reputation: 3533
Quote:
Originally posted by tangle
I was wondering the same thing.

I am on dial up and took the 5 hour to do the automatic update. After that I used it for a router and setup a blocked all ports except http, https and ssh. After having updated another PC, I found that someone hacked my server that I used as a router. He made an account called preman, the removed most privilages that root had and change permmissions on a lot of files.
Please make your own thread for your questions. This way your question will get the attention it deserves.

Take it as a rule of thumb to *not* run daemons on your router but on boxes behind it: sounds stupid, but a router routes, and a server serves.
If you want some clues about upgrading security (after you formatted the router box and installed from scratch) try removing all software not necessary for running it as a router, run Bastille-linux to tighten security and read on:
Basic references:
- AUSCERT UNIX Computer Security Checklist (Version 1.1) www.cert.org/tech_tips/AUSCERT_checklist1.1
- Steps for Recovering from a UNIX or NT System Compromise www.cert.org/tech_tips/root_compromise.html
In fact read the whole of http://www.cert.org/tech_tips/
- The CIT Computer Security Handbook: www.cit.nih.gov/security/handbook.html
- Aging stuff from Phrack, good to read back to be sure, like "Unix System Security Issues" www.fc.net/phrack/files/p18/p18-7.html
- SEI stuff like www.sei.cmu.edu/publications/lists.html handling IDS
- Intrusion Detection and Network Auditing on the Internet www.infosyssec.net/infosyssec/intdet1.htm

Top it off with some reading material on security:
- Security tips: www.cert.org/tech_tips/ and www.cert.org/security-improvement/, http://www.securityportal.com/resear...xsecurity.html
- Top ten vulnerabilities: www.sans.org/topten.htm and http://www.cert.org/present/cert-ove...ends/index.htm
- Firewalling: www.infosyssec.net/infosyssec/firew1.htm, www.linux-firewall-tools.com/linux/
- Securing Xwindows: http://www.uwsg.indiana.edu/usail/ex...d/xsecure.html

Basic Linux references:
http://www.sans.org/infosecFAQ/linux/linux_list.htm
- The SANS Reading room: Linux issues (used Google's cache),
- the LASG or Linux Administrator's Security Guide,
- Securing Optimizing Linux RH Edition(1),
- Linux Security HOWTO,
*Linuxsecurity.com have a Quickreference pdf card.
Post-Installation Security Procedures (Linuxjournal)
- Security Quick-Start HOWTO for Linux,
- The Linux-PAM System Administrators' Guide
- Armoring Linux,
- A Short Course on Systems Administration and Security Under Unix(1)
- SAG: The Linux System Administrator's Guide,
- Basics on firewalling: www.linuxdoc.org/HOWTO/Firewall-HOWTO.html
- Basic introduction to building ipchains rules: www.linuxdoc.org/HOWTO/IPCHAINS-HOWTO.html
- Explanation of the Ipchains logformat: logi.cc/linux/ipchains-log-format.php3
- Ipchains log decoder: dsl081-056-052.dsl-isp.net/dmn/decoder/decode.php
- The Iptables HOW-TO: http://people.unix-fu.org/andreasson/index.html
- LQ notes on Linksys security: http://www.linuxquestions.org/questi...007#post157007
- The Unix Auditor's Practical Handbook: http://www.nii.co.in/tuaph.html,
Neohapsis archives: http://www.neohapsis.com
Linux Gazette: http://www.linuxgazette.com
Experts exchange: http://www.experts-exchange.com
Linuxsecurity.com, SecurityFocus.com
Matt's Unix Security Page: http://www.deter.com/unix/
IRIA: http://www.ists.dartmouth.edu/IRIA/k...base/index.htm
E-secure-db Security Information database: http://www.e-secure-db.us/dscgi/ds.p...ollection-1586
eBCVG.com's security portal: http://www.ebcvg.com/info.php
Jay Beale's docs (Bastille-linux/CIS): http://www.bastille-linux.org/jay/se...icles-jjb.html
 
Old 12-16-2002, 12:22 PM   #5
boomtown
LQ Newbie
 
Registered: Dec 2002
Posts: 2

Original Poster
Rep: Reputation: 0
Thank you, I'll start with that!
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Mandrake 10 + VMWare Workstation 4 help! AngelicCharon Mandriva 9 05-08-2005 08:15 AM
novell client on a mandrake workstation sebasjuh Mandriva 1 10-19-2004 01:57 PM
mandrake 10...locking up during install! neon2k2 Linux - Newbie 6 08-16-2004 12:37 PM
Mandrake 10 error in VMWare Workstation Tryxl Linux - Software 1 03-23-2004 11:28 AM
locking up while installing Mandrake 9.1 Dakota Linux - Newbie 2 07-02-2003 07:51 PM


All times are GMT -5. The time now is 08:03 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration