LinuxQuestions.org
Welcome to the most active Linux Forum on the web.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie
User Name
Password
Linux - Newbie This Linux forum is for members that are new to Linux.
Just starting out and have a question? If it is not in the man pages or the how-to's this is the place!

Notices


Reply
  Search this Thread
Old 03-18-2003, 09:31 PM   #1
linuxfond
Member
 
Registered: Jan 2003
Location: Belgium
Distribution: Mandrake 9.2
Posts: 475

Rep: Reputation: 30
Securely open ports?


Is it possible at all to have apache running, permit http, https and dns services in Guarddog, open some ports, and yet resist trojans, US militaries etc. from breaking into my PC and use weapons of little or mass distruction?

I run trojans check and see: port 80 - open - possible trojans : Executor, RingZero.

??

Last edited by linuxfond; 03-18-2003 at 09:34 PM.
 
Old 03-18-2003, 09:50 PM   #2
Crashed_Again
Senior Member
 
Registered: Dec 2002
Location: Atlantic City, NJ
Distribution: Ubuntu & Arch
Posts: 3,503

Rep: Reputation: 57
Not really. As long as you keep up to date with the newest package versions you should be fine. Opening up ports is like unlocking your door.

Are you worried that the US military is going to break into your PC or is US military a trojan name?
 
Old 03-18-2003, 10:15 PM   #3
linuxfond
Member
 
Registered: Jan 2003
Location: Belgium
Distribution: Mandrake 9.2
Posts: 475

Original Poster
Rep: Reputation: 30
Dear Crashed_Again,

You taught me HOWTO, and I did set up my web-server. Thanks.
The next thing to do is to configure properly Perl, PHP, MySQL and lots of other little things. Unfortunately my website uses all these.

I run sec.check, and, well, sec.check warns - this and that is open to an attack. How dangerous are all these possible threats? Are they layd thick by Norton, McAfee etc?

My system has all the fixes in place. I have a Guarddog, but no antivirus nor trojan blocks similar to Norton. Hope the dog blocks the trojans.

Somewhere on the CD I got Kavspersky (.sic) antivirus. I have not studied its application yet.

Regards, l
 
Old 03-18-2003, 10:19 PM   #4
Crashed_Again
Senior Member
 
Registered: Dec 2002
Location: Atlantic City, NJ
Distribution: Ubuntu & Arch
Posts: 3,503

Rep: Reputation: 57
Well its my understanding that the reason that new versions of these packages are released is to deal with known vulnerabilities. Microsoft has patches but it seems that we just fix the old package and update to the new one.

As for viruses, well thats not really a big issue in Linux. The nature of the filesystem helps against making viruses for Linux. That said, I myself downloaded the free version of f-prot and run the occasional scan(okay once a day...I'm paranoid).

I could be wrong though. There may be an all powerfull application that can guard against these trojans but if there is I've never heard of it.
 
Old 03-19-2003, 05:56 AM   #5
linuxfond
Member
 
Registered: Jan 2003
Location: Belgium
Distribution: Mandrake 9.2
Posts: 475

Original Poster
Rep: Reputation: 30
You are at all probability right. At least that's what I learnt from others and LQ.
 
Old 03-19-2003, 07:53 AM   #6
linuxfond
Member
 
Registered: Jan 2003
Location: Belgium
Distribution: Mandrake 9.2
Posts: 475

Original Poster
Rep: Reputation: 30
where is my home?

Now my home is /var/www/html
Should it better be /home/username/public_html and apache listen on port, say, 8001?
 
Old 03-19-2003, 10:24 AM   #7
Crashed_Again
Senior Member
 
Registered: Dec 2002
Location: Atlantic City, NJ
Distribution: Ubuntu & Arch
Posts: 3,503

Rep: Reputation: 57
No the default settings are fine. A good thing to do is to put /var on a sererate partition. That way if you get any sort of Denial of Service attack it will just fill up that partition and not the entire disk. Also if you change apache to listen on port 8001 then people will have to speficy that in there browsers:

http://www.fakedomain.com:8001

Kink of a pain I think.
 
Old 03-19-2003, 10:52 AM   #8
linuxfond
Member
 
Registered: Jan 2003
Location: Belgium
Distribution: Mandrake 9.2
Posts: 475

Original Poster
Rep: Reputation: 30
Thanks for a good advise. One never stops learning specially when just started.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Cannot Open Mail Server Ports 25, 110, and 220. Other Ports will open. Binxter Linux - Newbie 9 11-29-2007 03:03 AM
open ports on linksys, i have ssh open but thats it PlatinumRik Linux - Security 1 07-07-2005 11:38 AM
i need to open some ports, how can i do it? israel Linux - Software 2 08-26-2003 06:47 PM
open ports nakkaya Linux - General 2 02-05-2003 04:21 AM
Open Ports? tarballedtux Linux - Security 2 02-12-2002 02:05 AM


All times are GMT -5. The time now is 09:53 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration