LinuxQuestions.org
Latest LQ Deal: Linux Power User Bundle
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie
User Name
Password
Linux - Newbie This Linux forum is for members that are new to Linux.
Just starting out and have a question? If it is not in the man pages or the how-to's this is the place!

Notices


Reply
  Search this Thread
Old 02-23-2005, 12:00 AM   #1
Mr. Hill
Member
 
Registered: Feb 2005
Location: Pepperland
Distribution: Arch Wombat, FreeBSD Current, OpenBSD 3.7
Posts: 238

Rep: Reputation: 30
What's a good distro if I'm really paranoid about security/viruses?


Yes, I know that it's hard to get viruses on Linux, but I just ran Norton and it came up with many viruses, I officially hate Win ... now. I am now really paranoid, what distro is all about security and such? I really shouldn't be asking you guys a "What should I get..." type thread but I need to be secure. My friend said that I can also hack to get better security and that hacking through Linux is especially easy. Is this true? Thanks for the help.


I know that Linux is already secure, but this Windows thing has really gotten me worried. I need to be more secure than a paranoid crack addicted maniac aiming a shotgun at his door because he thinks that the govenment is after him! I dunno where that came from.....
 
Old 02-23-2005, 12:02 AM   #2
uman
Member
 
Registered: Sep 2004
Distribution: Gentoo
Posts: 134

Rep: Reputation: 15
You may want to check out OpenBSD. It's not really Linux but it's basically the same. If you must have Linux because your hardware doesn't work on BSD, try debian.
 
Old 02-23-2005, 12:43 AM   #3
Mr. Hill
Member
 
Registered: Feb 2005
Location: Pepperland
Distribution: Arch Wombat, FreeBSD Current, OpenBSD 3.7
Posts: 238

Original Poster
Rep: Reputation: 30
Hmm.. OK thanks I'll give it a try. I tried FreeBSD but I ultimately failed in the install. Is OpenBSD install friendly?
 
Old 02-23-2005, 12:49 AM   #4
uman
Member
 
Registered: Sep 2004
Distribution: Gentoo
Posts: 134

Rep: Reputation: 15
I dunno, never tried it. I only repeat what I've heard.
 
Old 02-23-2005, 12:52 AM   #5
cs-cam
Senior Member
 
Registered: May 2004
Location: Australia
Distribution: Gentoo
Posts: 3,544
Blog Entries: 4

Rep: Reputation: 57
As someone around here put so well, system security is sitting in the chair in front of the keyboard

Give OpenBSD a go, since you're a distro slut (<- meant jokingly) I reckon you should just sit down one weekend morning and not get up until either you have to pee or OpenBSD is installed. If you have two computers have the other one booted into Windows with the OpenBSD installation instructions in front of you.

OpenBSD is a lot different from any linux installation I've ever done but the docs are good and if you just follow their partition scheme until you get the hang of it you'll be fine

Last edited by cs-cam; 02-23-2005 at 12:53 AM.
 
Old 02-23-2005, 01:11 AM   #6
Mr. Hill
Member
 
Registered: Feb 2005
Location: Pepperland
Distribution: Arch Wombat, FreeBSD Current, OpenBSD 3.7
Posts: 238

Original Poster
Rep: Reputation: 30
eep, I hope this is easier than FreeBSD, because I just got mad when it said it couldn't write to my drive and I was doing everything right. Created root, swap, and main partitions. Ack, hope Open isn't like that. Tis true about being a distro whore, I'll try anything. I'll give Open a go and if it doesn't work I'll put on Debian. Thanks for the advice.

Eh, guess I'll just have to try it out first hand to see how it works. Thanks again.

Last edited by Mr. Hill; 02-23-2005 at 01:23 AM.
 
Old 02-23-2005, 01:27 AM   #7
cs-cam
Senior Member
 
Registered: May 2004
Location: Australia
Distribution: Gentoo
Posts: 3,544
Blog Entries: 4

Rep: Reputation: 57
Nah OpenBSD is pretty easy with the documentation in front of you. I managed to get a system up and running pretty quickly but I must have stuffed up my keyboard layout somewhere or something because it was all screwy
 
Old 02-23-2005, 06:39 AM   #8
scuzzman
Senior Member
 
Registered: May 2004
Location: Hilliard, Ohio, USA
Distribution: Slackware, Kubuntu
Posts: 1,851

Rep: Reputation: 47
As for virii/etc go, you haven't a worry. There aren't many Linux/*BSD/*NIX virii in existence, let alone active ones. But you will want to take a look at a good firewall (most likely just an iptables frontend).
Security exists between the chair and keyboard.
 
Old 02-23-2005, 06:35 PM   #9
jschiwal
LQ Guru
 
Registered: Aug 2001
Location: Fargo, ND
Distribution: SuSE AMD64
Posts: 15,733

Rep: Reputation: 671Reputation: 671Reputation: 671Reputation: 671Reputation: 671Reputation: 671
You might want to look at SELinux. It uses the NSA kernel extensions. Some of the main distro's offer it also. (Mandrake, SuSE, FC, Debian)

In linux, you need to be more worried about hackers than viruses.
Typically, they either will guess a password, or get a service to crash to gain access to your system.

There are a couple of programs that can check for root-kits. These are left behind by hackers to use to gain root access, or to provide a backdoor to your system. Also, there are web-sites dedicated solely to security that you may want to browse through.
 
Old 02-23-2005, 06:39 PM   #10
Mr. Hill
Member
 
Registered: Feb 2005
Location: Pepperland
Distribution: Arch Wombat, FreeBSD Current, OpenBSD 3.7
Posts: 238

Original Poster
Rep: Reputation: 30
eep, forgot about the hackers or (excuse the racial slure) "Crackers". I don't want my computer cracked either, hopefully a BSD will protect against this and I'll get a high firewall and browse those security sites. Thanks for the tips, hopefully I'll be prepared if someone trys to get into my system.
 
Old 02-23-2005, 08:24 PM   #11
btmiller
Senior Member
 
Registered: May 2004
Location: In the DC 'burbs
Distribution: Arch, Scientific Linux, Debian, Ubuntu
Posts: 4,284

Rep: Reputation: 371Reputation: 371Reputation: 371Reputation: 371
Remember, security isn't a one time thing. You can't just install a system, connect it to the Internet (or any nontrusted network), and expect it to be secure. You'll need to apply security patches when they come out, upgrade when need be, etc. Security is a process as much as it is anything else.
 
Old 02-23-2005, 11:23 PM   #12
Electro
LQ Guru
 
Registered: Jan 2002
Posts: 6,042

Rep: Reputation: Disabled
I suggest go with Slackware and download the latest library, services (ftp, X11, www, pop3, imap, smtp, etc..), and kernel. Unlike other distributions, Slackware is not dependent on several RPM or DEB packages. Use Nessus to tweak the firewall. If you need a GUI representation of a firewall, use Firewall Builder.

The best way to know how to protect yourself from hackers and crackers is to buy a few hacking books. This means being a hacker yourself.

Using a hardware firewall that you can get from consumer routers is enough to block most hackers from entering into your network. I installed Linux about a year or two ago and I have not update the services although I used a router brand that is a family of Linksys.
 
Old 02-23-2005, 11:59 PM   #13
sh1ft
Member
 
Registered: Feb 2004
Location: Ottawa, Ontario, Can
Distribution: Slackware, ubuntu
Posts: 391

Rep: Reputation: 31
Slackware, Debian or Gentoo would be good because you know better what exactly is going on in your system and they're a little more standard if that makes any sense. SELinux isn't worth the trouble unless your running a coporate server or some such imo. So long as your not running sshd or other servers your fine, just read up on iptables and make strong passwords. Unless you do something that would cause someone to target you specifically you shouldn't worry so much.

If your REAL paranoid you could use encrypted filesystems. Lots of good howtos on the gentoo forums. But again seems very pointless unless your running a free shell service with tons of users or something. Just worry about them getting local user access to your machine, once that happens its pretty much game over. Alot harder to take over a system when your not already a user on it.

Last edited by sh1ft; 02-24-2005 at 12:02 AM.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Good distro for security interested newb digital_nite Linux - Newbie 3 09-22-2005 05:36 PM
Paranoid Data Security!! elliotfuller Linux - Networking 3 08-26-2005 01:46 AM
Maxiumum (paranoid) security LGMike Mandriva 3 09-25-2003 01:27 AM
Paranoid security raybcher Linux - Security 3 08-29-2003 08:54 AM
Viruses and Security KDE4me Linux - Newbie 7 05-24-2003 10:06 PM


All times are GMT -5. The time now is 09:27 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration