LinuxQuestions.org
Welcome to the most active Linux Forum on the web.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices



Reply
 
Search this Thread
Old 09-18-2007, 05:43 PM   #1
Linux31
Member
 
Registered: Aug 2004
Posts: 296

Rep: Reputation: 30
Firewall/Anti-Spyware SW for CentOS


I'm running CentOS 5 with the firewall engage, but not the SELinux.

How good is that firewall? Should I try another program like Bastille or Firestarter?

I've installed chrootkit and RKHunter and run them periodically but they only deal with some of the threats.

How do you protect yourself from spyware, especially when browsing?

While many/most firewalls will let you block incoming traffic from particular addresses, is there one that blocks outgoing traffic to a particular address? That would seem to be necessary as part of the protection of keeping your machine from being taken over as a zombie.

I'm still a beginner, so if a program requires a lot of config file editing, I'd probably do more harm than good.

Thanks for any information you can provide.
 
Old 09-18-2007, 05:54 PM   #2
win32sux
Guru
 
Registered: Jul 2003
Location: Los Angeles
Distribution: Ubuntu
Posts: 9,870

Rep: Reputation: 371Reputation: 371Reputation: 371Reputation: 371
Quote:
Originally Posted by Linux31 View Post
I'm running CentOS 5 with the firewall engage, but not the SELinux.

How good is that firewall? Should I try another program like Bastille or Firestarter?
I'm assuming te CentOS firewall is some kind of GUI, right? Well, in that case it's likely just a front-end to iptables. In fact, pretty much any firewall program for Linux is gonna be an iptables front-end. Nothing wrong with trying another front-end. Firestarter is quite popular and a lot of people seem to love it.

Quote:
I've installed chrootkit and RKHunter and run them periodically but they only deal with some of the threats.
Even so, they deal with a very real and dangerous threat, so it's really good that you are running them.

Quote:
How do you protect yourself from spyware, especially when browsing?
I use the NoScript extension.

Quote:
While many/most firewalls will let you block incoming traffic from particular addresses, is there one that blocks outgoing traffic to a particular address? That would seem to be necessary as part of the protection of keeping your machine from being taken over as a zombie.
All of this can be done with iptables, so in theory you should be able to do it with any decent iptables front-end. I just took a look at some screenshots on the Firestarter website and it looks like it would do just fine in this aspect.
 
Old 09-19-2007, 06:06 PM   #3
Linux31
Member
 
Registered: Aug 2004
Posts: 296

Original Poster
Rep: Reputation: 30
Thanks so much for all of the detailed information. I'll see about adding that Noscripts and also getting Firestarter.
 
  


Reply

Tags
centos, firestarter, firewall, spyware, zombie


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
LXer: Microsoft Anti-Spyware Deleting Norton Anti-Virus LXer Syndicated Linux News 0 02-13-2006 05:31 AM
On spyware vs anti-spyware primo General 0 11-11-2005 11:28 PM
Firewall, Anti-Spyware and Antivirus for Debian Mondus Linux - Security 5 08-24-2005 07:16 PM
Anti-Virus/Firewall/Spyware ClericPreston Linux - Newbie 16 05-25-2005 04:43 PM
Anti-Virus/Firewall/Spyware ClericPreston Linux - Newbie 2 07-01-2004 05:42 PM


All times are GMT -5. The time now is 01:21 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration