Hey, recently installed ubuntu on a virtual machine, (may swap to mandriva in the near future). I've been a windows user for about 6 years, am a os x beginner, now experimenting with linux, i am lost for what i need to do to secure linux on my computer.

Is the virtual machine exposed to the network ? ... (bridged mode)

Hi,

what do you exactly mean by securing linux on your computer? Do want to run a server? Or do you just want to use it as your every day working OS?
I have been using Ubuntu as my working OS for some years now. After installation there are no further steps necessary like installing a firewall or something like antivirus protection. Haven't encountered any problems (regarding security) yet.
So, simply install and start working.

Or do you mean securing like encrypting filesystems?

PS: I have linux installed on a hard drive. Not sure if there are security issues if you run it in a virtual machine under windows - never done that. Am I assuming correct that you do this only for testing purposes and intent to do a real install at a later point or do you want to keep it in a virtual machine? Maybe because you only need it for a few specific programs to run?

In case you need to patch the Kernel Vulnerabilities, i'd suggest Ksplice-Uptrack Manager.....

It's for the everyday OS purpose. i run it in a virtual machine because it's convenient to have more than one os running at once, but also because i'm still experimenting and deciding on wether i would benefit from making a partition for it. I mean do i have to do anything to protect my system from malware, spyware, adware, viruses ect. Pretty much what a person would normally have to do for a windows operating computer. Or is their anything else that i should know that's not in windows but is in linux that may be harmful or jeopardize my privacy.

No, as I said just install and start using it. No additional "third party baggage" is
needed.
The only thing is to install the updates. But that happens automatically. Every couple of days the update manager will pop-up and inform you about available updates that can be downloaded. This procedure takes usually a minute or two. Except for the first time. After a fresh install there will be probably a lot of updates available. Installation of those updates will take a bit longer.

If you choose to install Linux permanently you will also notice that it just won't slow down with time like windows does. No matter how many programs you have installed boot time will stay low. No need to defrag or reinstall every few months.
As I said, there *might* be some attack possibilities through the host system if you run it in a virtual machine. So if you come to like a specific distro you should install it.

Moved: This thread is more suitable in <Linux-Security> and has been moved accordingly to help your thread/question get the exposure it deserves.

Thanks guys for the info and moving the page. I can't believe linux doesn't need any protection.. Huh! guess i've become to conditioned to the windows environment. Just another question, is all the previous advice relevant to all distros

It's good that you don't believe that, because it's right up there with unicorns and pixie dust. Unless you've got like zero security requirements/desires, there will always be measures to take on any system.

3 members found this post helpful.

I did not mean my post to be understood that Linux is impenetrable. As I said, for everyday use you do not have to go through the ordeal that you have to with windows. I know that there are virus scanners for linux. But I have never had a virus with linux. With windows it was sufficient to go online before the virus scanner was installed and the system was infected within seconds.

@OP: One thing you probably want to do is to check your browser settings. Disable features like javascript if you intend to browse websites that you do not trust. Also disable cookies and only explicitly allow them for sites that you trust. Assuming that you will probably use firefox as your standard browser check out this site:
http://www.zdnet.com/photos/securing...get-photo-roto

The best way to minimize the risk of catching malware through your browser, though, is to be careful which sites you visit.

If anyone has some more suggestions on what one can actively do to make the system more secure then I am all ears. And please, not just vague statements like there is no absolute security. That's just stating the obvious.

A good place to get a feel for things is the sticky at the top of this forum. That said, it would be foolish to start churning out security measures without first understanding what you're trying to defend against. All our security needs are different.

1 members found this post helpful.

Try out iptables, very nice tool to use