LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Linux - Security (http://www.linuxquestions.org/questions/linux-security-4/)
-   -   Security S/W Recommendations (http://www.linuxquestions.org/questions/linux-security-4/security-s-w-recommendations-491932/)

JonBL 10-12-2006 08:50 PM

Security S/W Recommendations
 
I'm considering installing a Linux system (probably Red Hat) for use with home internet banking and the like. (We presently use a WinXP system for this purpose - with all the usual security stuff installed - but I just don't feel comfortable about it...)

I'm not as familiar with Linux security products as I am with those for WinXP. Are there Linux versions of key-logging detectors, antivirus products and the like? Or isn't such S/W needed on Linux systems? If they should be installed, what products do people recommend?

Many thanks for your suggestions

BrianK 10-12-2006 09:30 PM

Most of the software I know of related to what you're talking about is more for the server side of things, not necessarily the desktop. These products would probably also work for your dekstop, but would be overkill.

That said, becasue the Linux community (especially workstations) is so small, it's not often the target of mallicous attacks on a user level. The only hacking I know of is realted to taking over a machine to amke it do something else, like sending mass emails or the like.

A bit of dillegence on your part will go a long way.. Get a good, secure router. Close all inbound ports on the router. Keep ssh turned off unless you need it. Don't setup a web or ftp server on your workstation unless you need it. Chose a distro that keeps your system up to date with the latest patches/programs (most of the larger distros do). Don't run programs that you don't know anything about (you almost NEVER get a linux executable program via mallicious email like you do with Windows, but it's good advice, none the less).

Follow those rules & you should be about as secure as you can be.

JonBL 10-13-2006 04:36 AM

Thanks BrianK - I'll incorporate those suggestions into out implementation plan.

unSpawn 10-13-2006 01:33 PM

I'm considering installing a Linux system (probably Red Hat)
Then that would be either Fedora Core, cAos, RHEL or CentOS. RHL is obsolete and should not be used.


That said, becasue the Linux community (especially workstations) is so small, it's not often the target of mallicous attacks on a user level.
With all due respect, but that's not the reason.


Keep ssh turned off unless you need it.
Better harden SSH instead.


Don't setup a web or ftp server on your workstation unless you need it.
Don't run any publicly available services at all. The only services you need are those necessary to support local processes.


Follow those rules & you should be about as secure as you can be.
I still think you're missing some. While it may seem a bit unwieldy at first glance have a look at the LQ FAQ: Security references, post #1.


All times are GMT -5. The time now is 10:13 PM.