LinuxQuestions.org
Go Job Hunting at the LQ Job Marketplace
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices

Reply
 
Search this Thread
Old 10-12-2006, 07:50 PM   #1
JonBL
Member
 
Registered: Oct 2006
Location: Victoria, Australia
Distribution: Fedora 10
Posts: 124

Rep: Reputation: 15
Security S/W Recommendations


I'm considering installing a Linux system (probably Red Hat) for use with home internet banking and the like. (We presently use a WinXP system for this purpose - with all the usual security stuff installed - but I just don't feel comfortable about it...)

I'm not as familiar with Linux security products as I am with those for WinXP. Are there Linux versions of key-logging detectors, antivirus products and the like? Or isn't such S/W needed on Linux systems? If they should be installed, what products do people recommend?

Many thanks for your suggestions
 
Old 10-12-2006, 08:30 PM   #2
BrianK
Senior Member
 
Registered: Mar 2002
Location: Los Angeles, CA
Distribution: Debian, Ubuntu
Posts: 1,334

Rep: Reputation: 51
Most of the software I know of related to what you're talking about is more for the server side of things, not necessarily the desktop. These products would probably also work for your dekstop, but would be overkill.

That said, becasue the Linux community (especially workstations) is so small, it's not often the target of mallicous attacks on a user level. The only hacking I know of is realted to taking over a machine to amke it do something else, like sending mass emails or the like.

A bit of dillegence on your part will go a long way.. Get a good, secure router. Close all inbound ports on the router. Keep ssh turned off unless you need it. Don't setup a web or ftp server on your workstation unless you need it. Chose a distro that keeps your system up to date with the latest patches/programs (most of the larger distros do). Don't run programs that you don't know anything about (you almost NEVER get a linux executable program via mallicious email like you do with Windows, but it's good advice, none the less).

Follow those rules & you should be about as secure as you can be.
 
Old 10-13-2006, 03:36 AM   #3
JonBL
Member
 
Registered: Oct 2006
Location: Victoria, Australia
Distribution: Fedora 10
Posts: 124

Original Poster
Rep: Reputation: 15
Thanks BrianK - I'll incorporate those suggestions into out implementation plan.
 
Old 10-13-2006, 12:33 PM   #4
unSpawn
Moderator
 
Registered: May 2001
Posts: 27,112
Blog Entries: 54

Rep: Reputation: 2784Reputation: 2784Reputation: 2784Reputation: 2784Reputation: 2784Reputation: 2784Reputation: 2784Reputation: 2784Reputation: 2784Reputation: 2784Reputation: 2784
I'm considering installing a Linux system (probably Red Hat)
Then that would be either Fedora Core, cAos, RHEL or CentOS. RHL is obsolete and should not be used.


That said, becasue the Linux community (especially workstations) is so small, it's not often the target of mallicous attacks on a user level.
With all due respect, but that's not the reason.


Keep ssh turned off unless you need it.
Better harden SSH instead.


Don't setup a web or ftp server on your workstation unless you need it.
Don't run any publicly available services at all. The only services you need are those necessary to support local processes.


Follow those rules & you should be about as secure as you can be.
I still think you're missing some. While it may seem a bit unwieldy at first glance have a look at the LQ FAQ: Security references, post #1.
 
  


Reply

Tags
security


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
LXer: Firefox security (Really Windows Security or Lack Thereof - ED) LXer Syndicated Linux News 1 10-18-2008 09:32 PM
[Security Questions] Last Login, how good is this feature for security breach info? t3gah Linux - Security 2 06-14-2005 01:02 AM
need recommendations on security... another2 Linux - Security 3 11-11-2003 08:22 PM


All times are GMT -5. The time now is 04:32 AM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration