semi-newb security questions? (and a stupid poll if you're bored)
Linux - SecurityThis forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
Distribution: Redhat 9 2.4.20-8 Athlon, Windows 2000 Professional, FreeBSD
Posts: 122
Rep:
semi-newb security questions? (and a stupid poll if you're bored)
I know a bit about networking, I also know a little about hacking/exploiting
/*
For the sake of people who don't know what hacking and/or explioting is
- Hacking : A general term refering to the act of breaking and entering (in electronic terms)
- Explioting : A method in which a vulnerability is taken advantage of (refering to the exploitation of programming errors to steal a root password)
*/
Basically what I know is that when it comes to securing your computers on the internet there are 2 types of leaks... connections which go out from your 'location', and connections which are being accepted from the internet (or 'listening sockets")
2 examples:
- an apache server running on port 80 (listening)
- a trojan application trying to connect to the outside world (resolving host)
So let me start my two questions:
// Question One
My router blocks all incoming connections apart from one to an apache server, is the router guarenteed to block all other traffic? if the router is only accessable to the internal network does that mean its brute force safe? do routers have vulnerabilities? Is my apache web server safe?, I'm using PHP and trying to be very secure.. should I be trying alot harder? Should I protect SSH?
// Question Two
For a connection to establish from within my network all a station must do is ask the dns server for a location (is that right?) could I log all non http requests? I want full control, where should I start?
Thanks.. like I said I'm semi noob, but I do know what's at stake.
(Red hat 9, newest kernal, fully upgraded? i run red carpet.. im pecimistic.. redhat wants me to pay for a subcription)
Distribution: Redhat 9 2.4.20-8 Athlon, Windows 2000 Professional, FreeBSD
Posts: 122
Original Poster
Rep:
damn forgot the poll! damn if a moderator reads this can you add this poll?
? Are you concerned about the security (or lack of ) in your system/network ?
1. Yeah, but every day I deal with it properly and effectively
2. Yeah, I think I'm doing enough but I don't know
3. Yeah, we definately lack security
4. Nah, I am not concerned about security and I have reasons
5. Nah.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.