Linux - SecurityThis forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
I have an old pentium 3 lying around and i thought i could make some good use of it by turning it into an antivirus/firewall gateway machine. Considering Vista's kernel protection, and its finished RTM copy, such a security gateway might become very useful in the near future...
So my question is what do you guys suggest as a good distro or distro+package to put in between the net and my LAN which should takeover the role of antivirus scanning and firewalling (for infections coming from the internet side)?
Oh and this should preferably be a transparent solution... (but i guess connecting to the net through a proxy running on the gateway should also work as a last resort)...
why cant we go for iptables... it is better than ipcop rite...
iptables is only a configuration tool for netfilter (the linux firewall)... ipcop, on the other hand, is a complete gateway/firewall distro with all sorts of packages (including iptables)... so it's like comparing apples to oranges...
i thought iptables was an integral part of linux networking... but anyways, that just serves as a firewall (n my router can do that), what i need is virus scanning...
ipcop (suggested by acid_kewpie) and astaro both seem like two good options for you to test... there's also other, of course - but this is a good start IMHO...
You need the Copfilter extension, that adds real time virus scanning and spam filtering (either or both depending on how you set it up). http://copfilter.org/ However I never got much luck making copfilter working so I can't help you here, maby someone else can.
Use URLfilter to block adverts and dangerous websites, the easiest way would be to stop useing the copfilter blacklists (default) and start useing http://urlblacklist.com/ (read http://urlblacklist.com/?sec=download for a list of whats in each catagory)
To switch URLfilter over just use the option in the built in GUI. urlblacklist is NOT free but it is on the honour system so no password is needed.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.