LinuxQuestions.org
Help answer threads with 0 replies.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Software
User Name
Password
Linux - Software This forum is for Software issues.
Having a problem installing a new program? Want to know which application is best for the job? Post your question in this forum.

Notices

Reply
 
Search this Thread
Old 11-02-2003, 10:47 AM   #1
sschreiner72
LQ Newbie
 
Registered: Nov 2003
Posts: 2

Rep: Reputation: 0
BEST firewall and virus protection for Linux


1st time user using Mandrake 9.1.

I want locked downed security and good virus protection.
 
Old 11-02-2003, 11:06 AM   #2
spurious
Member
 
Registered: Apr 2003
Location: Vancouver, BC
Distribution: Slackware, Ubuntu
Posts: 558

Rep: Reputation: 31
The Linux kernel has an integrated firewall module called iptables, by netfilter. Mandrake would have this installed by default. You use iptables to accept, reject or forward tcp/udp ports, and you also use it for network address translation (NAT) and ip masquerading.

However, iptables is commonly scripted by hand. Mine, for example, blocks out everything except for port 22 (used by ssh). On Red Hat and Mandrake, the iptables script is found under /etc/init.d

Fortunately, there are tools to help iptables configuration. These were suggested on a different thread:

firestarter
jay's firewall script

There are others, such as shorewall, guarddog, lokkit; but, bear in mind that all of these tools essentially perform the same goal of configuring your iptables script (which can be done manually too).

If you are interested in checking out an example of an iptables script, see this thread by mychl.
 
Old 11-02-2003, 11:20 AM   #3
sschreiner72
LQ Newbie
 
Registered: Nov 2003
Posts: 2

Original Poster
Rep: Reputation: 0
Thank you, awesome info. Do you have a suggestion on virus protection?
 
Old 11-02-2003, 11:34 AM   #4
shanenin
Member
 
Registered: Aug 2003
Location: Rochester, MN, U.S.A
Distribution: Gentoo
Posts: 987

Rep: Reputation: 30
How come I don't have /etc/init.d ? My script is saved at /etc/rc.d/rc.firewall.

what is the difference? I am asking not to argue but to understand better.
 
Old 11-02-2003, 01:02 PM   #5
ceedeedoos
Member
 
Registered: Aug 2003
Location: Antwerp, Belgium
Distribution: Slackware 10.0, Mandrake 10.1
Posts: 174

Rep: Reputation: 34
you are probably referring to your slackware installation, and no it doesn't have /etc/init.d
that's because slackware uses BSD startup scripts instead of SysV ...

if rc.firewall on your system is what it is on my system, then it's a firewall script and should do the job just fine if you load it up

Last edited by ceedeedoos; 11-02-2003 at 01:04 PM.
 
Old 11-02-2003, 01:27 PM   #6
php
Member
 
Registered: Jun 2001
Location: USA
Distribution: Slackware
Posts: 825

Rep: Reputation: 30
There is very little virii created for *nix compared to Windows. I wouldn't worry about it.
 
Old 11-02-2003, 01:28 PM   #7
spurious
Member
 
Registered: Apr 2003
Location: Vancouver, BC
Distribution: Slackware, Ubuntu
Posts: 558

Rep: Reputation: 31
sschreiner72: I've been using PCs since the Apple II+, and I have never used resident anti-virus software, even when I used Windows (from Windows 286 to Windows 98). And I wasn't shy about downloading freeware, etc. How many viruses have I been infected with? Total of two: Michelangelo (1990) and Monkey (1994).

I found that I could avoid virus/worm/spyware infection by simply adhering to certain practices such as avoiding Outlook and Internet Explorer, avoiding warez, rejecting Word/Excel attachments and refusing to install known spyware trojans (KaZaa, etc). I personally think that the whole anti-virus industry is a bit of snake-oil; the anti-virus software itself can slow down and destabilize a Windows installation on slower computers.

Fortunately, in linux there does not seem to be the same problem with viruses. Since practically all software in gnu/linux is open source, you don't need to worry about trojans as much if you avoid closed-source software.

If you want anti-virus software for linux, Kapersky has a server-side anti-virus product for Linux at $350 (presumably to protect Windows clients), but that is unnecessary for a home system. I think that the latest SuSE product includes the Kapersky anti-virus software.

There are a number of open-source solutions on freshmeat. Try searching for "anti-virus" on sourceforge as well.


shanenin: Red Hat and Mandrake keep their init scripts in a different location than with Slackware. Slackware doesn't use the /etc/init.d SysV init system that Red Hat and Mandrake use.

On Red Hat and Mandrake, the firewall script is /etc/init.d/iptables. On Slackware, it's /etc/rc.d/rc.firewall.

Of course, on any distro, alternatively you can create your own firewall script (e.g. firewall.script) and call it from rc.local (or bootmisc.sh in Debian).

Last edited by spurious; 11-02-2003 at 01:31 PM.
 
Old 11-02-2003, 01:30 PM   #8
shanenin
Member
 
Registered: Aug 2003
Location: Rochester, MN, U.S.A
Distribution: Gentoo
Posts: 987

Rep: Reputation: 30
thanks guys
 
Old 02-01-2004, 12:43 PM   #9
spurious
Member
 
Registered: Apr 2003
Location: Vancouver, BC
Distribution: Slackware, Ubuntu
Posts: 558

Rep: Reputation: 31
The recent MyDoom crisis has brought some good publicity for this GPL anti-virus software: ClamAV.

Apparently ClamAV was the first anti-virus product to develop filters for the MyDoom variants. It's intended for integration with UNIX mail servers.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Does Linux Require Virus Protection? phantom87s Linux - General 7 12-13-2008 10:31 AM
Virus protection for Linux vital_101 Linux - Security 2 09-22-2005 05:59 AM
Setting up a Debian proxy with firewall and virus protection ghanalinux Linux - Security 1 06-30-2005 10:43 AM
is there any anti-virus protection tools for Linux gexiaofei Linux - Software 4 07-26-2003 07:33 AM
Linux virus protection......wtf? Aussie General 8 03-05-2002 01:46 PM


All times are GMT -5. The time now is 11:48 AM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration