LinuxQuestions.org
Latest LQ Deal: Latest LQ Deals
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Software
User Name
Password
Linux - Software This forum is for Software issues.
Having a problem installing a new program? Want to know which application is best for the job? Post your question in this forum.

Notices


Reply
  Search this Thread
Old 01-29-2003, 12:28 PM   #1
StormShadow
Member
 
Registered: Dec 2002
Location: Florida
Distribution: SuSe 9.1 Professional
Posts: 38

Rep: Reputation: 15
Exclamation Firewall software


OK, here is the deal. Our network at school here is sending out a Trojan virus through our ethernet which apparently can scan your computer and capture password usage and a bunch of other information that they have no real right to see. Anyways, I am looking for some kind of monitoring program that can filter what packets are allowed onto my system. Can you set up Ethereal to do this? If not, can someone point me to another program....right now my firewall is set to default high, which I think should be enough, but Im not sure. Any help would be greatly appreciated, and this is no BS, my roomate just caught them sending the virus to him, but he uses XP and it allerted him somehow....can anyone help me set Linux to do the same? Thanks all.

Last edited by StormShadow; 01-29-2003 at 07:38 PM.
 
Old 01-29-2003, 12:35 PM   #2
GtkUser
Member
 
Registered: Sep 2002
Location: Canada
Distribution: Redhat 9.0
Posts: 637

Rep: Reputation: 30
I'm just a Linux newbie, but I can provide some small bit of information. I had read that setting the firewall to high closes ports. It only allows the ethernet port (eth0) to be open.

A virus usually scans through open ports, so if the firewall is set to high it should be safe, just don't open any email attachments.
 
Old 01-29-2003, 12:51 PM   #3
StormShadow
Member
 
Registered: Dec 2002
Location: Florida
Distribution: SuSe 9.1 Professional
Posts: 38

Original Poster
Rep: Reputation: 15
Awesome, thats pretty much what I thought, but people are saying it came through the network here......I dont know if they hid it in packets coming through the ethernet cable (disguised as noraml traffic if possible) or what....is there any way I can have Linux's firewall notify if something like a virus comes through the ethernet or something? Thanks all.
 
Old 01-29-2003, 12:54 PM   #4
trickykid
LQ Guru
 
Registered: Jan 2001
Posts: 24,149

Rep: Reputation: 269Reputation: 269Reputation: 269
Well to start off, next time try using a better thread title instead of "Help, Urgent". That doesn't tell us what your problem is by browsing the forums.

Second, why is your school sending out a trojan ? Do they know about this ? Have they tried seeing which machines are infected. It would probably be wise to shutdown these services so they don't keep infecting others or sending out these viruses.

You may want to look and search the security forum for programs that have been mentioned. And if your using iptables, ipchains or whatever program your using for your system/firewall now, there should be some sort of log file that captures what is going on.

What firewall program are you using now, that might help others when answering your questions ?
 
Old 01-29-2003, 12:55 PM   #5
acid_kewpie
Moderator
 
Registered: Jun 2001
Location: UK
Distribution: Gentoo, RHEL, Fedora, Centos
Posts: 43,417

Rep: Reputation: 1985Reputation: 1985Reputation: 1985Reputation: 1985Reputation: 1985Reputation: 1985Reputation: 1985Reputation: 1985Reputation: 1985Reputation: 1985Reputation: 1985
please do not mark anything as "urgent".
 
Old 01-29-2003, 07:37 PM   #6
StormShadow
Member
 
Registered: Dec 2002
Location: Florida
Distribution: SuSe 9.1 Professional
Posts: 38

Original Poster
Rep: Reputation: 15
My apologies on urgent, I didnt know it would cause hysteria in the forums. Ouor netwrok isnt infected, the people who run our network are sending these Trojans so they can monitor exactly what we do on our computers.....I was just looking for a way to be warned if they were sending stuff my way, or if I already had the trojan......
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
boot sector and lilo collapse !!!!! URGENT URGENT URGEN !!!!! frelihm Linux - Software 21 12-02-2009 10:21 AM
Urgent Question Regarding Urgent Questions! Need Help Now! Crashed_Again LQ Suggestions & Feedback 11 10-17-2007 08:07 PM
urgent help please !!! deepdark SUSE / openSUSE 5 01-02-2005 11:39 PM
Urgent..Im Having A Nightmare..Urgent!!!! midgcool Linux - Software 41 11-30-2004 10:19 AM
Urgent Urgent !!!! Mozilla Keeps All Your Deleted Emails !!!! odin123 Linux - Software 2 01-31-2004 02:22 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Software

All times are GMT -5. The time now is 05:18 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration