LinuxQuestions.org
Support LQ: Use code LQ3 and save $3 on Domain Registration
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Distributions > Slackware
User Name
Password
Slackware This Forum is for the discussion of Slackware Linux.

Notices

Reply
 
Search this Thread
Old 03-26-2006, 05:34 PM   #1
Hondro
Member
 
Registered: Mar 2006
Location: Lithuania
Distribution: Slackware-12.2
Posts: 102

Rep: Reputation: 15
Security - to be safe on slackware 10.2


Hi, i am newbie in slackware.

I want to know what security (firewall, antivirus, logging not with "root") to use, to be safe.
Slackware i am using for home PC without other computers (one PC).

Can somebody give me good advices?
 
Old 03-26-2006, 08:29 PM   #2
win32sux
Guru
 
Registered: Jul 2003
Location: Los Angeles
Distribution: Ubuntu
Posts: 9,870

Rep: Reputation: 371Reputation: 371Reputation: 371Reputation: 371
make sure you block all incoming connections with iptables...

get rid of any software you have installed which you don't need...

make sure you always keep your system up to date with the latest patches that patrick volkerding puts out...

use the firefox web browser, and install the noscript extension...

just my two cents...

Last edited by win32sux; 03-26-2006 at 08:32 PM.
 
Old 03-26-2006, 09:03 PM   #3
odevans
Member
 
Registered: Nov 2005
Location: Columbus, OH, USA
Distribution: Slackware
Posts: 246

Rep: Reputation: 30
Edit /etc/inetd.conf and comment out lines representing services you don't need. If I remember right (a long-shot, granted), ports 37 (time) and 113 (auth) are unnecessarily listening. Restart inetd with "/etc/rc.d/rc.inetd restart"

Also, any services you're only using locally (CUPS, Sendmail, X etc. etc.) should be set up to only listen on localhost.

Project Files has a nice rc.firewall script that can be dropped into /etc/rc.d/ (and chmod +x) that blocks all incoming connections by default. It's easy to edit (very well commented). http://projectfiles.com/firewall/ (get the latest 2.0 version).

You can subscribe to the "security" mailing list over at slackware.com for notifications of any necessary updates. Security patches can be found at:

ftp://ftp.slackware.com/pub/slackwar...ches/packages/

There are some 60 updates there for 10.2 -- not all of which you'll need.

Probably a bunch of things I've missed...
 
Old 03-26-2006, 09:08 PM   #4
win32sux
Guru
 
Registered: Jul 2003
Location: Los Angeles
Distribution: Ubuntu
Posts: 9,870

Rep: Reputation: 371Reputation: 371Reputation: 371Reputation: 371
Quote:
Originally Posted by odevans
Edit /etc/inetd.conf and comment out lines representing services you don't need. If I remember right (a long-shot, granted), ports 37 (time) and 113 (auth) are unnecessarily listening. Restart inetd with "/etc/rc.d/rc.inetd restart"
or you could also just uninstall inetd...
 
Old 03-27-2006, 10:21 AM   #5
Randux
Senior Member
 
Registered: Feb 2006
Location: Siberia
Distribution: Slackware & Slamd64. What else is there?
Posts: 1,705

Rep: Reputation: 54
Quote:
Originally Posted by win32sux
or you could also just uninstall inetd...
Yeah, exactly. chmod -x on all the stuff you don't want to run. I love the way Pat set stuff up. It's so easy to change without even editing a file!
 
Old 03-27-2006, 10:33 AM   #6
Alien_Hominid
Senior Member
 
Registered: Oct 2005
Location: Lithuania
Distribution: Hybrid
Posts: 2,247

Rep: Reputation: 53
Quote:
Originally Posted by odevans
If I remember right (a long-shot, granted), ports 37 (time) and 113 (auth) are unnecessarily listening.
Auth is used for identification, for example, when you are logging to IRC server. So if you are planning to chat on IRC, don't disable it. Otherwise you will have to wait for server's response.
Sadly, don't know about time purpose.
 
Old 03-27-2006, 03:39 PM   #7
Hondro
Member
 
Registered: Mar 2006
Location: Lithuania
Distribution: Slackware-12.2
Posts: 102

Original Poster
Rep: Reputation: 15
Thanks for the advices

I want more information please post more

Last edited by Hondro; 03-27-2006 at 03:47 PM.
 
Old 03-27-2006, 10:47 PM   #8
hitest
Senior Member
 
Registered: Mar 2004
Location: Prince Rupert, B.C., Canada
Distribution: Slackware, OpenBSD
Posts: 4,163

Rep: Reputation: 527Reputation: 527Reputation: 527Reputation: 527Reputation: 527Reputation: 527
I have my slackware box running using DHCP and have it behind a router, a NAT firewall isn't perfect, but, it provides some protection.
 
Old 03-29-2006, 12:47 PM   #9
win32sux
Guru
 
Registered: Jul 2003
Location: Los Angeles
Distribution: Ubuntu
Posts: 9,870

Rep: Reputation: 371Reputation: 371Reputation: 371Reputation: 371
well, another thing you could do to harden your box is to recompile your kernel using a stripped-down config (only the options you need) and also you could patch it with the grsecurity patch: http://www.grsecurity.net/

if you need a kernel compile guide here's a neat one:

http://www.digitalhermit.com/linux/K...ild-HOWTO.html
 
Old 03-29-2006, 06:07 PM   #10
spelya
LQ Newbie
 
Registered: Mar 2006
Distribution: Slackware 10.2 / Linux 2.4.
Posts: 4

Rep: Reputation: 0
Thanks evrery one for those advises.
 
Old 03-29-2006, 06:43 PM   #11
raska
Member
 
Registered: Aug 2004
Location: Aguascalientes, AGS. Mexico.
Distribution: Slackware 13.0 kernel 2.6.29.6
Posts: 816

Rep: Reputation: 30
Quote:
Originally Posted by odevans
Edit /etc/inetd.conf and comment out lines representing services you don't need. If I remember right (a long-shot, granted), ports 37 (time) and 113 (auth) are unnecessarily listening...
good to know those ports are good-for-nothing .... closing ... done. Fine

now, why do those 2 ports come open by default if are not used?
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Is it safe to upgrade Slackware thru swaret? mikebalcos Slackware 5 07-09-2005 02:11 PM
What Slackware Packages are safe for me to delete? C. nemoralis Slackware 8 07-18-2004 01:50 PM
Is it safe to upgrade everything to Slackware Current? moger Slackware 17 01-18-2004 10:32 AM
slackware security e1000 Slackware 3 11-15-2003 02:33 PM
Slackware Security Update: GDM security update phoeniXflame Slackware 2 08-26-2003 04:21 PM


All times are GMT -5. The time now is 02:03 AM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration