LinuxQuestions.org
Review your favorite Linux distribution.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Distributions > Slackware
User Name
Password
Slackware This Forum is for the discussion of Slackware Linux.

Notices


Reply
  Search this Thread
Old 09-05-2009, 05:05 AM   #1
windtalker10
Member
 
Registered: Nov 2007
Location: Kentucky
Distribution: Slackware13.1
Posts: 214

Rep: Reputation: 38
What's your opinion of Guarddog and rkhunter?


I'm behind a linksys hardwired router.
I don't trust wireless any further than I could throw the combined parts of it as I've hacked wireless myself just to see if I could.
I use Guarddog and run rkhunter maybe once a month,,, when I think of it.
I don't go to places I shouldn't ie, I don't spend hours tracking down and memorizing the free porn spots nor have any interest in things common sense dictates to leave alone.
I don't download and install from places that aren't verified or at random.
Mainly I know enough to not be overly trusting of things I run across on the net nor suffer from impulse installing.
Paypal and clickbank are the only times my credit card and bank account numbers have ever been entered into my pc since I have accounts with them to receive payments.
I never run as root,,, ever.
Every single one of my passwords are combo's of numbers and in a Native American language which isn't likely to be guessed by even those that know me well and no two locations have the same password.
I see others that have a lot of concern over their security, some seem downright paranoid about it.
Heck, I run two income producing websites now as well as access mine and my wifes bank accounts from my Slack box with zero concern.
Then again she uses a windows box and is forbidden to even type the word money on the keyboard.
I've only ran Linux a little over 5 years and have read enough to not be overly concerned with getting hacked or stung by a rootkit,, certainly not paranoid about it.
Still, I'm just exercising a little caution just in case.
With the above in mind, shouldn't my practices, along with Guarddog and rkhunter in your opinion be more than adequate to not be overly concerned about getting burned by someone with malicious intents?
Or am I missing something?

Last edited by windtalker10; 09-05-2009 at 05:09 AM.
 
Old 09-05-2009, 08:44 PM   #2
aus9
LQ 5k Club
 
Registered: Oct 2003
Location: Western Australia
Distribution: Icewm
Posts: 5,842

Rep: Reputation: Disabled
hi

Maybe this post would be better off under the security forum.

I am aware you did not mean guarddog is run once a month.
Running RKH once a month reminds me a little of a Redmond company that believe you only need security updates once a month on a Tuesday.

The result of that is that malware writers overcome that last ms download and have almost a month of open slather.

When would you like to know you have been rooted? Now or in maybe 20 odd days?

2) Have you looked into non-passwords authentications?

3) MS users now have the dubious honour of being able to flash their bios (for some makers) while booted into MS. Malware written in bios code can not be detected by Linux or MS.
Suggest wife move to Linux...lol.

4) But I do agree...having run RKH for donkey years that the new threats seem to be web browser.

Some relate to the Phishing idea of a web page that looks legit...and your browser does not check its security tag

http://support.mozilla.com/en-US/kb/...ty+certificate

http://support.mozilla.com/en-US/kb/...ty+certificate

5) EDIT I like gdog....does this mean your router has no firwall or you like to have a software firewall..to be surer?

Last edited by aus9; 09-05-2009 at 08:52 PM.
 
Old 09-05-2009, 09:50 PM   #3
windtalker10
Member
 
Registered: Nov 2007
Location: Kentucky
Distribution: Slackware13.1
Posts: 214

Original Poster
Rep: Reputation: 38
Thx for the reply.
The router has a firewall and I use Guarddog just to stay in the habit of having a firewall in the event I no longer use a router.
It's kind of like wearing suspenders with a belt I know but I'll have a working firewall and knowledgeable in it's use if it's ever needed.

Quote:
When would you like to know you have been rooted? Now or in maybe 20 odd days?
As for running rkhunter whenever I think of it, I'm pretty much a creature of habit when I surf.
I go to the same places and those places normally aren't much different than here.
They're also places I read about in places just like here.
I was after all referred to LQ by the Slack website sooooo.
When I google, normally my googling is prefaced with what is.
When it isn't, it's geared for self improvement or leisure reading such as free ebooks.
I'm not paranoid but I'm not aloof either.
I figure rkhunter is available and has been around awhile for a reason so I use it.
This still begs the question though, how is anyone going to get a rootkit or anything else into my system with my permission, bios code notwithstanding.
Nothing gets put in my system by me unless it comes from slackbuilds, slacky.eu or some other well known trusted source like hplip at sourceforge or nvidia drivers from nvidia.
Since the root password is required to install anything whatsoever, I fail to see how anything could be put into my system without my knowledge or permission.
In reality, the worst I could foresee happening is someone would piss me off by deleting my music and replacing it with the Michael Jackson Thriller album.
Then again, even my music is backed up.

Quote:
MS users now have the dubious honour of being able to flash their bios (for some makers) while booted into MS. Malware written in bios code can not be detected by Linux or MS.
I hadn't gotten wind of that but am grateful for the heads up.
It also means that everyone is pretty much defenseless against an attack such as that.

Quote:
Suggest wife move to Linux...lol.
Yeah right, good luck with that one.
I'd be safer flirting with the counter girl at McDonald's in her full view.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
RKhunter Help please Golgo13 Linux - Software 3 01-16-2008 04:27 PM
RkHunter Output - Opinion Please jim.thornton Linux - Security 15 01-15-2008 10:52 AM
rkhunter lumiwa Linux - Newbie 1 09-17-2007 08:51 PM
rkhunter atlaika Linux - Security 7 11-29-2005 10:47 AM
rkhunter phatbastard Linux - Security 3 12-08-2004 09:44 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Distributions > Slackware

All times are GMT -5. The time now is 02:06 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration