LinuxQuestions.org
LinuxAnswers - the LQ Linux tutorial section.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Distributions > Suse/Novell
User Name
Password
Suse/Novell This Forum is for the discussion of Suse Linux.

Notices



Reply
 
Search this Thread
Old 05-24-2005, 05:05 PM   #1
wardialer
Member
 
Registered: Sep 2004
Distribution: SUSE Linux Pro 9.3
Posts: 375

Rep: Reputation: 30
SUSE Security Settings in Yast?


Hello -

My goal is to achieve the most security on my system running SUSE Linux 9.3. Under YAST>Security Settings can anyone please guide me through the steps into making the most secure settings. Im on a standalone system which makes it easier. I will post below on what portion of the steps I need help with. So, here we go.

Days to Password Change warning.
Days before Password expires warning.
Delay After Incorrect Login Attempt
User ID/Group Limitations (I need help on this one right here)
Set of File Permissions (I set this one to SECURE)
User Launching Updatedb (What does this mean?)


Can anyone explain these settings and whats the most secure setting that I should set for each of these areas? What setting is recomended for each of these areas?

Thanks.

Last edited by wardialer; 05-24-2005 at 05:07 PM.
 
Old 05-24-2005, 06:52 PM   #2
PerfectReign
Member
 
Registered: Apr 2005
Location: Los Angeles
Distribution: openSUSE / Ubuntu
Posts: 294

Rep: Reputation: 33
Just to confirm - you're not connected to any network?
 
Old 05-24-2005, 07:12 PM   #3
wardialer
Member
 
Registered: Sep 2004
Distribution: SUSE Linux Pro 9.3
Posts: 375

Original Poster
Rep: Reputation: 30
No, its a standalone computer. Im only using the system only for the Internet and Email, thats it.
 
Old 05-24-2005, 10:31 PM   #4
wardialer
Member
 
Registered: Sep 2004
Distribution: SUSE Linux Pro 9.3
Posts: 375

Original Poster
Rep: Reputation: 30
Can someone please assist on this one?
 
Old 05-24-2005, 11:12 PM   #5
gd2shoe
Member
 
Registered: Jun 2004
Location: Northern CA
Distribution: Debian
Posts: 835

Rep: Reputation: 49
Re: SUSE Security Settings in Yast?

Quote:
Originally posted by wardialer

Days to Password Change warning.
Days before Password expires warning.
Delay After Incorrect Login Attempt
User ID/Group Limitations (I need help on this one right here)
Set of File Permissions (I set this one to SECURE)
User Launching Updatedb (What does this mean?)

Each user account is identified internally by an ID number. Each user belongs to a group (or several) that is also tracked this way. The "Limitations" here are simply the largest and smallest numbers that can be used for user ID's. I'm not entirely positive why this is in security.

The updatedb is only a very minor security issue. For it to matter at all, someone would first need to break into your system. If updatedb is run as root, then the hacker will be able to see every file and directory is on the computer. Note that this doesn't give them access to those files, it just lets them know that they exist. If it is run as nobody, then they will only see files that could be seen by any logged in user (the nobody user). This can be inconvenient if you ever want to use the locate command as root. Otherwise, you wont notice a difference.
 
Old 05-25-2005, 01:40 PM   #6
wardialer
Member
 
Registered: Sep 2004
Distribution: SUSE Linux Pro 9.3
Posts: 375

Original Poster
Rep: Reputation: 30
Ok, but can someone please give me the recommendations for each settings on what to needs to be set for max. security?

Thanks
 
Old 05-25-2005, 07:56 PM   #7
wardialer
Member
 
Registered: Sep 2004
Distribution: SUSE Linux Pro 9.3
Posts: 375

Original Poster
Rep: Reputation: 30
Hello -

I need some more help on this please. What UID numbers do I have enter in one of the steps? Can someone (if anybody who knows SUSE) please help me through the steps if possible. I want to obtain the highest level security in SUSE.

What is the "NOBODY" account? I never created it. I just created my own username. This scares me a bit.

Last edited by wardialer; 05-25-2005 at 07:58 PM.
 
Old 06-02-2005, 11:35 PM   #8
gd2shoe
Member
 
Registered: Jun 2004
Location: Northern CA
Distribution: Debian
Posts: 835

Rep: Reputation: 49
There are a number of accounts automatically created that are used by the system for varying purposes. The nobody account has only the slimmest of privileges. It is used to run system programs that don't need any special permission. This is for security purposes. If an error (a buffer overflow, for example) exists in a piece of code, the error wont be able to do anything to the system at large. It wont have permission to! This is both for security and stability.
 
Old 06-03-2005, 01:12 AM   #9
HenchmenResourc
Member
 
Registered: Mar 2004
Location: SLC, Utah
Distribution: OpenSUSE 12.2
Posts: 246

Rep: Reputation: 30
Account numbers 0-100 are reserved system accounts, and account number 101 -65,000(ish) are for user accounts SuSE defaults to starting user accounts at number 1000. The main security issue with account numbers relates to a government security rating system where for certain applications (mainly military, FBI, CIA) usernames can not be reused, so if some one quits a Job at one of these organizations no one should ever be able to login with their username again, so you retire the account instead or deleting it. To the best of my knowledge the number setting really have no major importance for a home user, just make sure you don't exclude id numbers that are in use, something like 0-1100 should be sufficient.

if you want to be absolutly certain open up a command line terminal and run the "id" command and it will tell you what uid and gid number you have been assigned, then just set the limit so that numbers 0 through the highest uid number are included.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Configuring proxy settings for yast update behind a firewall fintan Suse/Novell 2 02-05-2005 02:01 PM
Can not change video card settings with YAST OR SAX2 linuxbeliever Suse/Novell 0 12-28-2004 01:56 AM
Cannot get SUSE v8 yast to work because of a security update Tazzmanian Linux - Software 1 08-15-2004 03:07 AM
SuSE 9.1 YaST Online Update and Proxy Settings mikemrh9 Linux - Networking 5 07-11-2004 07:01 PM
security settings infamous41md Linux - Newbie 1 06-03-2003 10:18 PM


All times are GMT -5. The time now is 07:18 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration