Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game. |
Notices |
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
Are you new to LinuxQuestions.org? Visit the following links:
Site Howto |
Site FAQ |
Sitemap |
Register Now
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
|
|
03-18-2015, 10:58 AM
|
#1
|
LQ Newbie
Registered: Mar 2015
Posts: 5
Rep:
|
protect firewall with unique password(not root)
Hello,
Is there anyway to protect a firewall(any firewall will do) settings with a unique password different from the root password?
I am running linux mint 17.1 and have so far been using firestarter or ufw as a firewall.
Kind Regards,
BR3AKCOR3
|
|
|
03-18-2015, 03:47 PM
|
#2
|
Moderator
Registered: Mar 2008
Posts: 22,130
|
Hello and welcome to LQ.
I guess you could maybe set up a certificate. Maybe a self signed certificate on a usb where both that usb certificate and the one on the firewall need to be used.
The general problem with trying to remove root from things is that root can almost always get that back.
|
|
|
03-20-2015, 08:09 AM
|
#3
|
LQ Newbie
Registered: Mar 2015
Posts: 5
Original Poster
Rep:
|
Thanks for the reply,
Id like to try your suggestion, but I'm a noob(about 2 months on linux, and minimal networking knowledge). Could you possibly point me in the direction of some information/tutorials on creating this self signed certificate and applying it to a firewall as you said?
Any help appreciated.
Regards,
|
|
|
03-20-2015, 09:21 AM
|
#4
|
Member
Registered: Jan 2012
Location: San Antonio. TX
Distribution: CentOS. Ubuntu
Posts: 48
Rep:
|
BR3AKCOR3
Glad to hear that you have started using linux. I'm curious as to why you would want to keep root out of the firewall settings?
|
|
|
03-20-2015, 10:03 AM
|
#5
|
LQ Newbie
Registered: Mar 2015
Posts: 5
Original Poster
Rep:
|
Hi,
the reason is basically I want the firewall to be permanently untouchable, even by me. My idea was to create a random password that I could never remember. the point of that being so I was unable to connect to a particular wifi network so I can focus on my work as a form of self-restriction to internet access because will-power is a foreign concept to me Im also just interested in if its actually possible without access to router settings.
If there is any other way to acheive this I am also all ears to other suggestions.thanks.
|
|
|
03-20-2015, 10:19 AM
|
#6
|
LQ Veteran
Registered: Jan 2011
Location: Abingdon, VA
Distribution: Catalina
Posts: 9,374
Rep:
|
Quote:
Originally Posted by BR3AKCOR3
My idea was to create a random password that I could never remember.
|
Simple router 'reset' screws the pooch on this technique.
|
|
|
03-20-2015, 10:21 AM
|
#7
|
LQ Newbie
Registered: Mar 2015
Posts: 5
Original Poster
Rep:
|
I dont have access to the router
|
|
|
03-21-2015, 02:52 PM
|
#8
|
Moderator
Registered: Mar 2008
Posts: 22,130
|
Mail the router to me would be the best way.
If you don't have the will power to resist then you need to remove the temptation I'd think.
When you feel ready, I'll mail the router back.
Any time one has physical access to a system the chances of it being secure go way down.
The only other way is to get your isp to block or limit. Some very few offer this service. Not sure why more don't even.
|
|
|
03-22-2015, 11:51 PM
|
#9
|
LQ Newbie
Registered: Mar 2015
Posts: 5
Original Poster
Rep:
|
yeah i dont have access to the router.
|
|
|
03-23-2015, 03:36 PM
|
#10
|
Moderator
Registered: Mar 2008
Posts: 22,130
|
I forgot to put a in my prior post. I was joking around a bit. (trying to)
Now that you report not having access to the router then explain that more maybe.
|
|
|
All times are GMT -5. The time now is 07:06 AM.
|
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
|
Latest Threads
LQ News
|
|