LinuxQuestions.org - Downloading Linux from FTP?

- Linux - Newbie (https://www.linuxquestions.org/questions/linux-newbie-8/)

- - Downloading Linux from FTP? (https://www.linuxquestions.org/questions/linux-newbie-8/downloading-linux-from-ftp-4175590913/)

Quote:

Originally Posted by onebuck (Post 5615064)

Hi,

Yes, I did read the OP and to use the directed advice will provide that member with a list of ISO to install to the VM. Get off your high horse. We are trying to aid someone with their inquiry and to get to a potential Gnu/Linux that will be useful to that member's usage within the VM.

EDIT: The OP could then configure to suit the needs once installed.

Hope this helps.
Have fun & enjoy!
:hattip:

Thanks for the tips man I'll definitely check those out!

Quote:

Originally Posted by Emerson (Post 5615081)

There is more, for instance https://doc.pfsense.org/index.php/Se...nsparent_Proxy

Yeah I'll definitely look in pfsense too I know a lot of people use it, just not sure how it works but I guess its time to learn, thank you!

Quote:

Originally Posted by zeebra (Post 5614995)

Damn Small Linux is fully usable. Just download the stable version, upgrade the Kernel if you need to. The rest you need to do manually anyways, in either scenario. So just do whatever you need to update it manually.

GCC for example. And then add whatever software you want, also manually.

Alternatively you can also use for example Debian 7 (pre-systemd) netinstall distro. It comes with a bare minimum and you can install whatever you want on top of that.

I heard it not good idea to use a distro without a dedicated security team.

Hi,

You could look at; Security Onion Introduction and Installation which is Ubuntu based but you can get the idea on how to setup;

Quote:

Security Onion Introduction and Installation
We’ve all been there, either standing over a spare computer or staring at a virtual machine thinking, “I want to build an IDS” but not wanting to embark on the painful process of installation and configuration. Indeed, this has been the desire of many since the earliest days of open-source IDS, and for the brave who are willing to follow pages of instructions for installation and management it is the first step of many towards standing up a brand spanking new IDS. Thankfully, the pain has been removed from that process by a new Linux distribution called Security Onion.

IDS (Intrusion Detection System);

Quote:

In computer security, the Linux Intrusion Detection System (LIDS) is a patch to the Linux kernel and associated administrative tools that enhances the kernel's security by implementing Mandatory Access Control (MAC). When LIDS is in effect, chosen file access, all system network administration operations, any capability use, raw device, memory, and I/O access can be made impossible, even for root. One can define which programs can access specific files. It uses and extends the system capabilities bounding set to control the whole system and adds some network and filesystem security features to the kernel to enhance the security. One can finely tune the security protections online, hide sensitive processes, receive security alerts through the network, and more. LIDS currently supports Linux kernel 2.6, 2.4. LIDS is released under the terms of the GNU General Public License (GPL).

Setting up your Linux Proxy server then you can look at LDP Howto;

Quote:

http://www.tldp.org/HOWTO/Firewall-HOWTO-6.html

6. Preparing the Linux system

Install as little of the Linux system as you can. My installation started with a server configuration and then I turn off ever un-needed service in /etc/inetd.conf. For more security you should uninstall the unneeded service.
Because most distributions don't come with a kernel usefull to your purpose. You will need to compile your own kernel. It is best if you do this on a computer other then the firewall. If you do install a C compiler and utilities on your firewall, remove them after you have completed configuring your kernel.

Plus you can find more helpful information at TLDP.

Hope this helps.
Have fun & enjoy!
:hattip:

Quote:

Originally Posted by onebuck (Post 5615126)

Hi,

You could look at; Security Onion Introduction and Installation which is Ubuntu based but you can get the idea on how to setup; IDS (Intrusion Detection System); Setting up your Linux Proxy server then you can look at LDP Howto;
Plus you can find more helpful information at TLDP.

Hope this helps.
Have fun & enjoy!
:hattip:

Security Onion does look pretty sweet, and I knew of hips, hids, and nids but never lids ;)Thanks once again!!

Almost every distro can run a proxy.

You could look to a site like distrowatch.com and search for the terms that you are looking for.

I'll put in a vote for Untangle.

True, but dedicated distro comes with much less cruft.

Quote:

Originally Posted by linux4evr5581 (Post 5615090)

I heard it not good idea to use a distro without a dedicated security team.

Why? Damn small Linux is pretty much only the Kernel, GCC and some GNU components. All those parts have their own dedicated security teams and are updated individually (also for security related issues).

Damn Small Linux is fine to just start the computer and provide the basic GNU environment. Then you can update it as mentioned and build anything you want on top of there. For example adding SELinux and a KVM based Virtual Machine running in a secure environment.

It depends on the purpose. I assume the purpose of Damn Small Linux was to have a minimal environment to run a Virtual Machine that can be setup relatively easily and quickly. If you want a more update system, with less manual tasks once installed, with better fundamental security, which is still minimum Gentoo is a far better alternative. But it will take time to set up correctly, but provide you with what you need in form of a minimal environment where you can build a virtual machine.

But a basic Gentoo system is much larger than Damn Small Linux.

Gentoo can be pretty small if you put portage elsewhere, NFS for instance.

Quote:

Originally Posted by zeebra (Post 5617544)

Quote:

Originally Posted by Emerson (Post 5617637)

Gentoo can be pretty small if you put portage elsewhere, NFS for instance.

Good points I may reconsider DSL somewhere down the line then, but I really like Gentoo because I heard its the closest distro that resembles BSD...

Interested to hear the similarities between Gentoo and *BSD. Have a link, or any input on the subject?

https://www.over-yonder.net/~fullerm...s/bsd4linux/04 There you go (chapter4 is where he talks about it) it has to do with the portage tree being being alot like BSD where they both build programs from source instead of binary packages....

Well, for the initial question:

ftp://distro.ibiblio.org/pub/linux/d...adme_first.txt
http://distro.ibiblio.org/damnsmall/...adme_first.txt

Those kind of explains why there are multple versions. Most times I look at the file size, and date/timestamp. For small things, you might download them all when in doubt. Otherwise the newest and largest is a good first guess.

Gentoo can be hardened.