I was wondering, after reading this article, that maybe I sould install a good firewall.
http://www.securitypipeline.com/news/51202581

I always thought one of the best features besides being stable, was the Linux security. Anyone have any thoughts, or software suggestions for me to protect my pc?

nobody?

looks like propaganda to me. also they are running an apache server, so they couldn't be too worried about what they are talking about
http://uptime.netcraft.com/up/graph/...typipeline.com

i've never had problems with all the attacks from script kiddies that have decided to attack my machine, that and the firewall that comes with fedora works great.

There are a number of security references here.

http://www.linuxquestions.org/questi...threadid=45261

You may want to look into a gui based front end for iptables like fwbuilder.

http://www.fwbuilder.org/

good luck.

Looks more like the OS they use is BSD.
http://uptime.netcraft.com/up/today/top.avg.html
1 wwwdir1.telia.com 148 1664 1706 1706 BSD/OS Apache/1.3.26 (Unix) TeliaNet
2 wwwdir.telia.com 205 1659 1824 1704 BSD/OS Apache/1.3.26 (Unix) TeliaNet
3 www.lan.ne.jp 314 1608 1652 1653 FreeBSD Apache/1.2.6 Japan Telenet LTD
4 www.ehokenstore.com 330 1491 1535 1536 BSD/OS Oracle_Web_Listener/4.0.8.1.0EnterpriseEdition Japan Network Information Center
5 www.eol.ee 312 1416 1460 1461 FreeBSD Apache/1.2.5 Uninet servers
6 www.hs.sll.se 321 1401 1445 1446 FreeBSD Apache/1.3.6 Ben-SSL/1.32 (Unix) IBM-corner
7 dermis.hs.se 243 1401 1445 1446 FreeBSD Apache/1.3.6 Ben-SSL/1.32 (Unix) IBM-corner
8 solo.merita.fi 315 1385 1429 1430 BSD/OS TANTAU Application Server/2.1.1 Union Bank of Finland Ltd
9 solo.nordea.fi 321 1385 1429 1430 BSD/OS TANTAU Application Server/2.1.1 Union Bank of Finland Ltd
10 b1.bestsystems.net 187 1375 1420 1420 FreeBSD Apache/1.3.33 (Unix) PHP/3.0.18-i18n-ja-3 Isle, inc
11 www.ampr.org 129 1310 1327 1328 BSD/OS Apache/1.3.26 (Unix) University of California, San Diego
12 www.kanezawa.co.jp 255 1188 1235 1235 FreeBSD Apache/1.3.33 (Unix) Isle, inc
13 www.icard.com.hk 314 1163 1541 20 BSD/OS Apache/1.3.6 (Unix) HKNet Company Ltd.
14 www.yoshihara.co.jp 315 1081 1372 24 BSD/OS Apache IIJ Internet
15 www.wicona.de 313 1079 1123 1124 Windows 2000 Apache Deutsche Telekom AG
16 www.necmagnus.com 194 1059 1373 28 BSD/OS Apache IIJ Internet
17 www.bloom.co.jp 253 1051 1373 28 BSD/OS Apache IIJ Internet
18 www.e-energy.co.jp 275 1049 1373 28 BSD/OS Apache IIJ Internet
19 www.mals.jp 282 1048 1372 28 BSD/OS Apache IIJ Internet
20 www.fintec.co.jp 250 1044 1373 28 BSD/OS Apache IIJ Internet
21 www.oarks.co.jp 184 1035 1373 29 BSD/OS Apache IIJ Internet
22 www.logic-research.co.jp 264 1033 1372 28 BSD/OS Apache IIJ Internet
23 sv10.isle.ne.jp 275 1031 1075 1076 FreeBSD Apache/1.3.33 (Unix) PHP/3.0.18-i18n-ja-3 Isle, inc
24 selfnet.ne.jp 165 1031 1075 1076 FreeBSD Apache/1.3.33 (Unix) PHP/3.0.18-i18n-ja-3 Isle, inc
25 www.pof.or.jp 284 1031 1075 1076 FreeBSD Apache/1.3.33 (Unix) PHP/3.0.18-i18n-ja-3 Isle, inc
26 www.dsup.co.jp 260 1028 1373 28 BSD/OS Apache IIJ Internet
27 www.market.co.jp 97 1027 1373 28 BSD/OS Apache IIJ Internet
28 www.sigmalab.co.jp 266 1027 1372 29 BSD/OS Apache IIJ Internet
29 www.patchcare.jp 116 1024 1373 29 BSD/OS Apache IIJ Internet
30 www.ldschurch.jp 117 1013 1373 29 BSD/OS Apache IIJ Internet
31 www.seil.jp 114 1013 1373 29 BSD/OS Apache IIJ Internet
32 www.fukuju.co.jp 327 1012 1372 29 BSD/OS Apache IIJ Internet
33 www.linksys.co.jp 312 1012 1372 28 BSD/OS Apache IIJ Internet
34 www.mex.go.jp 373 1009 1372 29 BSD/OS Apache IIJ Internet
35 www.nhk-ed.co.jp 369 1009 1372 29 BSD/OS Apache IIJ Internet
36 solution.iij.ad.jp 126 1009 1372 29 BSD/OS Apache IIJ Internet
37 www.eandm.co.jp 371 1009 1372 29 BSD/OS Apache IIJ Internet
38 www.aisin-aw.co.jp 315 1008 1372 29 BSD/OS Apache IIJ Internet
39 www.rolandberger.co.jp 280 1008 1372 29 BSD/OS Apache IIJ Internet
40 www.archives.go.jp 317 1008 1372 29 BSD/OS Apache IIJ Internet
41 www.ask-corp.co.jp 311 1008 1372 29 BSD/OS Apache IIJ Internet
42 www.nhk-ts.co.jp 318 1008 1372 29 BSD/OS Apache IIJ Internet
43 www.digital-staff.co.jp 311 1008 1372 29 BSD/OS Apache IIJ Internet
44 www.aplus.co.jp 303 1008 1372 29 BSD/OS Apache IIJ Internet
45 www.chuosystem.co.jp 316 1008 1372 29 BSD/OS Apache IIJ Internet
46 www.dbgroup.co.jp 290 1008 1372 29 BSD/OS Apache IIJ Internet
47 www.studio-ego.co.jp 317 1008 1372 29 BSD/OS Apache IIJ Internet
48 www.tnc.co.jp 301 1008 1372 29 BSD/OS Apache IIJ Internet
49 www.aosyn.co.jp 294 1008 1372 29 BSD/OS Apache IIJ Internet
50 www.xpiral.co.jp 321 1008 1372 29 BSD/OS Apache IIJ Internet

but www.securitypipeline.com isn't anywhere in the longest running sites list. though it is quite true that BSD servers stay up longer than any others, but www.securitypipeline.com is running a solaris OS.

now, how can I make my Fedora Core 1 bullet proof?

also, is an antivirus or adaware type program a good idea with linux?

i've been running different distros of linux for the past 5 or so years, and when it comes to adware, spyware, and all asortments of viruses I've never had problems. I will sometimes get a virus as an email attachment, and I click on them, and try to get them to run, I'm always sad to find out that they don't. So when it comes to adware, and viruses Linux isn't prone to them.

Thank you PT

glad I could be of use.

One of the main reasons people say linux is more secure is that it is not a big target for hackers. You can infect more computers if you write for a windows operationg system(and it uses IE).

i've heard that, and it does make sense to a degree. however I have also heard of many attempts at viruses being made to attack Linux, their being highly unsuccessful. Linux generally keeps itself safe from viruses by how it is put together. to do any real damage you would need root access, and under normal circumstances you wouldn't be answering mail as root, and it isn't very easy to get root access without a password while a system is up. so I find it fairly safe from viruses. however you are right that if there were more linux users that there would be more crackers trying to break into their systems. thus the number of attacks would go up. and the number that actually do something, would also rise. although I haven't heard of much activity in linux systems that have been broken into without very clever attacks, even though the number of linux users is on the rise. have I just been missing out on information?

You really don't need to worry too much about a firewall, what you DO need to worry about is making sure your applications are properly updated and patched. Script kiddies take advantage of well known security holes in application like Apache, OpenSSH and whatnot. But these vulnerabilities are usually found and patched quickly, usually hours after they are found, but not everyone applies the updates and patches.

You need to find out how Fedora applies updates and patches, and run that process regularly. That's the main way to avoid having your machine hacked.

thanks again everyone

Whoever says you don't need a firewall is incorrect, sorry to say. Sure, you can be safe by keeping up with security patches, but before a bug is fixed it must be documented... You want to be the one to fall victim to a bug known only to a small group of people?

Now, most linux firewalls are simply front ends for iptables. I use GuardDog, and it's the best I've found.
Very easy to configure, very powerful, and well documented. You can get it here if interested, docs are here.

Enjoy.