LinuxQuestions.org
Review your favorite Linux distribution.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie
User Name
Password
Linux - Newbie This Linux forum is for members that are new to Linux.
Just starting out and have a question? If it is not in the man pages or the how-to's this is the place!

Notices


Reply
  Search this Thread
Old 09-17-2004, 12:33 PM   #1
dot hog
Member
 
Registered: Oct 2003
Location: Boondocks USA
Distribution: RH9
Posts: 50

Rep: Reputation: 15
Security for non-server computer


Hi. I've tried to look through all the security help files, but it's just confusing me. Here's my deal:

I've got RH9 on an old laptop. I plug it in to ethernet jack when I come to work (a university) to surf and check e-mail. I occasionally FTP to update my webpage.

I'd like to set up this laptop so that nobody can remotely login (telnet or SSH). This will keep network integrity folks out of my hair--they already like me b/c I'm using a personal laptop that is non-Win, want to stay on their good side by not letting anybody login remotely to my computer.

Is it as simple as getting rid of SSH and xinetd? Or will turning those services off disable other features I might want to use? Maybe I should configure iptables somehow? (I don't know what to do w/ iptables right now, incidentally.)

A quick reply and/or push in the direction of a newb resource for non-server computers is greatly appreciated. I don't want to do anything to complicated--just want to prevent my laptop from being the weak link in the univ's system. Or, more appropriately, I don't want to be hounded by network admins. Thanks.
 
Old 09-17-2004, 12:41 PM   #2
Tinkster
Moderator
 
Registered: Apr 2002
Location: in a fallen world
Distribution: slackware by choice, others too :} ... android.
Posts: 23,067
Blog Entries: 11

Rep: Reputation: 910Reputation: 910Reputation: 910Reputation: 910Reputation: 910Reputation: 910Reputation: 910Reputation: 910
Easier than that ...

tcpd can take care of all those worries for you,
all you need to do is to modify
/etc/hosts.allow
and
/etc/hosts.deny

Make hosts.allow only allow IP's from your
home-network if you have one (and it's different
from the IP range at work, of course).

And in hosts.deny
ALL:<varsity's IP range>

If you had 192.168.0.1 at home, and the varsity
had 172.20.x.x
you could go
hosts.deny
ALL:172.20


Cheers,
Tink
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Computer Security - Where to Start? Eklipz Linux - Security 5 08-03-2005 07:10 AM
Project: Computer Security Portal jedeye General 1 06-09-2004 02:32 PM
Security Check on my computer - 4 am? vi0lat0r Linux - Security 2 04-08-2004 02:29 AM
making a webpage server and home network server on the same computer ferretmanus Linux - Networking 1 09-11-2003 10:45 AM
Computer Security and 'Cleaners' wildfowl Linux - Security 1 04-29-2002 07:18 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie

All times are GMT -5. The time now is 04:07 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration