LinuxQuestions.org
Review your favorite Linux distribution.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 04-06-2004, 10:01 PM   #1
dareino
Member
 
Registered: Mar 2004
Location: S.F.,Ca
Distribution: FC4
Posts: 82

Rep: Reputation: 15
2 firewalls?


I have my Linux box connected directly to the 'Net. I have a Win XP box behind it using a 192.68 ip address. The Linux box has firewall and when I run GRC to proble my ports in Win XP, only shows port 22 open, which is fine. No other ports are opened...My question is, do I need to continue to run a Firewall on the XP box? Seems to me its not needed...
thxs
dareino
 
Old 04-06-2004, 10:04 PM   #2
leonscape
Senior Member
 
Registered: Aug 2003
Location: UK
Distribution: Debian SID / KDE 3.5
Posts: 2,313

Rep: Reputation: 48
If its a software firewall, maybe, as Windows can get trojans, which will not be noticed by the Linux machine ( afterall it might think it can trust the stuff coming in on the Local network. ) not all trojans use odd ports that you can tell linux just to block from the windows machine.
 
Old 04-06-2004, 11:49 PM   #3
InTheWired
LQ Newbie
 
Registered: Apr 2004
Location: Sydney, Australia
Distribution: Mandrake
Posts: 29

Rep: Reputation: 15
Thumbs up

leonscape
so your saying the windows box could become infected (infected email, file etc)? Then if the windows box had all ports merrily open the trojan could easily spread to the linux box... OR to any other windows box you might have behind the linux box. Hmm I've never thought of that before
 
Old 04-06-2004, 11:53 PM   #4
leonscape
Senior Member
 
Registered: Aug 2003
Location: UK
Distribution: Debian SID / KDE 3.5
Posts: 2,313

Rep: Reputation: 48
It won't infect the Linux box, but it could probably infect other windows machines, or get back out to the rest of the internet.
 
Old 04-07-2004, 12:02 AM   #5
InTheWired
LQ Newbie
 
Registered: Apr 2004
Location: Sydney, Australia
Distribution: Mandrake
Posts: 29

Rep: Reputation: 15
sorry yeah, guess there aren't any trojans written so well as to infect both windows and linux
 
Old 04-07-2004, 12:12 AM   #6
leonscape
Senior Member
 
Registered: Aug 2003
Location: UK
Distribution: Debian SID / KDE 3.5
Posts: 2,313

Rep: Reputation: 48
Or in fact there are no trojans currently for Linux. There incredible difficult to write. I mean how do you damage, or watch, or infect a machine that won't install your tojan without root permission?

Your machine has to be hacked to do it, you have to get in, then you need a security hole in the machine to get root from there, and most linux machines by default don't allow remote logins, so even that vector won't work most of the time.

Where with windows, you just need a click in a browser, or a malicious activeX component, or an e-mail. Thats a world of diffrence.
 
Old 04-07-2004, 12:25 AM   #7
Capt_Caveman
Senior Member
 
Registered: Mar 2003
Distribution: Fedora
Posts: 3,658

Rep: Reputation: 69
You might be thinking of the term trojan in some other way, but there have been a number of linux trojans:

http://www.cert.org/advisories/CA-1999-02.html

There have also been cross-platform viruses that affect both windows and linux systems:

http://securityresponse.symantec.com...ux.simile.html

However they are extrememly rare. But taking precautions against viruses from the inside does have its place. A notorious example of this is a group of windows clients that have samba shares. Often when these windows systems are infect they will try to spread viral code via the samba share. Another good example would be a smtp server.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Firewalls mrfixit1951 Linux - Security 7 07-18-2005 04:15 AM
Getting around firewalls Gameon Linux - Networking 13 05-11-2005 08:27 PM
firewalls anyone? BajaNick Linux - General 0 02-05-2004 09:08 PM
Firewalls matt3333 Linux - Software 4 07-03-2003 10:53 PM
Linux Firewalls [iso firewalls] yoogie Linux - Networking 3 01-28-2002 06:56 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 06:22 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration