Linux - SecurityThis forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
Alright I installed Firestarter and I have it booting up on boot (using sudo like the FAQ tells you). My problem is when using the sudo command it tells me it can't find iptables.
Should I edit the PATH of my username to include the path to iptables? What would be the safest way to get iptables recoginzed?
Location: 1st hop-NYC/NewJersey shore,north....2nd hop-upstate....3rd hop-texas...4th hop-southdakota(sturgis)...5th hop-san diego.....6th hop-atlantic ocean! Final hop-resting in dreamland dreamwalking and meeting new people from past lives...gd' night.
Distribution: Siduction, the only way to do Debian Unstable
Posts: 506
Rep:
CrEsPo...hi,
Make sure iptables is indeed installed.Firestarter is just a front end for it,so it wont install iptables.
iptables is installed, the thing is it's only accessible by the root user, which I think is causing the problem. I tried Googling, but I have found nothing. I think I have to get some better Google skills or something.
Location: 1st hop-NYC/NewJersey shore,north....2nd hop-upstate....3rd hop-texas...4th hop-southdakota(sturgis)...5th hop-san diego.....6th hop-atlantic ocean! Final hop-resting in dreamland dreamwalking and meeting new people from past lives...gd' night.
Distribution: Siduction, the only way to do Debian Unstable
Posts: 506
Rep:
Firestart installs so that you must type admin password first before it opens....at least thats how it is on my system.
Did you install firestarter from your pakage repository or from source?
The Slack package on the Firestarter page didn't work so I compiled it myself from the source.
It doesn't ask me for a password on startup so I'm guessing I'm missing something when I configured it.
The site's documentation say's nothing on this and their compile instructions are:
"./configure --sysconfdir=/etc
make
su
make install"
I remember when I fooled around with Firestarter on FC3 it did ask me for the root password.
On the Firestarter documentation they tell you to edit '/etc/sudoers' with the following command 'username ALL= NOPASSWD: /usr/bin/firestarter' so you can use Firestarter as a user. When I run Firestarter without this command it gives me an error telling me I need root privileges and closes. When I run Firestarter with this command it starts up and gives me the iptables error.
Right now I'm running Firestarter using 'kdesu'. I would be fine using 'kdesu', but the problem is if for some reason my computer decides to reboot I'm stuck with no firewall running.
For some reason there is something starting Firestarter besides the manual command I entered. So I have one firestarter which starts up without root priviledges (so it shuts down) and one that starts with root priviledges (stays open). I want to remove the first one I mentioned since I did not add it and it's useless as I have a working startup happening.
By the way, my fix was to add /usr/sbin to the PATH in ~/.profile so iptables is recognized. Is that a smart thing by the way?
Not sure about the double-starting for Firestarter. I used it a while ago but now I just use iptables manually.
If you're unclear on this, the sudoers addition just means that 'username' (to be replaced by your user of course) is allowed to use sudo, but that the command firestarter can be run as root without prompting for a password.
About /usr/sbin in $PATH. I just copy root's path to my own user path for ease of use; there's no problem doing that.
Yeah right now I'm wondering if I should of just tried to learn iptables manually instead of fooling around with Firestarter. Though for now I guess I'll use Firestarter and next time I have to update Slackware I'll probably learn iptables manually. Shouldn't be to hard, I hope :P.
One thing I do find really useful about Firestarter is it wil tell you all your system's connections, which service its using and which binaries are making the connections all from within X.
As for learning iptables, it's quite complicated but there are lots of good resources. If you feel like shelling out 9$ US I recommend: Purdy, Gregor N.Linux iptables - Pocket Reference, O'Reilly, 2004. It's 83 pages long, and full of almost everything you need to learn iptables for any home user.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.