Visit Jeremy's Blog.
Go Back > Forums > Linux Forums > Linux - Security
User Name
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.


  Search this Thread
Old 12-22-2009, 06:35 AM   #1
Senior Member
Registered: Mar 2009
Location: USA
Distribution: Arch
Posts: 1,022
Blog Entries: 19

Rep: Reputation: 146Reputation: 146
Firestarter or gufw or does it matter?

Thanks to the fine LQ member salasi, I now have a firewall up and running: almost perfectly.

When I use nmap and perform the most comprhesive scan I can think of, it cannot detect any wide open ports (unless bittorent is running) and cannot fingerprint the OS.

My last 2 questions about my firewall (I am very happy now) are:

It seems as though Firestarter has been "abandoned" by the developers, and that gufw is more current.

Does it really matter which firewall I use because don't they all do the same thing? I like firestarters system tray icon alot.
Anyways, what would you recommend/use?

2nd question is I have two open|filtered ports. Are these still pretty well protected?

Thanks for any replies; it is very pleasing to see that I have no open ports, because if you were an experienced Windows user like I was, you got used to the fact you were going to have open ports no matter what. Linux's builtin firewall completely destroys the expensive and useless scams they call Norton and McAfee. Linux officially rocks now
Old 12-22-2009, 12:42 PM   #2
Registered: Feb 2005
Distribution: Arch, CentOS, Fedora, OS X, SLES, Ubuntu
Posts: 327

Rep: Reputation: 63
Both firestarter and gufw use the linux kernel's built-in iptables firewall; the biggest difference between those two programs is mainly the interface used to change firewall rules etc., and its respective ease of use.

That's quite different from the Windows world, where most firewall programs operate on their own--which can stir up all sorts of trouble. Indeed... Windows did not have a standardized, built-in firewall until XP service pack 2.

Most WAN-/internet-based portscans only scan up to port 1000. In theory, so long as you attempt to limit your exposure by opening the smallest overall number of ports, and by using nonstandard, greater-than-port-1000 numbers, you should be pretty safe.

Naturally, however, in the world of security, nothing is 100%.

Linux officially rocks now
Many of us like to think so.


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
LXer: Gufw - Simple GUI for ufw (Uncomplicated Firewall) in Ubuntu LXer Syndicated Linux News 0 09-30-2008 04:20 AM
Is this a serious matter ? apache Linux - Software 0 07-08-2004 04:47 AM
matter of 1 min moonstone Programming 1 09-09-2003 01:37 PM
matter of completeness.. hammerstein02 Linux - Newbie 2 12-04-2002 08:57 AM
grub matter huno Linux - General 1 11-22-2002 09:22 AM > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 09:12 PM.

Main Menu
Write for LQ is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration