Linux - SecurityThis forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
I'm a battler with a belief that free thinkers can rise up and make this planet a lot more pleasant to live on.
I saw a bit of a a post from a guy that was obviously looking for some help to crash the ms empire. Angry depressed and angry manic people do that and you guys giving them a good old public school caning only give them a dose of what the world has given them all their lives.
If you care then I have done you a service, if you don't then please disregard that I tried to help you.
To keep this post strictly in line with forum guides, I have some questions about Linux security :
How secure is the average beginner distro?
What is Linux doing to educate beginners in best practices?
BTW: Did you know that many beginners won't participate in forums because they are afraid of being ridiculed and called a "newbie" which they incorrectly view as an insult.
To a certain degree, I think that anyone who participates in any public forum needs to have a certain thick-skin. Always remember that the person who's replying is "talking," even though you are reading what she "said." (The impact between the two is very, very different.) If the person's comments appear to be directed at "you," give them the benefit of the doubt and assume either that they didn't really mean it or that they didn't have the diplomacy-and-tact skills that you might have expected or preferred.
Nevertheless: "stick to the topic," and try to read every response in regard to "the topic." If a particular comment (or, commenter) appears to be abrasive, or just "rubs you the wrong way," let it pass. Without reply. Maybe the next comment to drift by will better-answer your question and thus better satisfy the reasons you had for posting the question in the first place.
You can't dismiss people's comments on a forum ... you need them ... and yet, you most certainly can(!) ignore them! Without saying a thing. As the old song said, "Just .. walk on .. by ..." (And, if your third finger is giving "a perhaps well-earned expression" just keep your hand in your pocket for a moment or two.) Feels good to do it, but no point in waving it up in the air.
----
(By the by, I'm assuming that this topic really isn't talking about the medical condition of "mental health.")
To keep this post strictly in line with forum guides, I have some questions about Linux security :
...and to help you get your thread get the attention it deserves I've changed its title. Next time please post non-Linux-security issues in either the /General forum or your own LQ web log (its free).
Quote:
Originally Posted by bobbiescap
How secure is the average beginner distro?
Generally speaking secure enough to replace any other web-browsing consumer desktop OS?
Not sure what the answer should be as I don't know the reason for asking...
Quote:
Originally Posted by bobbiescap
What is Linux doing to educate beginners in best practices?
That's a way better question. Most Linux distributions have extensive user, admin and security documentation one should familiarize oneself with to get the most out of it right from the start. Not many seem to do so so there'll be much questions asked in fora, on mailing lists, IRC and whatnot. There's web log posts (watch out for incompatibility, wrong ideas or deprecated posts), tutorials about nearly everything and there's companies and institutions focusing on security providing guidance. In short there's a whole panoply of information sources you are cordially invited to read, partake in (and improve, should you wish to do so).
Not very. There are many "best practices" that a distro could employ. Some of the hurtles are the fact that a beginner user wants all the security breaching apps and settings that allow intrusion.
Any Linux distro is more secure than every Windows version. If nothing else, the requirement that a password be entered before doing any administrative task and the fact that user does not have rights to change items outside of user's home directory immediately provides a higher level of security.
Generally, viruses are not an issue; there are no Linux viruses in the wild and many experienced Linux users do not use an AV program. I do, but I vowed back in my DOS days never to connect to the net without an AV, and I've simply kept that vow. With Windows, the first thing I do is install an AV; with Linux, I might not get around to that for weeks in a new install. Note also that Windows viruses will not run on Linux, just as Windows programs will not run on Linux.
Linux firewall capability is built-in; it's called iptables. Some distros come with a GUI frontend for iptables out-of-the-box; with other distros you may have to install a GUI front-end. gufw is my preferred GUI front-end, but you can use a script or configure iptables directly. Note that Linux firewall programs are not themselves firewalls; they are programs for configuring iptables.
The primary dangers with Linux are "social engineering" threats (dodgy websites, phishing attempts, and so on) and vulnerabilities in software; generally those are fixed pretty quickly once they are discovered.
Any of the major distros--say, any of the top 10 at the LQ ISO page--is reasonably secure for a beginner, but you should visit the distro's homepage and read their documentation about security early on in your using it.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.