Linux - SecurityThis forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
i'm running mdk 10. just use it for docs, email, browsing, etc. i've turned on the firewall in the control center. anything else i can do to secure the system? how do i find out if other people have logged onto the system? thanks.
Dunno if mandrake got lokkit, i think mandrake does have the GUI firewall editor, turn on only neccssary ports like SSH if and samba ports if your gona fileshare, buti i think SCP is a better way to go. if i am not mistaken firewalker is a good personal firewall http://sourceforge.net/projects/firewalker/
Complex passwords, disable services that are ONLY required, dont be running apache as a default service that is asking the script kiddies <ooohhh looky looky i got a big security hole, please pwn me>
This should you started ^^
Good luck and Google is your other best friend ^^
Distribution: OpenBSD 4.6, OS X 10.6.2, CentOS 4 & 5
Posts: 3,660
Rep:
Mandrake has Shorewall, which by all accounts is a pretty good firewall editor. lokkit is absolutely the worst firewall policy editor I've ever seen, and the Red Hat people should be ashamed of shipping it in a commercial product.
By the way, one of the best resources would be to simply click on the sticky post at the top of this forum. unSpawn spent a lot of time putting together a huuuuuuuuge list of security references.
i agree with you, but personally i think lokkit is never really ment to be a policy editor, it just thought of it as a quick and dirty way of editing some basic rules. Did not know about being a "in a commercial product." Learn new things everyday.
Distribution: OpenBSD 4.6, OS X 10.6.2, CentOS 4 & 5
Posts: 3,660
Rep:
No, lokkit is not fit for anything at all--period. It completely violates security principles of "everything not explicitly allowed is denied", because lokkit implements it's rules as "everything not explicitly denied is allowed". That means you have to think of every possible way to abuse your firewall, and then write a rule to block it. If you miss just one case, you can be compromised. Essentially, you have to be the world's most perfect security admin in order to not leave holes in a lokkit firewall. That is setting up for failure and probably will fail 99.9% of the time when seriously attacked.
As for the commercial product, so far as I know that is the default firewall shipped with RHEL, which is just terrible. At least the Windows firewall blocks everything by default (when you turn it on).
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.