Linux - SecurityThis forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
Good day, I ask, is there a sticky or page to read for securing your Linux OS for beginners?
I am not sure that there is a good '...for beginners...' security guide on this site (there are more 'drill down' type of materials, but you have really to know what you are looking for and why to make best use of them), although there may be a number of posts that you can search for which cover the subject in more or less detail.
These are distro-specific, but the principles that they cover apply everywhere:
(but a search with your favourite search engine will turn up more)
Quote:
Originally Posted by Novatian
I have heard of root kits, Linux AV, hacking, phishing, key logging, and need to know more. Other users could use the knowledge too.
Assuming that you are using a Linux distro (which one?) one of the things that you can do is go into the package manager and look for appropriate packages. So, if, for example, you were particularly interested in 'root kits', searching for 'root' will give you a list, probably including rkhunter (root kit hunter) and chkrootkit (check for root kits). the list will probably be a little longer than you'd like, but it doesn't take all that long to look through, say, 20 or 30 candidates and spot the two or three worthwhile candidates.
At some point, you have to have some faith in your distro, and assume that they have made choices that are sound, and that, when they chose what applications to include in their repos, they made good choices.
AV: the same trick will work, and turn up, eg, ClamAV, although something like 'antivirus', 'anti' or 'virus' might work better.
You might also want to check on 'firewall' too; your distro probably includes an 'easy' set up package, but that will vary from distro to distro. Or, you could learn iptables, which is the (non GUI) system which underlies the GUI front ends.
If all your computing is on Linux, you don't really have to (currently) bother with anti-virus. The vast majority are 'windows-only' and won't do you any harm. That said, there are lab samples (proof of concept) Linux viruses that could spread amongst Linux machines, and having anti-virus is a polite thing to do, because you could have a virus that might be passed on to a windows machine. And, given that it is theoretically possible to have a Linux virus, maybe tomorrow will be the day that a virulent Linux virus gets into the wild, and, if it is, maybe having installed an anti-virus today puts you into a better position.
Keep your software up to date. This is almost inevitably a simple process under Linux (provided that you don't try to use it 'like windows'). Somewhere in the package manager or a separate updater there is a 'get updates' facility (it'll probably run automatically at some time, either periodically or when you start the computer) and all you have to do is say 'yes' at a time at which you are connected to the 'net to get the updates.
If your distro provides something like 'SELinux' or 'AppArmor' either of those would provide an additional level of protection.
Don't do stupid things! there are some sites that you know are dubious, don't download things from them and probably best to avoid them altogether.
While all that gloom and despondency might seem a bit much, most ordinary Linux users get by without consciously doing anything in particular to avoid problems. A little bit of conscientiousness on top, and you'd have to be very unlucky to have a problem (please feel free to ignore the above if you happen to be a three letter agency, or feel that you should have similar standards).
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.