Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here. |
Notices |
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
Are you new to LinuxQuestions.org? Visit the following links:
Site Howto |
Site FAQ |
Sitemap |
Register Now
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
|
View Poll Results: Do you use Anti-Virus on your Linux/BSD system?
|
Yes
|
  
|
17 |
15.18% |
No
|
  
|
95 |
84.82% |
 |
|
08-02-2006, 02:59 AM
|
#31
|
Member
Registered: Feb 2006
Location: somewhere in cyberspace
Distribution: Debian, Familiar
Posts: 380
Rep:
|
Quote:
Originally Posted by pengu
isn't the Guard Dog firewall just a front end to iptables?
|
Oh yeah! Silly me 
|
|
|
08-03-2006, 03:51 AM
|
#32
|
Member
Registered: Mar 2006
Location: Fort McMurray, Canada
Distribution: Gentoo ~amd64
Posts: 163
Rep:
|
Quote:
Originally Posted by pengu
This is a very bad situation, as all credit card numbers- and other important information are likely to be stolen.
|
... and that is why I use a FOUR-level encryption system (yes, I meant four levels) on all sensitive data.
On my SUSE/W!ndow$ box, Windows has a firewall and an AV program. SUSE, on the other hand, has no AV (SELinux got setup when it my idiot brother thought it was necessary). Strangely, when Broken Windows is running, crackers attempt to crack it more, and SUSE has yet to has an attempt.
|
|
|
08-03-2006, 10:04 AM
|
#33
|
Senior Member
Registered: Sep 2005
Location: Out
Posts: 3,307
Rep:
|
blablabla... what a waste of time
if you want security... read this http://www.linuxquestions.org/questi...ad.php?t=45261
The question should be:
Do you use think Anti-Virus are usefull
And the answer is:
No
I don't get the point of this thread. Virus on windows, virus on linux, its the same... move on
|
|
|
08-04-2006, 12:37 AM
|
#34
|
Member
Registered: Feb 2006
Location: somewhere in cyberspace
Distribution: Debian, Familiar
Posts: 380
Rep:
|
Quote:
Originally Posted by nx5000
I don't get the point of this thread. Virus on windows, virus on linux, its the same... move on
|
We know. But one can't be too careful (I still stand by my fear of spyware on linux).
|
|
|
08-04-2006, 12:54 AM
|
#35
|
LQ Guru
Registered: Aug 2003
Distribution: CentOS, OS X
Posts: 5,131
Rep: 
|
Oh sweet J.... that's what I call a LONG post..phew  (the one almost in the beginning)
Btmiller:
Quote:
As long as your browser is patched up to date, you should be relatively safe.
|
Oh no. That's something Microsoft Marketing says.."should be" + "relatively" + "save" = something that cannot coexist in one sentence. The best one can do for security is to never assume you're safe, not even relatively. But yes, it is of course (or at least seems to be) better to have the latest patches, and this is where Windows seems to lag a bit..and even if it doesn't, the users do.
I just lost my mind trying to run "Windows Update/Microsoft Update" at work for some computers; there were some security fixes and stuff, but first the update tool didn't want to run (corrupted half-downloaded update data..had to remove and start all over) and when I eventually got it running, it downloaded two truckloads of updates after which it refused to install any; reason unknown.
"Hell, let them be unfixed - I'll probably have to reformat every PC once in a while nevertheless, so I can't win anything trying to install them every time again." and that's where the real problems begin.
I agree to the point of view that as of now, Linux users need anti-virus software only to protect Windows machines connected. I'd bet more on firewalling on the Linux side, plus all-around hardening, than place-your-favourite-name-here-antivirus..
Last edited by b0uncer; 08-04-2006 at 12:56 AM.
|
|
|
08-12-2006, 07:32 AM
|
#36
|
Senior Member
Registered: Nov 2003
Location: Knoxville, TN
Distribution: Kubuntu 9.04
Posts: 1,168
Rep:
|
Too much security causes more harm than good. In fact, security "best practices" often makes a crackers life easier instead of harder.
For example, the last A in the AAA model is for auditing (or accounting if you like to confuse people). Wannabe cybercops need lots of auditing/accounting to perform forensic analysis and put people in jail. So security best practices dictates all failed login attempts should logged, usually including the failed password, usually in clear text. Another best practice is to never write down all those password every stupid little website requires and, since there are just so many a person can remember, to keep a mental list of your passwords and to sort of "cycle" through them.
So, knowing security best practices, a hacker need only gain sufficient rights to read the logs, which are often accessible by lowly backup operator accounts even. Right there he'll find user account names and passwords of people who gained access after a couple tries. Chances are these password were either mistyped or are legitimate passwords to other sites/services/servers where the same user has access.
Moral of story: Use a reasonable amount of security and concern yourself with running your business rather than policing people and your network will actually be much more secure than a network run by wannabe cybercops who have turned every security bell and whistle on. 
|
|
|
All times are GMT -5. The time now is 12:18 PM.
|
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
|
Latest Threads
LQ News
|
|