Linux - SecurityThis forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
I am looking for firewalls to secure my computer the way I am used to in windows.
In windows I know everything that happens because my firewall alerts me whenever something like to go on the internet. With iptables, as far as I can see, some ports are left open (eg 80) so any malicious program can be programmed to use that port without my knowledge. Of course, this analysis may be wrong and I'd be glad if someone pointed that out.
So in search for an application based firewall (searched on freshmeat) I found tuxguardian. Maybe some of you have experience with it and know whether it is a safe solution.
IPtabes does report usually in the /var/log/syslog. You can redirect it somewhere else if you want, most Linux Firewall software use IPtables, and provide a GUI for it, guarddog and shorewall come to mind.
I know my opinion might be just a little suspect, since I'm the developer of TuxGuardian :-) but you can give it a try.
It is actually still being developed, but as far as I tested it is secure and I'm using it since february without any crashes/problems. I implemented it using the new kernel security mechanisms (such as LSM) and so I block socket syscalls before anything bad can happen.
I wish I could give you some pointers to other Linux programs that perform the same task (that is, programs like zonealarm, kerio, etc), but I sincerely don't know any. In fact, the absence of such programs was the main reason that made me start the project.
Of course, as anyone in the security business know, NO software is completely safe. But I'll be glad to receive some bug reports :-) If you need any help, you can find my email in the webpage of the project.
Tnx for the replies, and brunocs for registering. I think I'm going for a setup with 2 firewalls, tuxguardian and an iptables one. I am a little paranoid.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.