Linux - SecurityThis forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
I currently have my Linux box running as a firewall with NAT using Firestarter. I am wondering if there is any services that I dont need to have running. I am using Redhat 8.0 with Gnome. The only services that I need to run are what is needed to use the firewall and nat. I dont need any FTP or mail services. I am very new at this, and I'm not sure what all of this stuff is...all though, I did get everything setup and running on my own as a first time Linux user.
I would definitely turn off the following services:
portmap
sshd
sendmail
I would probably turn off:
apmd -> unless your running on a laptop
atd
isdn -> unless you have an isdn internet connection
netfs -> unless mounting network shares
nfslock -> unless mounting network shares
pcmcia -> unless you have pcmcia cards
I recommend turning off xinetd. Unless you want to specifically run services through it, you don't really need it.
login as root and use: chkconfig --level 2345 servicename off to turn off each service you don't want. Once your done reboot and use netstat -la to see what services are still up and listening. You can be extra careful and run nmap against yourself as well.
As far as securing your linux box: the fewer services you run the better. The more unnecessary services, the greater the chance is that someone will exploit them.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.