LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Slackware (https://www.linuxquestions.org/questions/slackware-14/)
-   -   Guarddog. Do I have to install it? (https://www.linuxquestions.org/questions/slackware-14/guarddog-do-i-have-to-install-it-650068/)

glore2002 06-18-2008 04:06 AM
Guarddog. Do I have to install it?
 
Hello again!

I've read some articles recommending to install Guarddog (firewall). Would you recommend installing it? Will my computer be safer? This would be for my home desktop computer.

If your answer is yes, please let me know how to install this firewall so I can still be able to use a bittorrent client, etc. without trouble.


By the way, Do you use an antivirus soft under Slackware? Does it make any sense?

Thank you!
Glore2002.-

brianL 06-18-2008 09:53 AM
I'm using Eric's adaptation of the Easy Firewall Generator:

http://www.slackware.com/~alien/efg

Opinions seem to be divided about antivirus for Linux, I'm not using any on Slackware - only on my XP.

T3slider 06-18-2008 12:01 PM
I will second Alien Bob's mod of the Easy Firewall Generator for Slackware. It has worked problem-free for me so far.

As for antivirus software, it's not really necessary yet. If you wanted to find a virus for Linux, you'd have to look pretty hard. They do exist, but not many of them, and most are not that serious. Your chances of encountering one by accident are basically zero right now (though that may change in the future, I suppose). The only reason to use antivirus software under Linux would be to prevent spreading the virus to other Windows PCs. It's a valid concern if you run a network with other Windows PCs -- but even then your chances are slim unless you start installing stupid stuff using WINE (or if you have a samba share that Windows PCs access frequently, for example). At the moment, I have no plans on installing antivirus software myself.

What you should worry about are rootkits -- they are a real (though still comparatively rare) threat under Linux. I would recommend installing both rkhunter and chkrootkit to check for rootkits (SlackBuilds are available at slackbuilds.org). You could get away with installing only one, but since they really both catch different rootkits it would be better to install and use both. Just periodically scan your PC every once in a while and you should be good.

glore2002 06-18-2008 12:45 PM
Easy Firewall Generator, Guarddog and Rootkits.
 
Thanks for your valuable advices. I should go then for Easy Firewall Generator. What should I do to install it and making sure it won't bother while using a bittorrent client, browsing, etc?

T3Slider: Thanks to make me learn a new term -> Rootkits. I didn't even know they existed. I will download those scripts and run them periodically.

I don't have to worry about virus. That's really good! Good bye win virus paranoia!!!


Thank you!

brianL 06-18-2008 01:07 PM
It's a script, the instructions are included in the opening comments. Save it as rc.firewall to your home directory, then do, as root:
Code:
cp rc.firewall /etc/rc.d/rc.firewall
chmod +x /etc/rc.d/rc.firewall

glore2002 06-18-2008 05:28 PM
Let's see how this follows.
 
I still have some doubts:

#1 After choosing the options, I have to download the Easy Firewall script. What options should I choose? (I use a Static IP)

I would enter my IP address and select the last option (IRC) because I, sometimes, use IRC to enter to Slackware room but I am not sure what I am doing by enabling each of this options (even after reading help)

Code:
Allow Inbound Services

Log entries in a Fireparse format?

Do you use Internet Relay Chat (IRC)?

#2 Once I've downloaded the script (rc.firewall), I copy the file and give it execute permissions as brianL said)

Code:
cp rc.firewall /etc/rc.d/rc.firewall
chmod +x /etc/rc.d/rc.firewall
#3 Will this script start everytime I start my computer? If not, How can that be done? How can I stop this firewall if needed?

Thanks again friends!
Glore2002.-

amani 06-18-2008 06:06 PM
You can compile the latest guarddog from source and install it. It will be easier than EFG. Moreover, you can do plenty of advanced things with that.


#3
yes obviously

Best

A. Mani

slackass 06-18-2008 06:21 PM
I have a rather low skill level with slack and haven't learned to use iptables yet so I use Guarddog also. I was unable to make the slackbuild work so I just downloaded the source and made a package with src2pkg and it worked out perfect.
Making an installable and "removable" package made more since for my purposes as I do intend to learn iptables eventually.

T3slider 06-18-2008 06:28 PM
Quote:
Originally Posted by glore2002
#3 Will this script start everytime I start my computer? If not, How can that be done? How can I stop this firewall if needed?
Yes, it will start every time you start your computer. It is started from /etc/rc.d/rc.inet2 upon bootup, which is started from /etc/rc.d/rc.M. FYI. ;)

If you want to manually start it you can issue
Code:
/etc/rc.d/rc.firewall start
Likewise, to manually stop it, you can issue
Code:
/etc/rc.d/rc.firewall stop

brianL 06-18-2008 06:32 PM
Yeah, maybe Guarddog would be your best option. EFG was the first thing I came across when I was looking at firewall options, and using the default settings suited me.

glore2002 06-18-2008 07:21 PM
How do I configure Guarddog?
 
I've just download and compile from source Guarddog. I am reading its help document trying to learn how to configure it.
Thanks!

dive 06-18-2008 07:36 PM
If you are using a router then that will/should take care of your firewall needs.

I've been using slackware for some years now and have never found the need to run a firewall or antivirus but ymmv.

Now I have a home network and the router closes off every port to the outside world except the ones I want specifically open - i.e. for my UT server etc.


All times are GMT -5. The time now is 09:32 AM.