Visit Jeremy's Blog.
Go Back > Forums > Linux Forums > Linux - Distributions > Slackware
User Name
Slackware This Forum is for the discussion of Slackware Linux.


  Search this Thread
Old 12-03-2003, 08:26 PM   #46
Registered: Dec 2003
Posts: 32

Rep: Reputation: 15

for partitioning...there should be an auto partition or somthing cause when i installed slack....i had no other it was just me and some works now...muhaha
Old 12-03-2003, 09:47 PM   #47
Registered: Dec 2003
Location: USA (Pacific coast)
Distribution: Vector 5.8-SOHO, FreeBSD 6.2
Posts: 513

Rep: Reputation: 34
Thanx for the warm welcome

I do understand that the kernel itself contains the firewall, whether ipchains for the 2.2 kernel or iptables for the 2.4 kernel. I didn't clearly state that I wanted "stealth" capability, sorry about that. GRC's Shields Up test shows that most of the ports are closed, but there were quite a few open ones. What I was hoping for is some "canned" rules in place for Low, Medium, or High security similar to some of the other distros. I've still got a bit of a learning curve for firewall rules (read "firewalls 101" level) , and something a bit more secure "out of the box" would be okay with me. It can always be fine-tuned later as I learn more.

Also, I just came across EndoShield at SourceForge, which looks like something I'm looking for right now. It's a script based on FireMasq/FireDog. After thinking it over, I really don't want to use a gui for something that gets rarely used, which ends up just taking up space.

I've dl'd the Smoothwall iso a few short weeks ago I plan on putting on an old Compaq rig I have that's currently just gathering dust, which will make this all moot. But the reason I'm here is to learn, and Slackware seems to be a good start for that. I would just like to see an option for different security levels during the install for better security out of the box for anyone with an "always on" connection to the net.

What will that line do? What I mean is will it break any sites I visit on the net or interfere with sites I allow to set cookies (like for some of the forums I post at), etc?

Again, thanks for the welcome, ppl.
Old 12-04-2003, 06:42 AM   #48
Registered: Oct 2002
Location: Stoughton, MA
Distribution: Gentoo x86_64 & PPC
Posts: 949

Rep: Reputation: 30
Well, I am using it after reading a little about security in a book I'm reading, "Linux System Administration; Marcel Gagne". It's a decent book. It has never interferred with any of my web activity. It's explained like this: "If you do not need people logging into your system (telnet, ssh, rlogin) you should close the door to remote access by adding this line to your /etc/hosts.deny file: ALL:ALL. The first ALL refers to services, the second ALL refers to everybody; nobody gets in."

This will only work for the services (see your /etc/inetd.conf) but at least closes some of the more well known holes. You should definitely explore other security methods as well Check out the application "Logcheck". It won't actually secure anything, but will help alert you to anything out of the ordinary in your logs. You'll prob learn a lot from getting it set up and configured too.
Old 12-04-2003, 09:45 AM   #49
Registered: Dec 2003
Location: USA (Pacific coast)
Distribution: Vector 5.8-SOHO, FreeBSD 6.2
Posts: 513

Rep: Reputation: 34
Thanx, Scruff. Sounds great
Old 12-04-2003, 12:24 PM   #50
Registered: Apr 2002
Location: in a fallen world
Distribution: slackware by choice, others too :} ... android.
Posts: 23,067
Blog Entries: 11

Rep: Reputation: 917Reputation: 917Reputation: 917Reputation: 917Reputation: 917Reputation: 917Reputation: 917Reputation: 917
Originally posted by thegeekster
... that I wanted "stealth" capability ...
And as for the stealth, you can do that
by manually changing the REJECT rule
in iptables to a DROP (which, in terms of
networking rules (good behaviour) is a
bad thing :}

Old 12-06-2003, 08:29 AM   #51
LQ Newbie
Registered: Sep 2003
Location: Florida
Distribution: Slackware
Posts: 3

Rep: Reputation: 0
[QUOTE]Originally posted by Scruff
It's mostly bashing on the bloated, dumbed down, bugginess of those distro's, and on that note, I agree with them. As a matter of personal preference anyways. But, those distro's are terrific for a large group of people and thats great for Linux in general.

I agree, to gain popularity and market share from the evil clowns up at redmond and establish Linux not only on the server market but also on the desktop it'll have to have an easy install for newbies that would like to do the switch and are a. to lazy to RTFM and b. need someone to hold their hand while installing a new OS.
Old 12-06-2003, 12:55 PM   #52
LQ Newbie
Registered: Dec 2003
Posts: 6

Rep: Reputation: 0
For me, here is what Slackware is missing:

- fam (file alteration monitor), with kdelibs and gnomevfs2 compiled with it
- net-snmp
- sendmail compiled with libmilter by default
- drac or any other pop-before-smtp solution
- openldap support (server+client and samba compiled with ldap libs)

- longer support for older releases (when you have 50 servers to administer, it is a real pain haing to do a major upgrade every year)
- official ports to other architectures

Other then that, it is just magnificent


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
how dyou change 'ok' & 'cancel' strings to 'sure' & 'nope' and stuff like that(gnome) xenithi Linux - Newbie 3 11-25-2004 12:10 AM
Should I change from Slack to Debian?(Seriously) hrothgar Linux - Distributions 3 08-14-2004 11:26 PM
VMware & Slack 9.1 & SVGA Gerardoj Linux - Software 5 04-18-2004 11:42 PM
---== Alsa 1.0.0rc2 && slack 9.1 Question ==-- C.Loko Slackware 2 12-11-2003 05:40 AM
Dual proc && slack DaFrEQ Slackware 7 05-28-2003 03:50 PM > Forums > Linux Forums > Linux - Distributions > Slackware

All times are GMT -5. The time now is 08:55 AM.

Main Menu
Write for LQ is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration