On Monday 02 August 2004 12:55 pm, Josef Lowder wrote: > An recent article stated that most Linux security problems > are your own fault, and that 92 percent of Linux systems > have never been infected with a virus. its a little higher than that, and yes, you are at fault if you allow a system you control to be infected (even if through no fault of your own). keeping up security is so easy, if one would just bother learning how. > > I have never heard of a virus infecting a Linux system? > Is there really such a thing? I was under the impression > that there was no need for anti-virus software for Linux systems. > Is that an incorrect understanding? If so, what anti-virus software > is necessary and available for Linux systems? there are 12 known virii and 35 variants thereof. there are 9 rootkits, 4 trojan horses and half a dozen worms. note that these stats don't include "exploits". avguard is a good one (www.free-av.com) and has a module (you must compile for your system) and works nicely on most fast computers. its one of 5 or 6 that offer a linux/UNIX flavor (so far as I know). I use it here with an auto-update feature, so I am always at top level protection. > > Also, where might one find a tutorial that takes one step-by-step > through the process of optimizing security on one's non-server > Linux system? the linux administrators guide is a good TOME to read. they do cover security in it. there is also a PDF available online that exclusively covers security in linux OS. > > I recall when I set up my Mandrake 8.1 system several years ago, > at that time Mandrake offered some phone support and a tech rep > took me through several steps to modify certain things on my system > so that nobody could "hack" into my system when I was online (I have > only a dial-up connection). that has changed a bit since they filed for bankruptsy in france. still not sure what their plans are or whether they are going to emerge from bankruptsy or not. :( > > Regrettably, I cannot find my notes recapping what all those steps > were. Can anybody tell me what steps one should take to "secure" > a non-server Linux system (or point me to a tutorial)? firstly, use chkconfig --list to see what services are running. then use chkconfig --level on/off thinks like ftp should be off, along with portmap and some others. you have virtually no need of any xinetd services. There may be some others depending on your installation. man chkconfig will give more details > > Thanks to all for the excellent help everyone on the PLUG list > always provides. > Technomage Hawke --------------------------------------------------- PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us To subscribe, unsubscribe, or to change you mail settings: http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss