Re: Tutorial for optimizing security on a non-server Linux s…

Top Page
This message is part of the following thread:
M\the complete thread tree sorted by date
MMJosef Lowder at <-
MMKurt Granroth at ->
Attachments:
Message as email
+ (text/plain)
Delete this message
Reply to this message
Author: technomage
Date:  
To: plug-discuss
Subject: Re: Tutorial for optimizing security on a non-server Linux system
On Monday 02 August 2004 12:55 pm, Josef Lowder wrote:
> An recent article stated that most Linux security problems
> are your own fault, and that 92 percent of Linux systems
> have never been infected with a virus.

its a little higher than that, and yes, you are at fault if you allow a system
you control to be infected (even if through no fault of your own). keeping up
security is so easy, if one would just bother learning how.

>
> I have never heard of a virus infecting a Linux system?
> Is there really such a thing? I was under the impression
> that there was no need for anti-virus software for Linux systems.
> Is that an incorrect understanding? If so, what anti-virus software
> is necessary and available for Linux systems?

there are 12 known virii and 35 variants thereof. there are 9 rootkits, 4
trojan horses and half a dozen worms. note that these stats don't include
"exploits".

avguard is a good one (www.free-av.com) and has a module (you must compile for
your system) and works nicely on most fast computers. its one of 5 or 6 that
offer a linux/UNIX flavor (so far as I know). I use it here with an
auto-update feature, so I am always at top level protection.


>
> Also, where might one find a tutorial that takes one step-by-step
> through the process of optimizing security on one's non-server
> Linux system?

the linux administrators guide is a good TOME to read. they do cover security
in it. there is also a PDF available online that exclusively covers security
in linux OS.

>
> I recall when I set up my Mandrake 8.1 system several years ago,
> at that time Mandrake offered some phone support and a tech rep
> took me through several steps to modify certain things on my system
> so that nobody could "hack" into my system when I was online (I have
> only a dial-up connection).

that has changed a bit since they filed for bankruptsy in france. still not
sure what their plans are or whether they are going to emerge from bankruptsy
or not. :(

>
> Regrettably, I cannot find my notes recapping what all those steps
> were. Can anybody tell me what steps one should take to "secure"
> a non-server Linux system (or point me to a tutorial)?

firstly, use chkconfig --list to see what services are running. then use
chkconfig --level<level(s) here> on/off

thinks like ftp should be off, along with portmap and some others.
you have virtually no need of any xinetd services.
There may be some others depending on your installation.

man chkconfig will give more details


>
> Thanks to all for the excellent help everyone on the PLUG list
> always provides.
>

Technomage Hawke

---------------------------------------------------
PLUG-discuss mailing list -
To subscribe, unsubscribe, or to change you mail settings:
http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss

This message was posted to the following mailing lists:
Plug Discuss
Mailing List Info | Nearby Messages		<-Re: modem permissionsRe: Tutorial for optimizing security on a non-server Linux system->
Some Mailing List Archive administrated by UnconfiguredLurker (version 2.3)