On Sat, 2013-12-07 at 10:55 -0600, Richard Owlett wrote: > I chose phrasing of subject line to emphasize some peculiarities > of my needs. > > End-user emphasizes: > - I am *NOT* an expert > - my system is never intended to be a "server" > Without any services running, you won't really have any ports open. Of course some user style services (like samba) may be running. I always like running 'lsof -i' as root to see what ports / services are open.
> Laptop indicates: > - small standalone system intended to operate primarily > *WITHOUT* any networking > > When connected to internet it will be: > - primarily for browsing, email, Usenet > - occasionally used for downloading small files using HTTP > *NOT* (never?) FTP > The theory is if that's all you do on a Linux system, then you probably don't need to put in any firewall rules. > The "fly in ointment" will be: > The typical internet connection will be with a USB dial-up modem. > When I desire to browse complex website or download a large > set of files, > I will carry it to a local library and use a WiFi connection. > > A couple months of reading has left me confused as to a suitable > firewall. > > Any help/direction appreciated. > > If you're paranoid, I'd go with arno-iptables-firewall. It really is easy to set up, even though it's all done through either debconf, or text files. > > > -- To UNSUBSCRIBE, email to debian-security-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/1386607294.22898.0.ca...@skint.thefnords.org