Hey, thanks for the info. But if you see my post "I seem to have made a
mistaek myself", it's not a good idea to uninitialize xFS, it's needed by X.
You can tell xfree86 not to use it by editting some files, but there's no
need to do this.
-Paul R
-----Original Message-----
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]]On Behalf Of Randy Meyer
Sent: Friday, March 09, 2001 8:57 AM
To: [EMAIL PROTECTED]; [EMAIL PROTECTED]
Subject: Re: [newbie] Startup services, which are necessary?
Jeremy Hughes wrote:
>
> > Paul Rodríguez wrote:
> >
> > Hi, I'm in the process of trying to secure my system. I have
> > pmfirewall set up and working well, but there are a lot of holes
> > still. One of the things that I am trying to do is minimize
> > unnecessary startup services, both for speed and security. I've shut
> > a bunch down, mostly servers that I'm not running, but there are a few
> > that I'm not sure about.
> >
> > Namely:
> >
> > xfs
> > rawdevices
> > network
> > irda
> > fetchmail
> > Do I need these to run a home workstation, (connected to the internet,
> > but not wanting to run any servers or anything like that at this
> > time)?
> >
> > -Paul R
>
> i am also trying to figure out which i need for a workstation. I you
> get an answer please forward to my also. Thanks.. I will do the
> same... Jeremy
I just installed PMFirewall, and found a good Mandrake online tutorial
at http://www.linux-mandrake.com/en/demos/Networking/IPmasq/pages/ that
led me through the setup. So I got it up and running successfully. I
port scanned myself using http://crypto.yashy.com and had no holes. The
startup services on your list that I had enabled and running during the
port scan were xfs and network. So I guess you can leave those two
running safely if you need them. I'm not sure if they are really needed
though in a desktop situation. I will remove them if I find out they are
not needed. rawdevices I have set in startup services but it was not
running. irda and fetchmail i do not have in my list of startup
services. If you use the self port scan at the forementioned URL, su in
a terminal first and run "tail -f /var/log/messages". Then you will see
all the attempts at getting in, and if they all have a DENY in them,
your door is locked.
_________________________________________________________
Do You Yahoo!?
Get your free @yahoo.com address at http://mail.yahoo.com
