On Friday 18 June 2004 05:25, G-Love wrote: > Hey, > > Can someone give a decent list of things I need to do to make my > system relatively secure? I'm not a total security nut, and > coming from someone who spent years as a winblows user I know > that many of my windows-borne security fears are no longer valid > (like the 4 million viruses and necessary patches every day). > However, I want my system to be secure enough so that those damn > script kiddies who use the same ISP as me can't get easy access > to my machine. So, a simple list of settings/things to do to > keep my machine & data pretty secure, but not Howard Hughes > secure, would be greatly appreciated. Thanks. > > -greg
Well, I can tell you what I've done in order to let my system pass the checks at http://www.sygatetech.com including trojans, portscans etc... If you have more than one user on your system and want each one to have a little privacy, set your security level to "higher". On my system this has no adverse effects, I can still do everything necessary as root. I use shorewall as my firewall. In shorewall I've unchecked everything. Most important though, is to run only services you really want. If you don't run your system as a web or mail server, turn those services of. Services like portmap etc.. are not needed unless you are having special needs. Experiment with your services. This can easily be done thusly : as root : service <nameofservice> stop and can be started anew : service <namofservice> start. That way you can turn them off one at a time until untoward effects occur. A final word : your linux system is by default orders of magnitudes safer than Windows, so all of the above is - IMHO - a little overkill. HTH Kaj Haulrich. -- * Sent from a 100 % Microsoft-free computer * * http://www.haulrich.net * * running Linux kernel 2.6.4 on Mandrake 10.0 *
____________________________________________________ Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com Join the Club : http://www.mandrakeclub.com ____________________________________________________