kanotix.com :: Thema anzeigen - How can I harden my shell?

kanotix.com

General Support - How can I harden my shell?

SentralOrigin - 14.11.2006, 17:08 Uhr
Titel: How can I harden my shell?

How can I make my machine more protected without affecting my wireless internet?

hey_ian - 14.11.2006, 18:43 Uhr
Titel: Re: How can I harden my shell?

SentralOrigin hat folgendes geschrieben::

How can I make my machine more protected without affecting my wireless internet?

Kanotix is secure enough. What exactly do you mean with more protected? What do you think of? Software? A Router?

SentralOrigin - 14.11.2006, 18:45 Uhr
Titel:

Okay if it is secure enough then it's fine.
I was thinking like a firewall or something to protect myself from people who try to target me for hacking around this school as a big joke
Not funny

h2 - 14.11.2006, 19:29 Uhr
Titel:

Firewall, of course, firestarter is an easy way to set that up. Unless you need access to your machine remotely no ports should be open.

Check all running services, turn off all the ones you don't use, especially samba and ssh.

ironwalker - 28.11.2006, 23:21 Uhr
Titel:

I use harden and harden-enviroment.
Harden-tools which reccomends bastille.Bastille has its own firewall that you can configure but I dont use the firewall part of it.
RkHunter is a good tool to check for rootkits.
You could encrypt your harddrive.
Maybe set up a kanotix-Selinux enviroment as well.

That should be a great start for you.
I dont use software firewalls on my nix* boxen,I have yet to find one that allows/disallows per apps.I always used one for outgoing actions and on a per app basis.

Being behind a good hardware firewall is best,could set up a small older box for the firewall and maybe have another with just database sniffer and some other tools to have before your switch of pc's.

LinuxGeek - 29.11.2006, 19:44 Uhr
Titel:

ironwalker hat folgendes geschrieben::

I dont use software firewalls on my nix* boxen,I have yet to find one that allows/disallows per apps.I always used one for outgoing actions and on a per app basis.

Actually, that's starting to change. Check out TuxGuardian for a firewall that allows / denies outgoing access based on application (http://tuxguardian.sourceforge.net/)

ironwalker - 29.11.2006, 23:13 Uhr
Titel:

Thank you!