Firewalls and Virusscanners
glen Merrick
at903 at chebucto.ns.ca
Tue May 26 00:28:58 UTC 2009
ClamAv is a good scanner. comes with a little gui and all that. Ubuntu
has 2 types of walls built in. 1 is apparmor, which can be a little
finicky at times and I think is off by default (correct me if I'm wrong)
and as far as firewalls go there is IP tables which is the basic of
basic firewall building blocks. There are apps/gui 's you can get that
will make it more intuitive.
Your primary concern with linux is to prevent intrusion. Linux is by
default a more secure OS, however the user can certainly open it up
completely. One thing to do is to make sure your patches are up to
date, don't give root a password (use sudo) whenever possible and if
your are running an ssh server outside of your router ie, naked on the
internet, ensure that you can only log into your machine using openssl
generated keys (or even if you access your computer from outside your
system use openssl keys). From there, if you do access your computer
from outside your lan, create a non-admin privledge account that you can
ssh into using openssl keys and then do a local ssh to whatever account
you want to use, or do a su - account name (ssh cleaner and potentially
safer). If your running an apache server, that's another bucket of
worms that are best left to others.
Regards,
Glen Merrick
More information about the ubuntu-ca
mailing list