On Tue, Mar 20, 2001 at 11:58:45AM +0100, Mario Torre wrote:
> On Wednesday 14 March 2001 16:45, you wrote:
> > Hi all. Finally found a reason to post after half lurking on the list.....
> > Can anyone suggest to install and where I can learn about how to run it....
> > A friend of mine suggested TCPwrapers and Tripwire..... But I was wondering
> > if there were other things also I should look into......
Tripwire, at least the last version I looked at, was seriously non-trivial
to set up. Not that it isn't worth it, but if you are planning on
using the machine for a desktop workstation, it's going to be really annoying.
> > I'm going to use PPPoE to connect to the net..... And even on my win box
> > using Zone Alarm I get people randomly scanning ports and stuff.... Is
> > there something I can build on the Linux box that will keep me alerted
> > about stuff like that? What would be a good only source to learn about that
> > stuff?
> > a friend of mine suggested ipfwadm. whats the opinion on that?
ipfwadm is the firewalling tool for Linux.
As for my opinion, again, if you are using this for a desktop workstation,
forget it. A firewall should be a machine that has *ONLY* the firewall
running on it, doing port forwarding and/or ip masquerading to handle
inbound and outbound services.
If you want to be secure, go find the cheapest motherboard you can that
can boot of a cdrom, a cheap case, and a decent power supply. Then get
a cheap cdrom. Stick about 64 meg of ram in it, and set up a bootable
cdrom to load a ram disk with the ipfw stuff.
Even a 486 will be fast enough for this. You should be able to build such
a machine for under $150 US. It doesn't even need a monitor or keyboard
(for most bioss). Boom, you're up and running, and if you suspect the box
has been hacked, reboot. Since the os and all configuration files are on
cd, they can't break anything permanently.
> > oh I'm running RedHat 7.0 and i installed all the RPM updates from the
> > site.....
> > thanks.....
> > verg.
>
> Well, to be sure about these "invaders", you can build and setup nessus.
> Nessus is more than a port scanner, you can find holes in you network, as it
> tries to exploit known bugs, such as lpr and wu-ftp and others.
> If you use it with tripwire, and with a good firewall (linux [ :) ], but
> remember to set up also good policy!) you can stay pretty safe.
>
> In italian we say: chi piu' ne ha piu' ne metta! (more you add, more you're
> safe!)
Complexity in the enemy of correctness. The more you add, the more bugs
and security holes you will have, and the more time you spend dinking
with the system. Personally, if I'm not at work, I'd rather be
drinking, riding my motorcycle or out shooting than patching around
yet another stupid $kR|p+ K1|>|>i3.
IMO, if you are not a unix admin by trade or inclination, I'd spend the
<x> on something like a sonic firewall.
You do this stuff for fun, you wind up a cynical bitter old Sysadmin,
15 pounds overweight, with a hard liver, bad eyesight and a serious
distrust and hatred of all mankind. Don't join the dark side.
Oh, I forgot, you already run windows.
--
Share and Enjoy.
_______________________________________________
Redhat-devel-list mailing list
[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-devel-list
