search for guarddog, guidedog, they are frontends for the iptables, those are a firewall in linux. a verry good one at that.
Hi,
I've installed Knoppix and connected to the net. I understood there's no firewall and that by default 'all ports are closed'. However, (and excuse me for being such a newbie), I don't understand if this means the computer is actually secure or not.
I'm not running a server. My computer is a pure client. If all ports are closed, and are only opened when I willingly open them to access a network resource, that should be secure enough, right?
Or can this be exploited?
In short, what should I do to get decent security using my Knoppix box (installed to the HD) on the network?
search for guarddog, guidedog, they are frontends for the iptables, those are a firewall in linux. a verry good one at that.
It means if you have a service running then you are not accepting any outside connections on the port if you have no service running on a port it will be closed by default anyways and there should be no way to connect to it.Originally Posted by ezuk
Not quite sure what you mean here if the machine is just a client then you should not have to open anything. For instance if you want to connect to the internet (http) you do not have to open up port 80 you are doing the connecting to someones service not the other way around you only need to open the port when you want to provide the service to other people.I'm not running a server. My computer is a pure client. If all ports are closed, and are only opened when I willingly open them to access a network resource, that should be secure enough, right?
Or can this be exploited?
Install a firewall as suggested in the post above another one you may want to look at is firestarter. If you have not already done it some packages you may want to remove to prevent the startup of services once the package gets upgraded.In short, what should I do to get decent security using my Knoppix box (installed to the HD) on the network?
Code:samba, lisa, dhcp3-server, shaper, apache, brltty, ntp, nis, ssh, bind9, portmap, nfs, distccd, mysql-server, nvtv
You can check for open ports at Gibson Research by using the Shield's Up port scanner and a link on the Debian web site.
http://www.debian.org/doc/manuals/se...-debian-howto/
Thank you very much for both of your replies. You've helped me. :P
Dell PowerEdge R730 2x E5-2699V3 2.3Ghz 36 Core 128GB RAM H730 X520-I350 2x750W
$329.99
DELL R630 SERVER 8 x 2.5'' 2X E5-2680V4 32GB RAM IDRAC ENT & NDC 2X 495W PSU
$169.95
Dell Poweredge R630 Server 2x E5-2620 V4 =16 Cores | S130 | 32GB RAM | 2x trays
$153.99
Dell PowerEdge R630 Server 2x E5-2640v3 2.60Ghz 16-Core 64GB H330
$182.65
Dell PowerEdge T420 2x Xeon E5-2430 V2 2.50GHZ 32GB DDR3-1600MHZ 2x 550W PSU
$149.95
Dell PowerEdge R730XD 28 Core Server 2X Xeon E5-2680 V4 H730 128GB RAM No HDD
$389.99
Dell PowerEdge R630 Server 2x E5-2680 V4 = 28 Cores S130 32GB RAM NEW 480GB SSD
$190.99
Dell Poweredge R440 2x Xeon Silver 4110 SR3GH 32GB RAM No Drives Server
$349.99
DELL PowerEdge R730 Server 2x E5-2697v4 2.3GHz =36 Cores 128GB H730 4xRJ45
$461.00
DELL PowerEdge R630 8SFF Server 2x E5-2643v3 3.4GHz =12 Cores 64GB H730 4xRJ45
$270.00