Re: Is Linux safe for cable internet ?

From: Floyd Davidson (floyd_at_barrow.com)
Date: 08/21/03

• Next message: Ed Murphy: "Re: What is a Widget?"
• Previous message: Alan Connor: "Re: Windows shortcuts and Linux"
• In reply to: Arctic Wolf: "Is Linux safe for cable internet ?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

---

Date: 20 Aug 2003 18:22:01 -0800

Arctic Wolf <SpamShield-ArcticWolf@mail.com> wrote:
>I have Red Hat 9, and I'm continuously connected to EarthLink cable
>internet. The setup was easy; I simply set eth0 to dhcp, and everything
>worked. I set the security level to medium. Am I safe, or do I need to
>do more stuff for security?

No you are not safe. What you have is a sieve for security, and
it would take more diligence than I can imagine to maintain it if
you tried.

A *separate* firewall is highly recommended. It can be just any
old box you can find. Somebody's old pentium or even a 486
would do just fine. Today you can find old P2's for practically
nothing too.

Get one. All it needs is two NICs and one serial port. You
don't even really have to have a keyboard or a monitor once it
is setup right, though neither are expensive and both are danged
handy to have. Any old hard disk with at least a several
hundred Mb will be enough.

Then install a *barebones* Linux on it. Remove *everything*
that is unneeded. Set this system up as your firewall.

That way you have a firewall which does nothing but work as a
firewall, and you have some hope of keeping it secure.

Your regular workstation is no longer required to be secure, and
you can run whatever you like on it without worrying about
whether you are harming the security of your system.

-- 
Floyd L. Davidson           <http://web.newsguy.com/floyd_davidson>
Ukpeagvik (Barrow, Alaska)                         floyd@barrow.com

---

• Next message: Ed Murphy: "Re: What is a Widget?"
• Previous message: Alan Connor: "Re: Windows shortcuts and Linux"
• In reply to: Arctic Wolf: "Is Linux safe for cable internet ?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

---

Relevant Pages RE: A question about a basic security setup... ... A question about a basic security setup... ... > I was thinking of running iptables on the dual homed host, ... What you are looking for here, is an "application proxy" type firewall. ... (Security-Basics) Re: How to secure IIS? ... XP as well, because even if you don't install IIS, there are still a number ... If you think Windows 98 is secure, ... easy to attack, if there's no firewall... ... IIS security checklists] 3) install firewall and antivirus, ... (microsoft.public.inetserver.iis.security) RE: Hacked web server ... *good thing* that makes computer systems more secure. ... Many computerized systems would be far better off (more secure, ... and maybe even telephones provided the staff receive proper security ... machines with NAT on them being called a firewall. ... (Incidents) Re: Wanting To Try FreeBSD: Security Question. ... How hard is it to secure FreeBSD for a desktop computer? ... The relatively minimal pf.conf file for the firewall I run on my laptop, ... A firewall is not the end of all your security needs. ... (comp.unix.bsd.freebsd.misc) Re: router/firewall, wireless gateway recommendation for home user ... I wish to setup a firewall and NAT ... device to reduce direct attacks (additional security layer). ... Which home product do you recommend and why? ... We have an Ethernet cable setup. ... (Security-Basics)

---

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(17)