Fedora Linux Support Community & Resources Center

Home Forums Posting Rules Linux Help Fedora Set-Up Guides Ask Fedora Fedora Project
Go Back   FedoraForum.org > Fedora 17/18 > Security and Privacy
Reload this Page FC3 general questions about to stealth Linux
FedoraForum Search
Forgot Password? Join Us!
Register All Albums FAQ Search Today's Posts Mark Forums Read

Security and Privacy Sadly, malware, spyware, hackers and privacy threats abound in today's world. Let's be paranoid and secure our penguins, and slam the doors on privacy exploits.

Reply
 
Thread Tools Search this Thread Display Modes
  #1  
Old 2nd October 2005, 11:29 PM
rantanplan's Avatar
rantanplan Offline
Registered User
  
Join Date: Oct 2004
Location: Germany
Age: 42
Posts: 125
Post FC3 general questions about to stealth Linux
Hi,
this are 3 questions.

1. Must the sshd run when i access https:// sites. Does the ssh-client still work when i disable this service ?
2. i wonder if i can clean up my /etc/passwd and delete
some accounts for security reason. I made it already and it looks like anything works.
3. How to stealth my FC3 in the best possible way as internet-client/workstation ?

I read already the 'sticky thread' and will look further for the programs described.

Thank you.
__________________
No bugs, no hugs, no virus, no spiritus. :rolleyes:
Last edited by rantanplan; 2nd October 2005 at 11:30 PM. Reason: stealt -> stealth
Reply With Quote
  #2  
Old 2nd October 2005, 11:51 PM
markkuk Offline
Registered User
  
Join Date: Apr 2005
Location: Finland
Posts: 5,076
1. sshd isn't needed to use the ssh client for accessing other machines. https: access uses SSL/TLS protocol, not SSH.
2. Don't touch any system accounts (the ones with UIDs less than 500), or your installed software may break.
3. Disable any services you don't need and set up the firewall with system-config-security.
Reply With Quote
  #3  
Old 3rd October 2005, 03:45 PM
ibbo's Avatar
ibbo Offline
Registered User
  
Join Date: Jun 2005
Location: Leeds
Posts: 1,264
You can modift /etc/passwd to disallow logins

so an entry like
root:x:0:0:root:/root:/bin/bash
can become
root:x:0:0:root:/root:/sbin/nologin

Not that you would do this to root (or yourself).

Also take a look at
http://www.cromwell-intl.com/securit...hardening.html

Ibbo
__________________
A Hangover Lasts A Day, But Our Drunken Memories Last A Lifetime
--
Linux user #349545
(GNU/Linux)iD8DBQBAzWjX+MZAIjBWXGURAmflAKCntuBbuKCWenpm XoA7LNydllVQOwCfdjyzXscddzQvlhBedAcD7qfKmHo==zx0H
Reply With Quote
  #4  
Old 4th October 2005, 11:12 AM
rantanplan's Avatar
rantanplan Offline
Registered User
  
Join Date: Oct 2004
Location: Germany
Age: 42
Posts: 125
@markkuk
But i got only problem for the smmd-user for the mail. I copied the line from the old /etc/password and now there is no error more.

@ibbo
Yes. This is the easier way i think. Thank you. Thanx for the link. I go through it. This will help.
__________________
No bugs, no hugs, no virus, no spiritus. :rolleyes:
Reply With Quote
  #5  
Old 4th October 2005, 07:28 PM
rantanplan's Avatar
rantanplan Offline
Registered User
  
Join Date: Oct 2004
Location: Germany
Age: 42
Posts: 125
Unhappy Surprise !
Surprise. I screwed up my FC3. Using the graphical manager for user/groups says that my /etc/shadow is not in sync with /etc/passwd. I have copied the original but now i got still strange behaviour from such programs.
As said above. -

Logging in to terminal says : I have no name. There is no name for user-id 501. But i can still login with this user.
I revert the changes that i made but it's still screwed.
So far for my eperiment for a secure FC3.

Is there an solution to go back at default ? (without whole install)
__________________
No bugs, no hugs, no virus, no spiritus. :rolleyes:
Reply With Quote
  #6  
Old 5th October 2005, 12:43 PM
rantanplan's Avatar
rantanplan Offline
Registered User
  
Join Date: Oct 2004
Location: Germany
Age: 42
Posts: 125
Ok. The "I have no name@" problem is solved. Thank you. ;-)
I changed the file permission of /etc/passwd and /etc/group when i copied it back as i was root.
So no one else could read it. Bad things happen.
I changed it with chmod 644. Only for completion. If anyone is interested.
Where i find the trick:
http://www.uwsg.iu.edu/hypermail/lin...12.1/0057.html

Thread ended. :-)
__________________
No bugs, no hugs, no virus, no spiritus. :rolleyes:
Reply With Quote
Reply

Tags
fc3, general, linux, questions, stealth

« Previous Thread | Next Thread »
Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
OT: Forum for general Linux & Open Source Questions would be? Mel_3 Using Fedora 4 7th August 2008 10:40 PM
Diamond Stealth® X1550 PCI Express questions F.User_4_Life Hardware & Laptops 0 18th July 2008 02:00 AM
General questions FC8 Dustan Hardware & Laptops 3 6th March 2008 03:01 PM
just some general vnc questions boyd98 Using Fedora 1 13th June 2007 07:31 PM
General questions please Cerivrin Using Fedora 8 30th November 2005 04:26 PM


Current GMT-time: 10:27 (Tuesday, 21-05-2013)

TopSubscribe to XML RSS for all Threads in all ForumsFedoraForumDotOrg Archive
logo

All trademarks, and forum posts in this site are property of their respective owner(s).
FedoraForum.org is privately owned and is not directly sponsored by the Fedora Project or Red Hat, Inc.
Privacy Policy | Term of Use | Posting Guidelines | Archive | Contact Us | Founding Members

Powered by vBulletin® Copyright ©2000 - 2012, vBulletin Solutions, Inc.

 FedoraForum is Powered by RedHat