[Boards: 3 / a / aco / adv / an / asp / b / biz / c / cgl / ck / cm / co / d / diy / e / fa / fit / g / gd / gif / h / hc / his / hm / hr / i / ic / int / jp / k / lgbt / lit / m / mlp / mu / n / news / o / out / p / po / pol / qa / r / r9k / s / s4s / sci / soc / sp / t / tg / toy / trash / trv / tv / u / v / vg / vp / vr / w / wg / wsg / wsr / x / y ] [Home]
4chanarchives logo
GNU/Linux security
Images are sometimes not shown due to bandwidth/network limitations. Refreshing the page usually helps.

You are currently reading a thread in /g/ - Technology
Thread replies: 26
Thread images: 2
Owen Salas
GNU/Linux security 2016-04-01 16:58:30 Post No. 53809186
[Report] Image search: [Google]
File: screaming_code_inside.jpg (1 MB, 3264x2448) Image search: [Google]
screaming_code_inside.jpg
1 MB, 3264x2448
GNU/Linux security Owen Salas 2016-04-01 16:58:30 Post No. 53809186 [Report]
Hi, I'm fucking paranoid about cybersecurity and i moved Linux. I listen "Linux is safe, don't care about malwares" but i still don't trust. I installed today Arch Linux and i3. After installation i found strange named "Remove" "After" "Upgrade" "You". Well i installed just alsamixer and i3-gaps and now i want listen. What programs do you use to protect your GNU/Linux?
>>
Kendra Archer 2016-04-01 17:00:10 Post No.53809208
[Report]
Kendra Archer 2016-04-01 17:00:10 Post No.53809208 [Report]
>>53809186
gentoo
>>
Sheldon Valdez 2016-04-01 17:01:19 Post No.53809229
[Report]
Sheldon Valdez 2016-04-01 17:01:19 Post No.53809229 [Report]
>>53809186
> i moved to a GNU/Linux
>strange files, named like a...
Sorry for my errors.
>>
Cesar Gay 2016-04-01 17:01:36 Post No.53809235
[Report]
Cesar Gay 2016-04-01 17:01:36 Post No.53809235 [Report]
>>53809208
this t.b.h. f.a.m.
>>
Drew Gallagher 2016-04-01 17:08:21 Post No.53809324
[Report]
Drew Gallagher 2016-04-01 17:08:21 Post No.53809324 [Report]
what???
>>
Kate Pace 2016-04-01 17:13:01 Post No.53809398
[Report]
Kate Pace 2016-04-01 17:13:01 Post No.53809398 [Report]
>>53809324
I installed Arch Linux and i3-gaps and ALSA. And i found strange named files in my folder.
>>
Rosemary Carroll 2016-04-01 17:19:50 Post No.53809505
[Report]
Rosemary Carroll 2016-04-01 17:19:50 Post No.53809505 [Report]
If >>53809186
you are using minimal distribution like arch be sure to read man page of every installed package.
>>
Dorothy Livingston 2016-04-01 18:40:13 Post No.53810696
[Report]
Dorothy Livingston 2016-04-01 18:40:13 Post No.53810696 [Report]
>>53809186
You must have a lot of CP and loli
>>
Maria Vaughan 2016-04-01 19:01:25 Post No.53811028
[Report]
Maria Vaughan 2016-04-01 19:01:25 Post No.53811028 [Report]
>>53809505
This. Google is your friend. If you don't know what it is, find out.
>>
Arthur Duffy 2016-04-01 19:03:44 Post No.53811062
[Report]
Arthur Duffy 2016-04-01 19:03:44 Post No.53811062 [Report]
>>53811028
Already tried, nothing found. I just reinstalled it to XFCE.
>>
Stuart Frye 2016-04-01 19:07:15 Post No.53811125
[Report]
Stuart Frye 2016-04-01 19:07:15 Post No.53811125 [Report]
>>53811062
Is security or also privacy what you want? They are two different things.

Also, system monitoring is apart too.
>>
Amber Banks 2016-04-01 19:09:09 Post No.53811154
[Report]
Amber Banks 2016-04-01 19:09:09 Post No.53811154 [Report]
>>53809186
Systemd botnet
>>
Mary Rosales 2016-04-01 19:11:33 Post No.53811185
[Report]
Mary Rosales 2016-04-01 19:11:33 Post No.53811185 [Report]
>>53811125
OP here

Security. I don't care about privacy. I'm not hidding .
>>
Karl Hogan 2016-04-01 19:25:42 Post No.53811382
[Report]
Karl Hogan 2016-04-01 19:25:42 Post No.53811382 [Report]
>>53811185
In that case.
There is a tool that automatically hardens your GNU/Linux, is called Bastille. It does some security settings for you, but of course you have to be sure of what you do. Otherwise, here is a list, figure what you need according to your skills and preferences:

Anti Virus (to clean windows viruses from a friend's windows computer): ClamAV, ClamTk
HID Framework: Tiger
Rootkit Detection: Chkrootkit
Integrity Check: Tripwire
System Logging: Syslog-ng
Sandbox: chroot, LXC
Privilege Authorization: AppArmor
User Permissions: Sudo
Filtering Proxy: Privoxy
Man-in-the-middle Defense: ArpON, arpwatch
Network Intrusion Detection: Suricata, Snort
Network Intrusion Prevention: Fail2ban
Firewall: Netfilter, iptables, Uncomplicated Firewall
>>
Priscilla Wolfe 2016-04-01 19:30:49 Post No.53811449
[Report]
Priscilla Wolfe 2016-04-01 19:30:49 Post No.53811449 [Report]
>>53811382
Almost fortgot. Maybe is more privacy oriented but keeping passwords safe is a good habit. I suggest KeePassX, it has autocomplete for browsers.
>>
Valerie Shea 2016-04-01 19:35:34 Post No.53811533
[Report]
Valerie Shea 2016-04-01 19:35:34 Post No.53811533 [Report]
>>53811382
Many thanks. Not OP, but interested.
>>
Alisha Odom 2016-04-01 19:38:40 Post No.53811583
[Report]
Alisha Odom 2016-04-01 19:38:40 Post No.53811583 [Report]
>>53811533
We should have these threads more often imho.
>>
Guillermo Reyes 2016-04-01 19:38:47 Post No.53811585
[Report]
Guillermo Reyes 2016-04-01 19:38:47 Post No.53811585 [Report]
kys owen
>>
Kathy Fleming 2016-04-01 19:58:58 Post No.53811888
[Report] Image search: [Google]
Kathy Fleming 2016-04-01 19:58:58 Post No.53811888 [Report]
File: random1.jpg (87 KB, 800x800) Image search: [Google]
random1.jpg
87 KB, 800x800
>>53811583
Yea /lst/GNU/Linux Security Thread is pretty good idea.
>>
Vicki Reed 2016-04-01 20:00:40 Post No.53811915
[Report]
Vicki Reed 2016-04-01 20:00:40 Post No.53811915 [Report]
None tbqh
>>
Marion Conrad 2016-04-01 20:26:39 Post No.53812301
[Report]
Marion Conrad 2016-04-01 20:26:39 Post No.53812301 [Report]
>>53811382
> User Permissions: Sudo
Every bug in sudo is additional backdoor to a privilege escalation (CVE-2010-0426, CVE-2015-5602). That goes for every piece of software running with root privileges.
>>
Brittney Pugh 2016-04-01 20:41:01 Post No.53812508
[Report]
Brittney Pugh 2016-04-01 20:41:01 Post No.53812508 [Report]
>>53811382

Another tool to test your system is Lynix.
>>
Inez Mack 2016-04-01 20:42:00 Post No.53812521
[Report]
Inez Mack 2016-04-01 20:42:00 Post No.53812521 [Report]
>>53809186

I use iptables, grsec, OSSEC and fail2ban to protect my Linux.

Also, stop prepending "GNU/" to it like a goddamn retard.
>>
Megan Chandler 2016-04-01 20:45:01 Post No.53812562
[Report]
Megan Chandler 2016-04-01 20:45:01 Post No.53812562 [Report]
If you want security, why would you use Linux? It doesn't even have mitigations!
>>
Mary Foley 2016-04-01 20:52:07 Post No.53812661
[Report]
Mary Foley 2016-04-01 20:52:07 Post No.53812661 [Report]
>>53811888
and thus another shitty general was born
>>
Cindy Boyd 2016-04-01 21:11:10 Post No.53812922
[Report]
Cindy Boyd 2016-04-01 21:11:10 Post No.53812922 [Report]
>>53812521
yes use grsec

and why did you install arch? you should be using gentoo hardened or complete lfs with specific compiler and linker flags to add protections to your programs. for example you would want full read only GOT so that ROP involving reading and overwriting function pointers in the GOT section will be thwarted, you want SSP, and in all functions so typical buffer overflows become more of a pain since there is a value in the function prologue you must match at the check at the epilogue otherwise you get jumped to a stack check failure function that will exit the program. you want full ASLR not only in your program but the libraries they use, you want a program that can exist anywhere in memory. you should use grsec's aslr in kernel and forced aslr in userland. processors today typically have a hardware bit that marks some parts of memory as non executable so code injection like shellcode is treated as data, however libraries like libc are executable because they have to be. this was marketed by AMD in 1997 as the NX bit and Intel marketed as the XD bit later on. lastly you dont want hardcoded library runtime paths so make sure RPATH and RUNPATH and not set.

-Wl,-z,now,-z,relro will make GOT readonly
-fstack-protector-all will put canaries in all functions (osdev.org has a wiki page about ssp, give it a read)
-pie -fPIE -fPIC will make sure your binaries are able to be location independant in memory
-D_FORTIFY_SOURCE=2 will help with stack based overflows
--noexecstack will simulate NX but again not really needed.

together with grsec, and anything else you want will get you set. use rbac for acls, never selinux.
Thread replies: 26
Thread images: 2
banner
banner
[Boards: 3 / a / aco / adv / an / asp / b / biz / c / cgl / ck / cm / co / d / diy / e / fa / fit / g / gd / gif / h / hc / his / hm / hr / i / ic / int / jp / k / lgbt / lit / m / mlp / mu / n / news / o / out / p / po / pol / qa / r / r9k / s / s4s / sci / soc / sp / t / tg / toy / trash / trv / tv / u / v / vg / vp / vr / w / wg / wsg / wsr / x / y] [Home]
All trademarks and copyrights on this page are owned by their respective parties. Images uploaded are the responsibility of the Poster. Comments are owned by the Poster.
If a post contains personal/copyrighted/illegal content you can contact me at [email protected] with that post and thread number and it will be removed as soon as possible.
DMCA Content Takedown via dmca.com
All images are hosted on imgur.com, send takedown notices to them.
This is a 4chan archive - all of the content originated from them. If you need IP information for a Poster - you need to contact them. This website shows only archived content.