In the following post we will try to give some tips about it protection Linux operating systems. You'll find advice for people running individual Linux Workstations (for example, home users or small business users).
At first:
Do not assume that any Linux installation is safe from viruses and spyware spyware.
Many of the Linux security hazards are common in Windows and Mac computers.
Most modern Linux distributions provide some basic security features (automatic software / service updates, event logging, access control, and firewall or firewall functions as it is called), which are often enabled by default. Those who install a Linux workstation should have a basic understanding of the operating system and, if necessary, seek further guidance (such as from the official Linux distribution site, officially online Linux forums or mailing lists for that particular Linux distribution).
The dangers
Dangers of behavior
Many risks, such as fraud, phishing, spam and theft ID cards, they apply to both Linux users and users of other operating systems.
Bad user options, such as weak or no passwords, non-tracking of event logs, and wrong Linux software settings.
Technological Dangers
The risks for Linux Workstations may be increased due to unnecessary services and open network ports.
Failure to quickly update or update Linux software and services, especially with published vulnerabilities.
Running inherently unsafe services, such as using a system designed for use on a local network over the Internet.
Risks of exploitation
Social engineering, information theft.
Spam, trojans, botnets, back doors, viruses, rootkits.
Denial of service attacks.
Unauthorized scaling of rights.
Protect your information and workstation
Getting started
1. Download your Linux operating system software (including binaries, setup files, and patches) from trusted sources, such as an official Linux distribution CD/DVD or the legitimate Linux distribution website. It would be a good idea to download the installation CD/DVD from a torrent, because this way there are many distributors, which will protect you more than a hacked official website that distributes infected content. Validate ISO with checksum.
2. Configure Linux partitions with multiple partitions (using fdisk (or another similar).) Create a separate root partition, swap, binaries, and user file space.
3. Check the authenticity of all Linux operating system software before installing, validating their digital signatures and / or checksum values.
4. Avoid connecting as a privileged user, such as root. Log in to a non-privileged user account and use su to run administrative tasks.
5. Turn autorun (or equivalent) off to prevent media from running automatically.
6. Configure user accounts to lock the session after a predetermined period of inactivity (for example 15 minutes).
7. Keep your Linux up to date by regularly checking for updates and operating system and application updates.
Set up services and users
1. Disable or restrict all unnecessary services and unnecessary boot scripts such as Bluetooth, USB, wireless networking and infrared.
2. Avoid using unsafe management programs such as rlogin, telnet, tftp, ftp, rsh and rexec, and use secure remote file, file transfer and shell programs such as sftp, scp and ssh.
3. Remove unnecessary user accounts (for example, visitors) and groups that you do not use and make sure that all user accounts use a password before they are given access to the Linux workstation.
4. Use strong passwords for all user accounts on the Linux workstation (minimum eight characters, combinations of chapters, pedestals, alphanumeric, and special characters).
5. Protecting Linux workstations requires a number of activities, many of which concern all computers regardless of the operating system used. For example, protect the boot sequence, set file permissions, record events, backup, and track suspicious files or activity.
6. People who need more detailed advice on protecting Linux workstations (firewall, virus protection, disk and file encryption, email protection, program configuration tours on the Web and backup software) should consult with expert advisors from individuals or organizations specializing in Linux security.
