Bienvenido! - Willkommen! - Welcome!

Bitácora Técnica de Tux&Cía., Santa Cruz de la Sierra, BO
Bitácora Central: Tux&Cía.
Bitácora de Información Avanzada: Tux&Cía.-Información
May the source be with you!

Tuesday, July 29, 2008

Puppy Linux -Security

Securing Puppy in 5 easy steps.

After you boot up do the following:
--Open console type 'passwd root'. enter your new password twice.

--Run 'lock' on desktop and enter password from step 1

*you may want to select 'blank' from the config to save on processor usage

--Edit /etc/inittab to look like this:

tty1::respawn:/sbin/getty 38400 tty1
tty2::respawn:/sbin/getty 38400 tty2

*this keeps someone from killing lock with ctrl+alt+backspace and logging back in automatically and also gives the option on bootup to
enter 'root' and 'password'.

--Run the firewall wizard at Menu->Setup->Linux-Firewall Wizard. automagic works fine if you don't have to set up any local

--Shutdown and select 'heavy encryption'
Puppy is secure.

I never use anything more than the firewall in Puppy and a hardware firewall in the router
I believe the hardware firewall restricts use of VOIP, I could set it up differently but . . . [shrug]
A lot of people will appreciate what John Doe is suggesting.
For me encryption will slow Puppy, Login passwords as In the new Grafpup, having to mount CD's are hindrances - for some they are necessities. Unlike most Linux, Puppy is designed NOT for network use but for single desktop user.
However sometimes people share access, so these precautions become useful, so too with mobile use. We also do have networked users.
Puppy is flexible enough to be small, secure, network and thin client compatible and so on. In other words Puppy is small and simple enough to evolve in many directions . . . and he does . . .
Just remember a recent report (sorry no link) has found Windows Vista is no more secure than XP. Pah - wow? The worry more like. How slow is your Windows machine after adding essential security software?
No trojans, virii and other malware for Puppy. It kinda freaks out the Windows users who are used to living with essential computer slowing protection.
It's probably worth mentioning that Puppy isn't set up as a multiuser system.
You can add a new user login to Puppy by opening an rxvt console and entering the commands:
mkdir /home
[note: the above assumes you don't have that directory already]
adduser [new_user_name]
However, adduser fails to make a skeleton copy of all the configuration files, that new user would need, into their home directory.
Hence, if you tried booting up as that new user, you would find that all the required symlinks etc are not made for X windows desktop to operate. The system will boot into X as that user, but what you get is pretty much unusable and locked up - you don't even get a Menu bar so it's tricky to shut the system down again... If you do try such a thing, you can however always get out of X by pressing the key combination: Ctrl-[Backspace key]. That takes you to a bash commandline. Then you can login as root user and start X windows up again by entering the command: xwin
I also noticed that the command "deluser [username]" fails to remove any newly added user.

No comments: