Puppy Linux Discussion Forum Forum Index Puppy Linux Discussion Forum
Puppy HOME page : puppylinux.com
"THE" alternative forum : puppylinux.info
 
 FAQFAQ   SearchSearch   MemberlistMemberlist   UsergroupsUsergroups   RegisterRegister 
 ProfileProfile   Log in to check your private messagesLog in to check your private messages   Log inLog in 

The time now is Wed 13 Nov 2019, 21:33
All times are UTC - 4
 Forum index » Off-Topic Area » Security
Hardening your Linux Operating System
Post new topic   Reply to topic View previous topic :: View next topic
Page 1 of 1 [3 Posts]  
Author Message
labbe5

Joined: 13 Nov 2013
Posts: 2048
Location: Canada

PostPosted: Sun 29 Jul 2018, 12:16    Post subject:  Hardening your Linux Operating System
Subject description: a 4-part series
 

If you use a Linux operating system, it means you are aware of its superiority in terms of security, because you needed a reason to switch from Windows to Linux. No need to have an antivrius, anti-malware installed, it is a selling point for some. Others like it because it is free.

But Ubuntu users, and derivatives, can make their operating system even harder to hack into.

Read on and try to apply some advices to Puppy or Dog OS.

Part 1 : Physical Attack Defense
https://null-byte.wonderhowto.com/how-to/locking-down-linux-using-ubuntu-as-your-primary-os-part-1-physical-attack-defense-0185565/

Part 2 : Network Attack Defense
https://null-byte.wonderhowto.com/how-to/locking-down-linux-using-ubuntu-as-your-primary-os-part-2-network-attack-defense-0185709/

Part 3 : Application Hardening & Sandboxing
https://null-byte.wonderhowto.com/how-to/locking-down-linux-using-ubuntu-as-your-primary-os-part-3-application-hardening-sandboxing-0185710/

Part 4 : Auditing, Antivirus and Monitoring
https://null-byte.wonderhowto.com/how-to/locking-down-linux-using-ubuntu-as-your-primary-os-part-4-auditing-antivirus-monitoring-0185572/

Now, after reading this series, knowing how to harden your Linux operating system, specifically Ubuntu, and derivatives, update and upgrade your system on a regular basis, and you should be fine.

Firefox Hardening Guide :
https://www.privateinternetaccess.com/blog/2018/09/firefox-hardening-guide/
user.js template for configuring and hardening Firefox privacy, security and anti-fingerprinting
https://github.com/ghacksuserjs/ghacks-user.js
A comprehensive list of Firefox privacy and security settings
https://www.ghacks.net/2015/08/18/a-comprehensive-list-of-firefox-privacy-and-security-settings/
Firefox Configuration Guide for Privacy Freaks and Performance Buffs
https://12bytes.org/tech/firefox/firefoxgecko-configuration-guide-for-privacy-and-performance-buffs
If committed to have Ubuntu and Debian hardened, also read :
https://inteltechniques.com/data/ubuntu.pdf
https://brandonjl.com/linux-security-101/

Is offline cache really needed?
You may configure Firefox , in about:config, to disable the use of an offline cache.
browser.cache.offline.capacity 0
browser.cache.offline.enable false

To enable hardware acceleration in Firefox :
about:config
layers.acceleration.force-enabled setting. Double-click on the ‘false’ listed under the ‘value’ column to set it to ‘true’.

Further reading :
https://darkwebnews.com/cyber-security/top-10-dark-web-warning-signs-of-data-breach/
https://threatpost.com/threatlist-almost-half-of-the-worlds-top-websites-deemed-risky/136636/
Readers will take notice that the hacker does not write about Linux operating systems in following article, ask yourself why :
https://null-byte.wonderhowto.com/how-to/advice-from-real-hacker-know-if-youve-been-hacked-0157336/
secure emailing for everybody :
https://tutanota.com/blog/posts/innovative-encryption
https://addons.mozilla.org/en-US/firefox/addon/dnssec-validator/
https://tutanota.com/blog/posts/dane-how-to-browser-plugins
The Ultimate Online Privacy Guide (last updated : 2014)
https://darknetmarkets.org/guides/the-ultimate-online-privacy-guide/

Last edited by labbe5 on Wed 21 Nov 2018, 22:10; edited 5 times in total
Back to top
View user's profile Send private message 
rufwoof


Joined: 24 Feb 2014
Posts: 3614

PostPosted: Mon 08 Oct 2018, 05:09    Post subject:  

Quote:
Read on and try to apply some advices to Puppy or Dog OS

Open a terminal window (urxvt/xterm/lxterminal ... whatever) as root, open another as spot and using something like xdotool from the spot terminal window you can issue commands to set focus and use something like (don't do this) xdotool text 'rm -rf /' or xdotool key ctrl+alt+F1 ..etc. to the root terminal window. Some programs such as file managers, text editors can include options to open a terminal window, rox for instance most certainly does (i.e. root rox + spot cli can have spot invoking root actions relatively easily). Running one program such as a browser as spot within a root X session isn't secure as X by default isn't secure.

Windows security issues are a consequence of predominance (large numbers) and, historically, due to failing to adequately separate admin and user. Puppy is guilty of the latter.

_________________
( ͡° ͜ʖ ͡°) :wq
Fatdog multi-session usb

echo url|sed -e 's/^/(c/' -e 's/$/ hashbang.sh)/'|sh
Back to top
View user's profile Send private message 
8Geee


Joined: 12 May 2008
Posts: 2079
Location: N.E. USA

PostPosted: Tue 09 Oct 2018, 14:54    Post subject:  

The Firefox hardening guide is a must read for Firefox and clone users. About the only thing I didn't have was disable WebGL.


I have what is considered (by article) a hardened Firefox version here.
Just need to disable webGL in about config.

IIRC puppy has a root password manager that causes a password to be entered at every boot-up. I need a link to that thread. Thanks

Regards
8Geee

_________________
Linux user #498913 "Some people need to reimagine their thinking."
"Zuckerberg: a large city inhabited by mentally challenged people."
Back to top
View user's profile Send private message 
Display posts from previous:   Sort by:   
Page 1 of 1 [3 Posts]  
Post new topic   Reply to topic View previous topic :: View next topic
 Forum index » Off-Topic Area » Security
Jump to:  

You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You can download files in this forum


Powered by phpBB © 2001, 2005 phpBB Group
[ Time: 0.0446s ][ Queries: 11 (0.0163s) ][ GZIP on ]