How do I ensure that my computer is secure when connecting to the net via modem using Linux? I've shadowed my password, disabled finger and Telnet. I visited www.grc.com (http://www.grc.com) and did a port probe with the following ports open:

Port 21 Service FTP
Port 113 Service IDENT

Do I need the above ports open when browsing and/or downloading? What else do I need to do to minimize any security risks?

You don't need either of those ports open for "browsing and downloading" - if you get on IRC at all, I think you will need ident open (someone else correct me if I'm wrong), but only keep FTP open if you wish to host a FTP server, which I doubt you do.. so close em' off :}

regards,

~kyle

Fandelem,

Thanks for replying. BTW, I forgot to ask: How do I close the ports (i.e FTP and IDENT)?

/etc/inetd.conf

(comment) # out the lines

regards,

~kyle

You most likely want to shut off ftp, but as stated above you should have ident up for IRC. There are some servers that will let you on without one, but very few. (irc.prison.net will)

After you comment out and restart inetd (killall -HUP inetd), do a "netstat -an|more" to ensure nothing is listening to 21 or 113. If 21 is still up, then you might have a ftp daemon that is independent of inetd . (Mine is at least. [proftpd])

-r

Originally posted by iDxMan:

You most likely want to shut off ftp, but as stated above you should have ident up for IRC. There are some servers that will let you on without one, but very few. (irc.prison.net will)


EFNet junkies! All the good channels are on irc.openprojects.net!! (No ident req'd either).

Originally posted by twist:
EFNet junkies! All the good channels are on irc.openprojects.net!! (No ident req'd either).



LOL http://www.linuxnewbie.org/ubb/biggrin.gif . Not a junkie, but I pop in there to say hi to old friends.. Kind of annoying when I can't get there..

-r