SEARCH

Enter your search query in the box above ^, or use the forum search tool.

You are not logged in.

#51 2011-01-14 22:55:18

dr.ihsanali
Member
From: turkey-izmir
Registered: 2010-02-01
Posts: 23

Re: Tips for privacy and security

Hi,
How do I enable Gufw tray icon in Crunchbang Statler(openbox) and to minimize (to the tray) on close?
and which of 9.10.2(debian repo) or 10.10.1(gufw site) install?

Offline

Help fund CrunchBang, donate to the project!

#52 2011-01-15 01:36:46

rstrcogburn
CrunchRanger
From: NM - The Land of Enchantment
Registered: 2010-06-12
Posts: 1,950
Website

Re: Tips for privacy and security

@dr. ihsanali

you should probably install from the default squeeze repo,  since it will be built and tested against the version of ip-tables we are running.  gosh, i don't use it so don't know about the tray icon.  check the "Edit" menu for a "Preferences" entry and see if there is a tray icon check box or something.  hopefully it will show a tray icon when you first run it, then you can probably click on it and cause it to minimize to tray.  hope this helps some.


Pack em in snow!

Offline

#53 2011-01-15 02:30:50

dr.ihsanali
Member
From: turkey-izmir
Registered: 2010-02-01
Posts: 23

Re: Tips for privacy and security

Last edited by dr.ihsanali (2011-01-15 02:33:42)

Offline

#54 2011-01-15 02:42:32

rstrcogburn
CrunchRanger
From: NM - The Land of Enchantment
Registered: 2010-06-12
Posts: 1,950
Website

Re: Tips for privacy and security

It must be the 10.* version added tray support.  Gonna go through the changelog, etc. and figure out where to go from here.


Pack em in snow!

Offline

#55 2011-01-15 02:43:13

anonymous
The Mystery Member
From: Arch Linux Forums
Registered: 2008-11-29
Posts: 9,419

Re: Tips for privacy and security

Offline

#56 2011-01-15 02:46:09

rstrcogburn
CrunchRanger
From: NM - The Land of Enchantment
Registered: 2010-06-12
Posts: 1,950
Website

Re: Tips for privacy and security

^ that should work.  If there are compatability problems with Debian, you can build it. We can go through the building/packaging process for it on a different thread or something if you are new to packaging.

Last edited by rstrcogburn (2011-01-15 02:47:08)


Pack em in snow!

Offline

#57 2011-01-15 03:31:46

dr.ihsanali
Member
From: turkey-izmir
Registered: 2010-02-01
Posts: 23

Re: Tips for privacy and security

i inistalled "gufw_10.10.1-all.deb".
the same problem continues and translation is very bad:)
now unistall gufw...
and Ii write very bad english...sorry
thank you for helping.

Offline

#58 2011-01-15 03:38:13

rstrcogburn
CrunchRanger
From: NM - The Land of Enchantment
Registered: 2010-06-12
Posts: 1,950
Website

Re: Tips for privacy and security

@dr. ali that's crazy the latest version doesn't have icon support.  wonder what they are using extra for that.  I know python/glade it's built in supports tray icons, only thing that comes to mind is the possiblity of some other library for tray support.  I'd reccomend using "ufw" from the command line if possible.  That's what I use at work (school infrastructure) a lot and it's great.


Pack em in snow!

Offline

#59 2011-01-15 03:39:47

rstrcogburn
CrunchRanger
From: NM - The Land of Enchantment
Registered: 2010-06-12
Posts: 1,950
Website

Re: Tips for privacy and security

"man ufw" from the console should be a good starting point if they've got it localized in turkish


Pack em in snow!

Offline

#60 2011-01-15 11:28:41

dr.ihsanali
Member
From: turkey-izmir
Registered: 2010-02-01
Posts: 23

Re: Tips for privacy and security

i do not understand the problem and  deleted gufw
ufw very nice the command line.
works very well.
gufy to the cb-welcome is added in the future will be better...
thanks.

Offline

#61 2011-02-11 15:59:40

Falk
Member
Registered: 2011-02-05
Posts: 26

Re: Tips for privacy and security

Block flash cookies permanently when using Iceweasel -

chmod -R a-w .macromedia

Offline

#62 2011-02-11 16:41:40

Sector11
#!'er to BL'er
From: SR11 Cockpit
Registered: 2010-05-05
Posts: 15,667
Website

Re: Tips for privacy and security

chmod -R a-w .macromedia

Offline

#63 2011-02-11 17:27:16

Falk
Member
Registered: 2011-02-05
Posts: 26

Re: Tips for privacy and security

chmod -R a-w .macromedia

Last edited by Falk (2011-02-12 14:17:12)

Offline

#64 2011-02-22 13:03:40

Tunafish
#! Die Hard
From: the Netherlands
Registered: 2010-03-07
Posts: 1,204

Re: Tips for privacy and security

Last edited by Tunafish (2011-02-22 13:04:40)

Offline

#65 2011-03-15 03:18:04

tradetaxfree
#! CrunchBanger
Registered: 2011-03-05
Posts: 126

Re: Tips for privacy and security

tmpfs /tmp tmpfs defaults,noexec,nosuid 0 0

Last edited by tradetaxfree (2011-10-02 22:58:02)

Offline

#66 2011-04-14 04:32:26

crunchy
#! Junkie
From: Juneau, AK, USA
Registered: 2010-08-19
Posts: 461

Re: Tips for privacy and security

hey cool. thanks for posting all this. ixquick is a much better alternative to google and am now using it along with chkrootkit. (I don't think that the other firewall and virus stuff is necessary).

but still. in this case, for people who want that stuff running on their machine and taking up valuable cpu it great. (now someone will come along and convince me that I need other anti-virus stuff.)

Offline

#67 2011-04-14 09:04:00

Awebb
The Singularity
Registered: 2009-07-23
Posts: 2,812

Re: Tips for privacy and security

What do you guys do with your desktop that makes you think you need a firewall? If you set up your services properly, they only accept connections from 127.0.0.0/24 or 192.x.x.0/24. You can PM me with insights, don't wanna give your secret stuff away in public, huh?

EDIT:

Sector11 asked me for clarification on this one. Here it comes:

A firewall is needed to limit access to server software installed on your desktop. If there is no software listening for incoming traffic, the firewall has nothing to do, because no ports are open.

Example:
1. sshd listens for incoming connections on port 22, hence you might say "port 22 is open".
2. transmission/deluged/{p2p client} listens on a certain port range, might say "ports xxx-yyy are open"
3. Messenger clients may listen on different ports for file transfer and alike. You usually are not told which one's. Those ports are "open" too.

All other ports are not "open" by default, there is nothing listening on those ports. An "open" port is a port that is accessible from the outside. It depends on your point of view, whether a port visible in your LAN is open or if only a port exposed to the internet is considered to be "open". This depends on your expectation on how hostile other computers in your LAN might be :-)

What I'm suggesting:

Let's assume you run apache, a web server, because you want to share files with other computers in your network. You can limit the access to that server to a certain network.
- Your network is 192.168.0.1-192.168.0.254 (we also say 192.168.0.0/24 for an easy notation).
- Edit apache's config file to only accept connections from your network 192.198.0.0/24.

You won't need a firewall here. Even if you forward port 80 and 8080 in your router to your desktop, apache will refuse to talk to computers outside the given network

Now let's assume you run apache only to test your own website locally.
- There is no real network, but since we're on Linux, everything uses the network interface. You only connect to "localhost", which is also known as 127.0.0.1 (and 127.0.1.1 for certain things).
- Edit apache's config file to only accept connections from localhost/127.0.0.1.

In this case apache won't even bother talking to other computers in your LAN, including your router. Apache will basically ignore everything that comes over the network interface card.

The majority of Linux software works like that. If you can't change it in the config file, there is a big chance you can change it on compile time.

The usual reason Windows users use firewalls is that they intend to block software from dialing home and block those ports open by default. We Linux friends simply don't run such software, because we know better.

If you want to see whether your device is exposed, use nmap (with the zenmap GUI) from another machine in your LAN).

Last edited by Awebb (2011-04-15 06:52:00)


I'm so meta, even this acronym

Offline

#68 2011-04-17 21:13:31

db_crunch
#! Member
From: Your Hard-Disk
Registered: 2011-04-12
Posts: 68
Website

Re: Tips for privacy and security

Last edited by db_crunch (2011-04-17 21:24:58)

Offline

#69 2011-04-17 21:23:23

anonymous
The Mystery Member
From: Arch Linux Forums
Registered: 2008-11-29
Posts: 9,419

Re: Tips for privacy and security

Just a small question: what is the advantage of using the Privacy Extension over the built-in cookie white/blacklist in Firefox?

Offline

#70 2011-04-17 21:27:20

db_crunch
#! Member
From: Your Hard-Disk
Registered: 2011-04-12
Posts: 68
Website

Re: Tips for privacy and security

It makes using the whitelist & blacklist a lot easier, you'll instantly see the tracking cookies from the likes of google and ad.scorecard research and it prompts you if you'd like to block them, if you choose block. it blacklists them automatically. If you use google mail, via the web, you will have to remove googles imortal cookie from the exceptions blacklist from time to time, its a bit like noscript, whereas noscript will alert you to a potential XSS, this one alerts you when links on the page have changed as you've browsed the page. If googles cookie is blocked, they dont let you into your mailbox. LoL in which case its handy to use an alternative mailer and enigmail to access google. wink

I use the encrypted LVM that shipped with statler, that took the better part of 6 hours to setup on a 500GB SATA HDD. So I couldnt give a monkeys if the CIA or some crack head stole my laptop, without my encryption keys there going no-where fast. big_smile

NoScript=No XSS
Privacy_Ext=No Click Jacking!

Last edited by db_crunch (2011-04-17 21:43:33)

Offline

#71 2011-04-18 16:59:18

Sector11
#!'er to BL'er
From: SR11 Cockpit
Registered: 2010-05-05
Posts: 15,667
Website

Re: Tips for privacy and security

${addr eth0}

Last edited by Sector11 (2011-04-18 17:00:45)

Offline

#72 2011-04-25 10:53:08

pablokal
#! CrunchBanger
From: Nijmegen, Holland
Registered: 2009-12-11
Posts: 232
Website

Re: Tips for privacy and security

Last edited by pablokal (2011-04-26 08:16:24)

Offline

#73 2011-06-25 19:46:29

MAJOR
New Member
From: Sweden
Registered: 2011-06-21
Posts: 7

Re: Tips for privacy and security


A specter is haunting the modern world, the specter of crypto anarchy.

Offline

#74 2011-06-25 20:02:01

pvsage
Internal Affairs
From: North Carolina
Registered: 2009-10-18
Posts: 13,970

Re: Tips for privacy and security

^ I'm fairly certain this thread is geared toward privacy & security tips for Linux systems...

Offline

Help fund CrunchBang, donate to the project!

#75 2011-06-25 20:12:23

MAJOR
New Member
From: Sweden
Registered: 2011-06-21
Posts: 7

Re: Tips for privacy and security

its open source and available for multiple platforms, including linux. Had it on Ubuntu in the past and just installed it on crunchbang. Don't know if it is better than chkrootkit but its description seems to suggest it has more features.


A specter is haunting the modern world, the specter of crypto anarchy.

Offline

Board footer

Powered by FluxBB

Copyright © 2012 CrunchBang Linux.
Proudly powered by Debian. Hosted by Linode.
Debian is a registered trademark of Software in the Public Interest, Inc.
Server: acrobat

Debian Logo