Linux Migrate to Linux - Security concerns

[Techman]

I am basically planning to migrate my download box to linux (earlier was using Win XP).

1. My major concerns are about phishing and stealing my account details, cookies etc. Is there a way to protect this ?

2. What is the good firewall solution to block port other than FTP and Utorrent, how do I ensure that even I do not get hacks/security issues from these ports? Please elaborate, dont briefly say comodo and zone alarm etc.

3. Also I would be downloading huge files over 4 GB, will the operating system be able to handle the same and play it in my media player?

4. What will be the best FTP (binary and with resume capability and secure - do we have a cute ftp for linux ?), pdf reader, mp3 / video player, (for office I think I will go for novell openoffice, that is atleast close to msoffice)

 

[alcy]

I am basically planning to migrate my download box to linux (earlier was using Win XP).

1. My major concerns are about phishing and stealing my account details, cookies etc. Is there a way to protect this ?

As long as you don't click on spam links, you're good with the default security control that ships with linux.

2. What is the good firewall solution to block port other than FTP and Utorrent, how do I ensure that even I do not get hacks/security issues from these ports? Please elaborate, dont briefly say comodo and zone alarm etc.

Things are different in linux. As a start, you need to read about iptables. There are a few graphical tools to make things easier for you.

3. Also I would be downloading huge files over 4 GB, will the operating system be able to handle the same and play it in my media player?

Yes.

4. What will be the best FTP (binary and with resume capability and secure - do we have a cute ftp for linux ?), pdf reader, mp3 / video player, (for office I think I will go for novell openoffice, that is atleast close to msoffice)

gFTP, evince, VLC, Open Office

Btw, all of this is available in pretty much all the major distributions of linux. For a quick start, get Ubuntu 9.10.

 

[Techman]

^ Thanks alcy

As long as you don't click on spam links, you're good with the default security control that ships with linux.

That might not be the only source, I am scared that these stealing happen in different ways. For instance, while logging into a bank the passwords are getting stolen, while entering the credit card information, the number is stolen. I am a member of private tracker sites, I cannot remember all of the passwords and login everytime. For somereason I have to keep my autologging on.

Things are different in linux. As a start, you need to read about iptables. There are a few graphical tools to make things easier for you.

Honestly I dont know anything about it, but I will not be able to restrict user based on IP, as in utorrent I may not know which peer with what IP will be downloading from my content or what IP I will get connected to download from a source

gFTP, evince, VLC, Open Office

Btw, all of this is available in pretty much all the major distributions of linux. For a quick start, get Ubuntu 9.10.

Thanks for these, I forgot to mention that my priority always goes to performance not to looks / ease of use etc.

 

[alcy]

That might not be the only source, I am scared that these stealing happen in different ways. For instance, while logging into a bank the passwords are getting stolen, while entering the credit card information, the number is stolen. I am a member of private tracker sites, I cannot remember all of the passwords and login everytime. For somereason I have to keep my autologging on.

There are two aspects regarding these security issues: first is the inherent security mechanism of the websites you visit, and the second one is your own browser & the OS.
Browser plays an important part, of course. Regarding the OS, there are tools available in linux (some by default, and some additional) which will help you keep all your encryption keys & passwords secure.

Honestly I dont know anything about it, but I will not be able to restrict user based on IP, as in utorrent I may not know which peer with what IP will be downloading from my content or what IP I will get connected to download from a source

My knowledge regarding implementation of firewalls is limited, but I can assure you that there are enough tools available to work with and if you know what you need to do exactly, you won't have a problem.

Thanks for these, I forgot to mention that my priority always goes to performance not to looks / ease of use etc.

Ubuntu is a good distribution. Performance wise as well as regarding ease of use.

 

[GrimReaper]

4. Software suggestions for your download box . The best among many imo .

Pdf reader

Evince
Adobe Reader 9
Foxit Reader

MP3 Player

Amarok (popular)
RythmBox (default player)
Songbird (looks and features)

Video Players

MPlayer
Totem Movie Player (Default)
VLC media player

FTP

FileZilla
Samba

3. Absolutely no issues handling large files .But if you plan to transfer these files between windows machines i recommend you use an anti-virus like Avast Home Edition for Linux or ClamAV .

2. Firestarter fits your requirement perfectly (click on the link to read more)

1. Use a password manager like KeePassX , Last Pass or GPass
you might also want to check out Nero's Basic burning software for Linux (free version) for burning DVDs and a dvd authoring tool like DeVeDe to create video DVDs with menus .

 

[Techman]

^^I will be mostly using Firefox latest version (I will install few addon for my bookmark etc).

Truely speaking, I wanted to learn more Linux stuff. But I dont want to compromise on security with this excuse. So basically I need to know what are the things in Security POV should be taken care for a new user.

Thanks GrimReaper

.But if you plan to transfer these files between windows machines i recommend you use an anti-virus like Avast Home Edition for Linux or ClamAV .

Do you say this for thumbdrive / flash drive / portable hard disk usage ?

Use a password manager like KeePassX , Last Pass or GPass

I dont require password manager, there are autosave options and I want to protect those cookies from being hacked. Because even if I use these password manager I cannot avoid cookies for some sites which by default does autologging.

 

[GrimReaper]

Do you say this for thumbdrive / flash drive / portable hard disk usage ?

Yes and No

Linux anti-virus programs aren’t meant to protect the desktop machine from Linux viruses. An anti-virus program running on Linux is designed to detect Windows viruses, so that they aren’t spread, unknowingly, by the Linux user.A linux user is practically immune from a windows virus and a few Linux virus that do exist do very little damage considering the extensive authentication mechanism included in Linux .You need the root password for just about anything from installing programs to mounting drives .

Since you requested for a FTP i am assuming that you plan to network with a windows computer . Or at the least transfer stuff between your Linux and windows machines (since this is just a download box) .
If you are not planning to share stuff between your linux and windows machine you dont need a Anti-virus software

I dont require password manager, there are autosave options and I want to protect those cookies from being hacked. Because even if I use these password manager I cannot avoid cookies for some sites which by default does autologging.

Password managers like KeePassX use standard encryption algorithms like AES and blowfish to store your passwords .Which makes them very safe considering that institutions like banks use the very same algorithms for encryption . They will be more secure when compared to a browser's password manager .

As for tracking cookies .You must follow certain procedures to ensure safety such as clearing your cookies before visiting a banking site ,using security addons like script blocker for firefox and using the private browsing facility in your firefox (it doesnt save your browsing history limiting the functionality of tracking cookies).
This is quite independent of your OS and is more browser and user dependent

 

[Techman]

Since you requested for a FTP i am assuming that you plan to network with a windows computer . Or at the least transfer stuff between your Linux and windows machines (since this is just a download box) .

No ... I will be transfering files from my seedbox which is again a cent o/s linux system.

You must follow certain procedures to ensure safety such as clearing your cookies before visiting a banking site

Agree for bank site, what about TE,Xbhp,Team-bhp and other private tracker sites where I want to keep it auto logged in. At the same time I consider the security to be important. I do not want to clear the cookies, instead want to protect them.

 

[GrimReaper]

.
Agree for bank site, what about TE,Xbhp,Team-bhp and other private tracker sites where I want to keep it auto logged in. At the same time I consider the security to be important. I do not want to clear the cookies, instead want to protect them.

what were you doing in your xp machine to secure your cookies ?

My solution would be to use separate browsers for sensitive web sites like Internet banking sites .

 

[Techman]

what were you doing in your xp machine to secure your cookies ?

Kaspersky Internet Security 2010, the only solution to any security issue.

My solution would be to use separate browsers for sensitive web sites like Internet banking sites

There is something called SE Linux, does it help in any way for cookie protection, I think it has more to do with access rights.

 

[linuxtechie]

@OP

Mine personal opinion: since you are coming from Windows kingdom you are scared by the anarchism of that place. Relax, this is linux, keep the root password secured and nobody can do anything without coaxing you.

+LT

 

[Techman]

^ Phishing (including stealing passwords, cookies) dont happen in Linux ?

 

[Gaurish]

Hi,

Refer to these Guides:

Keeping Your Computer Safe

Switching From Windows

^ Phishing (including stealing passwords, cookies) dont happen in Linux ?

Phishing is actually user's fault. so you use your common sense and fallow basic security tips you should be finehyeah:

Also, Set a master password in firefox

Protecting stored passwords using a master password

I am basically planning to migrate my download box to linux (earlier was using Win XP).

4. What will be the best FTP (binary and with resume capability and secure - do we have a cute ftp for linux ?), pdf reader, mp3 / video player, (for office I think I will go for novell openoffice, that is atleast close to msoffice)

you look here:

http://www.techenclave.com/open-source-and-linux/need-program-do-xxx-task-gnu-157304.html

 

[amitkher]

Kaspersky Internet Security 2010, the only solution to any security issue.

Kapersky does not and cannot protect against phishing, cookie stealing and the issues that you are mentioning. If Kapersky marketing is telling you so, it is lying.

 

[amitkher]

Kaspersky Internet Security 2010, the only solution to any security issue.

Kapersky does not and cannot protect against phishing, cookie stealing and the issues that you are mentioning. If Kapersky marketing is telling you so, it is lying.

Any issues that Kapersky protects from, are non-existent in well-updated linux distributions. Secondly, a person as sensitive about security as you, should not run bittorrent either. You are more at risk from bittorrent than the other issues you mention.