I have just installed slackware 7.1 and was wondering what all needs to be done initally to make sure things are secure from the get go. I just use dial up right now. I have added ALL: ALL to hosts.deny. My other main concern is the various demons getting started at boot time. Which script fires these up??

/etc/inetd.conf

comment out telnet, finger, and whatever else your not gonna use.

What about Samba and Apache. Since I'm just on dialup right now I don't really need those running since I'm not running a server of any kind. Are they just loaded by one of the rc.X files??? Thanks.

Most of the daemons that can cause security problems are started up by inetd. You can open up inetd.conf, and comment out the appropriate lines (with a #), then restart inetd.

First you should read up on init:

man 8 init

/etc/rc.M is the script which is started by init when the system is being initialized for one of the "multi-user" run levels. You can verify this by:

head /etc/rc.d/rc.M


If you step through /etc/rc.d/rc.M you can see where it invokes /etc/rc.d/rc.samba and where it invokes /etc/rc.d/rc.httpd

less /etc/rc.d/rc.M

If you want to stop apache from starting just modify the /etc/rc.d/rc.httpd file

If you want to stop samba from starting just modify the /etc/rc.d/rc.samba file

Good Luck!

Commenting out everything but ident in /etc/inetd.conf (restart after - kill -HUP <pid of inetd> ) - you need ident for some IRC servers. If you have other things like Apache starting, just chmod -x rc.foo so that the script is still there, but is not executable. If/when you need it again, you can either start manually (sh /etc/rc.d/rc.foo) or chmod +x it again.

1. /etc/rc.d/inetd.conf
Comment out everything here except for the line beginning "auth" if you use irc - if you dont then comment out it all

2. save file and do "killall -HUP inetd" from the cli.

3. sure, you can chmod SOME of the services to stop, but for others, you will need to go into the files themselves to comment them out as they may not have a seperate rc.foo file.

Go through /etc/rc.d, and edit the following files:

rc.M - apache,samba
rc.S - pcmcia
rc.inet2 - edit all the parts relating to nfs, and sunrpc.

Once you have commented out all that, one final thing to do is stop access to printer as well if you dont use one with your linux computer, this can be done by opening /etc/services and commenting out the line relating to port 515.

Don't forget to install the patches.

Alright, I think I have everything I need. This should be no problem now. Thanks very much all. I'm liking slack quite a bit. I thought it might be above my head quite a bit but I like being able to configure stuff, unlike Mandrake which seemed way to messy for me. Slack seems more clean. Oh yeah X-console what patches are you talking about?? Thanks again.