6. install virus protection software is very useful for believe it or not, virus protection on Linux is quite heavy.
Of course, from viruses to your Linux system with the possibility of damage is very small, but you forwarded emails may damage other windows users. Have a good virus protection tool, if you can ensure that ClamAV you email out of your computer without any harm, so that other companies will not harm because of your message to go to him. 7.SELinux is essential for SELinux (Security-EnhancedLinux) is a United States National Security Agency NSA access control system development. It helps to lock access control applications, SELinux protection security level for the Linux and Windows as the C2 level, but after protection SELinux protection of Linux, the security level you can reach the B1 level. Of course, SELinux, and sometimes can be a pain, and in some cases, it may affect your system performance, you may find many process running, these struggles are not, however, you use the SELinux (or Apparmor) access security comfort than his negative effect, you can experience in Fedora it bring you safe and comfortable! 8. to create a separate partition/home safer on Linux systems, the default installation path/home happens to be in your root here. So good, but first of all, it is a standard, so any person who obtains access to your computer's permission immediately know where your data and, secondly, if your computer is attacked, your data will be lost. To resolve this problem, you can use a different hard disk or/home all segmentation. Of course, it is not required, but if you really care about your data, which is well worth you do! 9. use of non-mainstream desktop is very valuable not only because the selectively desktop (Blackbox, Enlightenment, Fluxbox, etc) can let you have on your PC a whole new sensory and they provide from the special perspective of simple security protection may be you've never taken into account. When I only need kiosk machines do one thing, I will put the Fluxbox is used in the above, for example: browse the network. This can be very easy to implement, you need the application of the establishment of a single right mouse menu (or on the desktop icon). Unless you know how to return to the command line (log out or type Ctrl-alt-f *, * represents you now use a desktop other than the desktop), otherwise they cannot start any of the other application, and, of course, apart from you. Because most users don't know how to use the desktop, so it does not have the slightest idea to get your files. This is a simple fake security. 10. stop service is the best it is only a desktop computer, not a server. So why would you want to run like httpd, ftpd, and sshd such services you don't need them, at the same time they also pose a security risk to you, unless you know how they are locked, do not run them. Check your/etc/inetd.conf file, ensure that those unnecessary services already note. This is a simple but effective way.
No comments:
Post a Comment