Cyber security enthusiast/ pen tester who loves Linux and teaching how to keep people safe online. Also a Linux advocate and open source GNU/Linux supporter.

Knows python, rust, C++ C# and java (unfortunately)

  • 0 Posts
  • 10 Comments
Joined 11 months ago
Cake day: August 1st, 2023
  • GhosttoLinux@lemmy.mlAntivirus recomendations
    311 months ago

    The main one everybody uses at least from my knowledge and from what I’ve used over the last 13 years is UFW. That is what you want to use.

    A firewall is very important not just for being on public Wi-Fi connections. A firewall is your extra layer of protection

    I don’t know what Distro you run. But it’s almost the same for each one

    https://www.digitalocean.com/community/tutorials/how-to-set-up-a-firewall-with-ufw-on-ubuntu-20-04

    UFW is installed by default on Ubuntu. If it has been uninstalled for some reason, you can install it with sudo apt install ufw.

    Using IPv6

    sudo nano /etc/default/ufw

    That command should come back with this

    IPV6=yes

    Save and close the file. Now, when UFW is enabled, it will be configured to write both IPv4 and IPv6 firewall rules. However, before enabling UFW, we will want to ensure that your firewall is configured to allow you to connect via SSH. Let’s start with setting the default policies.

    Setting up default policies

    sudo ufw default deny incoming sudo ufw default allow outgoing

    These commands set the defaults to deny incoming and allow outgoing connections. These firewall defaults alone might suffice for a personal computer, but servers typically need to respond to incoming requests from outside users. We’ll look into that next.

    To configure your server to allow incoming SSH connections, you can use this command:

    sudo ufw allow ssh

    This will create firewall rules that will allow all connections on port 22, which is the port that the SSH daemon listens on by default. UFW knows what port allow ssh means because it’s listed as a service in the /etc/services file.

    However, we can actually write the equivalent rule by specifying the port instead of the service name. For example, this command works the same as the one above:

    sudo ufw allow 22

    If you configured your SSH daemon to use a different port, you will have to specify the appropriate port. For example, if your SSH server is listening on port 2222, you can use this command to allow connections on that port:

    sudo ufw allow 2222

    To enable UFW, use this command:

    sudo ufw enable
  • GhosttoLinux@lemmy.mlAntivirus recomendations
    011 months ago

    There are way more viruses written for windows than there is for Linux

    1. Linux users find viruses and they report them and then everyone works on a fix for it and it gets patched as soon as possible. This is why open sourced code is good.

    2. Windows takes forever to fix or patch viruses most of the time they probably dont even care.

    Everything virus related or even bug related gets patched almost immediately under Linux

    Also… Everything you install on Linux is pre compiled and ore configured inside a package manager and these packages get checked constantly for bugs and viruses. Theres almost no need to install anything on Linux from websites that could be compromised

    Out of the 13 years I have been using Linux I haven’t Once caught a virus but I also study malware and write malware so I also understand it more on a deep level.

    But honestly it’s very hard to catch a virus on Linux

  • GhosttoLinux@lemmy.mlAntivirus recomendations
    011 months ago

    ClamAV is really only used to check for cross virus contamination. It’s a tool that checks for windows malware inside of Linux.

    Linux doesn’t need any malware software. The way Linux runs and works is already way more secure in itself, almost everything you’ll ever download is pre compiled intro software repositories that are checked constantly.

    The only way you’ll catch a virus on Linux is being dumb and clicking ads or downloading something from untrusted sources like websites that could be fake but look real.