Some Guidelines on How to Secure your Ubuntu Installation


Since Ubuntu is getting so fantastically popular nowadays I thought this might be useful to some of you.

I personally think Ubuntu is great, the features, ease of installation, stability and especially the work they have done on things like wireless drivers make it a breeze to get up and running.

It is a pretty secure distro by default, but there are a few little things you can do to tighten it up.

If you don’t know what Ubuntu is you can check it out here:

http://www.ubuntu.com/

Ubuntu is a community developed, linux-based operating system that is perfect for laptops, desktops and servers. It contains all the applications you need – a web browser, presentation, document and spreadsheet software, instant messaging and much more.

If you wan’t to get into Linux I suggest you try this and Mandriva first.

Anyway recently I found a good security guide for Ubuntu, so run through the steps and lock your OS down.

If you’ve recently switched from Windows to the Linux distribution Ubuntu, you’ve probably experienced a decrease in spyware — and malware in general — on your system. But although Ubuntu is billed as the ultra-secure solution, you should know that even though Ubuntu’s default install has its flaws, like every other operating system.

The Big Ol’ Ubuntu Security Resource

Posted in: Linux Hacking

, , , ,


Latest Posts:


APT-Hunter - Threat Hunting Tool via Windows Event Log APT-Hunter – Threat Hunting Tool via Windows Event Log
APT-Hunter is a threat hunting tool for windows event logs made from the perspective of the purple team mindset to provide detection for APT movements hidden in the sea of windows event logs.
GitLab Watchman - Audit Gitlab For Sensitive Data & Credentials GitLab Watchman – Audit Gitlab For Sensitive Data & Credentials
GitLab Watchman is an app that uses the GitLab API to audit GitLab for sensitive data and credentials exposed internally, this includes code, commits, wikis etc
GKE Auditor - Detect Google Kubernetes Engine Misconfigurations GKE Auditor – Detect Google Kubernetes Engine Misconfigurations
GKE Auditor is a Java-based tool to detect Google Kubernetes Engine misconfigurations, it aims to help security & dev teams streamline the configuration process
zANTI - Android Wireless Hacking Tool Free Download zANTI – Android Wireless Hacking Tool Free Download
zANTI is an Android Wireless Hacking Tool that functions as a mobile penetration testing toolkit that lets you assess the risk level of a network using mobile.
HELK - Open Source Threat Hunting Platform HELK – Open Source Threat Hunting Platform
The Hunting ELK or simply the HELK is an Open-Source Threat Hunting Platform with advanced analytics capabilities such as SQL declarative language, graphing etc
trape - OSINT Analysis Tool For People Tracking Trape – OSINT Analysis Tool For People Tracking
Trape is an OSINT analysis tool, which allows people to track and execute intelligent social engineering attacks in real-time.


9 Responses to Some Guidelines on How to Secure your Ubuntu Installation

  1. Sandeep nain July 24, 2007 at 10:16 am #

    well its been more than 7 months I have been using ubuntu and im sure it will make me forget how windows look like….

    –A BIG FAN OF ubuntu

  2. SN July 24, 2007 at 12:33 pm #

    interesting

  3. TheRealDonQuixote July 24, 2007 at 9:33 pm #

    Thanks for the info on securing ubuntu, I’m sure this will help me on my quest to make a BackTrack on Kubuntu pentesting suite!!

    I’m still working on putting all the pentesting tools from BackTrack2 on a Kubuntu distro, has to be Kubuntu cause BT is all KDE. The only tricky part is making Slax based apps work (correctly) in kubuntu linux 7.04 (feisty fawn). Oh that and I need a buttload of time.

    One question, Will this help with the alleged mDNSresponder exploits?

    Keep up the good work!!

  4. Sandeep Nain July 25, 2007 at 2:10 am #

    Hey TRDQ

    Correct me if I am wrong, I believe mDNSResponder exploit is related to apple and not UBUNTU (Linux).

    If i have misunderstood your question, Can you please rephrase your question?

  5. TheRealDonQuixote July 25, 2007 at 9:50 pm #

    Sandeep – I have been researching the alleged Rape.osx worm as well as the iPhone exploits from exploitingiphone.com.

    I found that there are some linux apps that use mDNSResponder. We all know that Mac OS X is really a solid unix core, there are probably alot of open source projects, like rendevous (it uses mDNSresponder) that find their way to linux repos.

    I was just wondering if anyone had found some similar vulnerable code in the basic Ubuntu or Kubuntu distros?

  6. TheRealDonQuixote July 25, 2007 at 10:00 pm #

    Oh, I forgot. If you could read this little article I wrote on the Rape.osx and the iPhone exploits and tell me what you think or if you know anything that I haven’t found. I am running into walls all over the place trying to find some solid information on the mDNSresponder variant, but I am sure that it all comes back to Safari and how the system as a whole handles connections to WiFi. But I got nothin.

    Here’s the link: MAC OS X HACKING

    The link is too long to cut and past so I sure hope the HTML sticks. Or you could just click on my name and go to my blog. Its the first story on there.
    thx

  7. Sandeep Nain July 26, 2007 at 5:00 am #

    Nice article TRDQ.. Good work
    thanks for sharing…

    i’ll try to see if UBUNTU uses mDNSResponder in any ways and post it here…

  8. TheRealDonQuixote July 26, 2007 at 5:50 am #

    Sweet! Thanks Sandeep!!

  9. Sandeep Nain July 26, 2007 at 6:24 am #

    anytime TRDQ :)