Many media and experts believe that the Linux, Linux is more secure than Windows. However, security is even more important today, this security also need to properly configure users, this security does not necessarily have to be through a number of specific security software or technology can achieve. Sometimes, the best way to guarantee security is the kind most easily forgotten things.
Whether you are a Linux just beginners, or an experienced user or administrator, checked against nine measures mentioned below can help you strengthen the security of the Linux desktop.
Locking the screen and logging are important
Many users may have forgotten, Linux desktop is a multi-user environment. Because of this, after a user logs off the desktop, other users can log on. This not only means that other people can use your screen, it means that the user completes the work, should be promptly signed out.
Of course, log out is not the only option. If you are the only user of the system, you can also lock the screen. Lock screen means that the user re-enters into the desktop need to enter a password. Sign it with the distinction that, in the locked screen, the user leaves the computer, its application is still running. After entering the desktop, you can continue the original work.
Hidden files and folders
On Linux systems, files and folders by using. "" And to be hidden. For example, as shown below, the original testfilefolder folder there are two files, we can see with the ls command. But after running the command mv adsl-stop .adsl-stop, which can only see with ls a file. This means you can use mv to hide do not want other users to see documents. Of course, you can use ls -a command to view all files, regardless of whether it is hidden.
Have a good password
Linux user's password as the key to the door just as important. If a user key to this many people, he will have to lock do? Of course, this key is the most easily managed to make people come out, that is hard to guess the user's password. If you are using Ubuntu and other distributions, this password may give users more access. Anyway, be sure to protect the user's password is strong. If you really do not trust their own passwords if appropriate, may wish to use this software with Automated Password Generator, which creates a secure random password good for you.
Do not install file-sharing applications
Many users are sharing some files. If you want to run this function, you should know the risks. Especially if you use this function in the workplace, it will be shared by more than just their own files, but also relates to the company's other users, and will also hand over the entire desktop Illegal other users. Therefore, for safety reasons, do not install file-sharing tools.
Windows users are used to regularly publish Microsoft operating system and application patches left a "profound" impression. Microsoft released a patch but speed is far faster and Linux. In the Linux world, after the discovery of a security vulnerability in a few hours or a few minutes after posting its patch. KDE and Gnome support updates on the panel. Some people think frequent upgrades too much trouble, but it is recommended that you do not refuse the security updates that released there must be reasons.
Install anti-virus mechanism
Do not feel the possibility of viruses that cause system problems minimal. I suggest you adopt a robust virus defense tools such as ClamAV, so you can protect messages sent from your machine does not contain malicious code, it will not affect other system whereby the corporate network.
SELinux is worth a try
SELinux can be a good lock on the application of access control, although some people think SELinux have unsatisfactory places, such as it may affect system performance, and you might find some other applications to install. However, according to the author's experience, the benefits of SELinux security brought about far more than its negative effects. During the Fedora installation, you will have the chance to enable SELinux.
Create / home is a safer on a separate partition method
The default Linux installation / home directory on the root system among. This may be a good idea, but you need to pay attention, because this is a standard installation, so any one can access your system people will clearly know what the data in place. And, if your machine appears a little problem, then how can your data safe?
Road resolve this problem is that you should be / home is placed on a different hard disk or partition. This is perhaps not what good ideas, but if you are really very concerned about data security, try.
Termination or disable some unnecessary services
A desktop machine you are using, rather than a server. So completely unnecessary run nfs, httpd, ftpd, sshd and some other services. It can be said that the average user should not run these services, they can pose a risk to the general user. Therefore, do not run these services. For example, the method terminates NFS service is # /etc/init.d/nfs stop. You can check the /etc/inetd.conf file to see if all unnecessary services have been canceled. This method is simple but very effective. You may wish to try.