Hello to all.
Since I don't know much about Linux, I have a series of questions about Linux maintenance. A relative (A bit novice in computer matters) asked me if I can install on his computer a Linux distro, and I'm thinking on various options, but I don't know yet what distro I will select.
I have a series of questions, keeping on mind that I prefer a system can run fairly flawlessly without my intervention because I can't go to his house too often:
1- How it works Netfilter and Iptables in a self-sufficient way for a novice user? I mean, if I install a distro on his computer and I leave it alone with the default settings, how the user would be protected against port scanning or another random net attack?.
2 - How the user would be protected against a program calling home? There's some sort of visual warning against a program doing some type of net communication or there are rules by default on Netfilter that doesn't allow to any program to use the net if not stated otherwise with a program path?. (I say this because I don't know what this user will instal after a complete OS installation and I want to know how he will protected against any of these.)
3 - (Related to the above question) If I install Iceweasel and the respective security plugins and I set a Linux account with no Administrator privileges, how safe it will the browsing for the system and the browser if we are using common sense and we surf through standard pages?.
And otherwise, how the browser and system will be protected against other attacks not related to using Java,Javascript or malicious adds if the user clicks on a link and is redirected to a malicious site?.
4 - This is a bit of common sense, but here it goes:
We will think that I will explain to this user how to get packages from the repository and I explain how to install them. There's some maner to know if there are guarantes that the package are you installing doesn't have some unwanted surprises and is 100% safe? (asumming that you are geting the package from the official source)
5 - How I can prevent in Linux that certain programs can't access to some system resources or sensitive operations related to security or data integrity?.
6 - What modules / programs need to be updated regularly in Linux to stay relatively safe on the net?
---
As you can see all the questions are mainly related to network security on Linux, which I have heard that is strong on that matters but I think is useless if you don't know how exactly works.
I apologize for asking so much, but I'm a bit lost on that matters.
Since I don't know much about Linux, I have a series of questions about Linux maintenance. A relative (A bit novice in computer matters) asked me if I can install on his computer a Linux distro, and I'm thinking on various options, but I don't know yet what distro I will select.
I have a series of questions, keeping on mind that I prefer a system can run fairly flawlessly without my intervention because I can't go to his house too often:
1- How it works Netfilter and Iptables in a self-sufficient way for a novice user? I mean, if I install a distro on his computer and I leave it alone with the default settings, how the user would be protected against port scanning or another random net attack?.
2 - How the user would be protected against a program calling home? There's some sort of visual warning against a program doing some type of net communication or there are rules by default on Netfilter that doesn't allow to any program to use the net if not stated otherwise with a program path?. (I say this because I don't know what this user will instal after a complete OS installation and I want to know how he will protected against any of these.)
3 - (Related to the above question) If I install Iceweasel and the respective security plugins and I set a Linux account with no Administrator privileges, how safe it will the browsing for the system and the browser if we are using common sense and we surf through standard pages?.
And otherwise, how the browser and system will be protected against other attacks not related to using Java,Javascript or malicious adds if the user clicks on a link and is redirected to a malicious site?.
4 - This is a bit of common sense, but here it goes:
We will think that I will explain to this user how to get packages from the repository and I explain how to install them. There's some maner to know if there are guarantes that the package are you installing doesn't have some unwanted surprises and is 100% safe? (asumming that you are geting the package from the official source)
5 - How I can prevent in Linux that certain programs can't access to some system resources or sensitive operations related to security or data integrity?.
6 - What modules / programs need to be updated regularly in Linux to stay relatively safe on the net?
---
As you can see all the questions are mainly related to network security on Linux, which I have heard that is strong on that matters but I think is useless if you don't know how exactly works.
I apologize for asking so much, but I'm a bit lost on that matters.