Monday, July 16, 2007

system-config-securitylevel-tui and lokkit howto

Here is a text-based user interface you can use on modifying and changing your system security level settings. This comes very helpful specially to those who are yet newbies with regards to system security and/or firewall basic settings.

Issue

# lokkit

alternatively

# system-config-securitylevel-tui


Launched as root, this would use a text-based user interface which customizes your firewall security settings including basic SELinux . SELinux customization using this approach is basically simple, just letting you choose among Enforcing, Permisive, and Disabled.

Sample of lokkit main menu:



By clicking "Customize", you'll arrive to further firewall setting customization like so:



This gives you the opportunity to add and open more specific ports so they could be public. Have extra care on opening ports. As much as possible, avoid opening ports that you don't usually need to be open on regular and daily basis. These could increase the chance of other host probing and trying to connect with that specific ports for whatever reasons they might have.

After having made additional changes, click OK and exit. Now check out your newly saved firewall settings.

# more /etc/sysconfig/iptables
# less /etc/selinux/config

Launching as root

# system-config-securitylevel

would give you the GUI version captured below:



After doing it over and over again, you can now begin directly editing and customizing the iptables file /etc/sysconfig/iptables

# service iptables restart

would restart and reread your newly edited firewall settings.

Was this helpful?

0 comments:

Sign up for PayPal and start accepting credit card payments instantly.
ILoveTux - howtos and news | About | Contact | TOS | Policy