Linux and security threats

[ImNeat]

Thanks for all of the input - and I apologize for the redundancy.

So in a nutshell - I'm going to get a firewall, run ClamAV now and then, and not worry at all about spyware.

Does Fedora C3 come with a firewall? If so how do I monitor/configure it? Any great firewall recommendations?

Also - I noticed threats are only dangerous if user is in root. So I should try and install all software as normal user first - then, if required, gain root access through the terminal? This should keep me safe?
I know I'll be the first idiot to get nailed big by a linux virus because I don't yet recognize many file extensions and I've generally spent most of my time as root.

(Note: I did not mean to offend any members of the community with my "hackers" comment. I simply meant virtually the entire community has vast experience & knowledge over me - It was meant more as a compliment )

[DThor]

Yes, most distros come with firewall included. Configuring it will be apparent(system config, utils, internet...somewhere around there - sorry I'm a SUSE user ).

Most installs require you to be root(apart from minor things like firefox extensions). It will tell you if you try. I've never come across an infected installer or rpm, myself. Just do your day-to-day operations as yourself, and save root only for system configuration or package installs.

I doubt anyone's hackles were raised, it's just a common misuse of the term. "Hacker" is typically used on CNN as someone breaking the law. It's tiresome, but no biggie.

DT

[ImNeat]

What is the correct definition of a hacker? (I watch CNN way too much =) )
I always thought hackers were the sneaky ones who got into ppls systems and snooped around, and crackers were the people who hacked into computers and changed things around.
I have heard the term 'linux hacker' used on this forum - is it like a programmer of a sort?

[dylunio]

A hacker is someone who writes/plays with program code, and other such geeky things.

"Crackers' are anyone who enters systems without authorization - though this doesn't make them _bad_ as such since there are ethical crackers who will exploit a hole in your system and then mail you to say you have the hole. The bad crackers are the ones who exploit your system and then play with it.

[ImNeat]

Ahh I see. Looks like the title 'hacker' has a negative and very false connotation.

[celticgeek]

The confusion between "hacker" and "cracker" was caused IMHO by ignorant journalists a long time ago. They are still ignorant and the confusion remains.

[fingal]

Ahh I see. Looks like the title 'hacker' has a negative and very false connotation.

Hi - This guy is a hacker: http://www.catb.org/~esr If you read through some of his stuff you'll understand that hackers have their own culture (which is very interesting). I don't agree with all his views, but that's life.