Electronic Books

See Chapter 4 for information on handling the root user
account.
Some distributions, such as Ubuntu, simplify the protection of the root account by automatically
disabling it. NOTE
204
Running the Show Part II
 Use trusted software. While there are no guarantees with open source software, you
have a better chance of avoiding compromised software by using an established Linux
distribution (such as Fedora, Debian, or SUSE). Software repositories where you get addon
packages or updates should likewise be scrutinized. Using valid GPG public keys can
help ensure that the software you install comes from a valid vendor. And, of course, always
be sure of the source of data files you receive before opening them in a Linux application.
If you download full ISO images of a distribution, check their integrity using MD5 or
SHA1 checksums provided from their creator.
 Get software updates. As vulnerabilities and bugs are discovered in software packages,
every major Linux distribution (including Debian, SUSE, Gentoo, and Red Hat distributions)
offers tools for getting and installing those updates. Be sure to get those updates,
especially if you are using Linux as a server. These tools include apt, yum, and emerge.
 Use secure applications. Even with software that is valid and working, some applications
offer better protection from attack or invasion than others.


Pages:
429 430 431 432 433 434 435 436 437 438 439 440 441 442 443 444 445 446 447 448 449 450 451 452 453