security

NoobieOCer · 1 Nov 2009 at 13:16

hi im building a nas/general pc and was basically thinking can it deal with security and viruses if a computer was to acess internet through it?

ie

router > nas > protected computer

im not just talking about fire walls i was wondering any way it can scan the data packets and look for viruses and worms and stuff?

bigredshark · 1 Nov 2009 at 13:31

This is usually called IDP or IDS, it's a fairly intensive high end feature on firewalls but I suspect there will be some linux app which will do it...but I don't know of any myself...

NoobieOCer · 1 Nov 2009 at 13:42

oo thats very intresting, Intrusion Detection and Prevention. umm guess i post this up in linux section.

dangerstat · 1 Nov 2009 at 13:50

IMHO doing any kind of deep packet inspection is a bit over kill for a home network (unless you have some highly sensitive stuff on your NAS box. If you plan to use Linux then I'd say you shouldn't worry too much, some of the IDS systems for linux are tricky to configure (snort http://www.snort.org/snort is popular but no matter how hard I try to get the damn thing running on my laptop it won't).

NoobieOCer · 1 Nov 2009 at 14:25

main reason im intrested in this is that i just hate antivirus programs, always asking for updates and scan computer. so i thought i just get a seperate computer to deal with all the security stuff and get rid of the slow antivirus apps.

ThorpedoUK · 4 Nov 2009 at 00:45

samhain is good IDS, firewall wise i've never had an issue with iptables and selinux

take regular checksums of you're files and compare for manipulation, you can download utilities to do this for you (one comes with samhain), snort is decent.

antivirus there is clamav, anti spam you could use spamassassin