|
Title: How safe is this Uncomplicated Firewall setup? Post by: Timo Y on July 27, 2012, 09:45:07 AM For my "current account" wallet, I use a dedicated netbook where I run nothing but the Bitcoin client.
The OS is an Ubuntu 12.04 custom install with the majority of default software packages removed. The ufw setup is as follows: Code: $ sudo ufw status verbose From time to time I run the Ubuntu updates; for this I temporarily change default outgoing to ALLOW. My question is, is this setup reasonably safe against wallet theft by hackers or viruses, or have I missed something important? Title: Re: How safe is this Uncomplicated Firewall setup? Post by: grue on July 27, 2012, 01:40:56 PM firewalls aren't going to protect you against 0day exploits, which is your biggest risk.
Title: Re: How safe is this Uncomplicated Firewall setup? Post by: check_status on July 29, 2012, 12:36:20 AM There's still plenty of room for DNS Spoofing, MITM (there are 7 types, 4 are local), browser attacks (If you surf on it.), and router compromises.
There are custom attack tools that use multiple vulnerabilities simultaneously to overwhelm IDS's and Firewalls where a certain combo allows one to get through. The double or triple combo confuses the defense system logic allowing the attacker to succeed with an exploit when using just one exploit would normally be blocked. |