Bitcoin Forum
December 07, 2021, 07:55:00 PM *
News: Latest Bitcoin Core release: 22.0 [Torrent]
   Home   Help Search Login Register More  
Pages: [1]
Author Topic: How safe is this Uncomplicated Firewall setup?  (Read 1501 times)
Timo Y
Offline Offline

Activity: 938
Merit: 1001

bitcoin - the aerogel of money

View Profile
July 27, 2012, 09:45:07 AM

For my "current account" wallet, I use a dedicated netbook where I run nothing but the Bitcoin client.

The OS is an Ubuntu 12.04 custom install with the majority of default software packages removed. 

The ufw setup is as follows:

$ sudo ufw status verbose

Status: active
Logging: on (low)
Default: deny (incoming), deny (outgoing)
New profiles: skip

To                    Action          From
--                    -----           ----
8333/tcp              ALLOW OUT       Anywhere               
8333/tcp              ALLOW OUT       Anywhere (v6)

From time to time I run the Ubuntu updates; for this I temporarily change default outgoing to ALLOW.

My question is, is this setup reasonably safe against wallet theft by hackers or viruses, or have I missed something important?

GPG ID: FA868D77   bitcoin-otc:forever-d
Even if you use Bitcoin through Tor, the way transactions are handled by the network makes anonymity difficult to achieve. Do not expect your transactions to be anonymous unless you really know what you're doing.
Advertised sites are not endorsed by the Bitcoin Forum. They may be unsafe, untrustworthy, or illegal in your jurisdiction. Advertise here.
Hero Member
Offline Offline

Posts: 1638906900

View Profile Personal Message (Offline)

Reply with quote  #2

Report to moderator
Offline Offline

Activity: 2058
Merit: 1274

View Profile
July 27, 2012, 01:40:56 PM

firewalls aren't going to protect you against 0day exploits, which is your biggest risk.

It is pitch black. You are likely to be eaten by a grue.

Adblock for annoying signature ads | Enhanced Merit UI
Full Member
Offline Offline

Activity: 196
Merit: 100

Web Dev, Db Admin, Computer Technician

View Profile
July 29, 2012, 12:36:20 AM

There's still plenty of room for DNS Spoofing, MITM (there are 7 types, 4 are local), browser attacks (If you surf on it.), and router compromises.
There are custom attack tools that use multiple vulnerabilities simultaneously to overwhelm IDS's and Firewalls where a certain combo allows one to get through. The double or triple combo confuses the defense system logic allowing the attacker to succeed with an exploit when using just one exploit would normally be blocked.

For Bitcoin to be a true global currency the value of BTC needs always to rise.
If BTC became the global currency & money supply = 100 Trillion then ⊅1.00 BTC = $4,761,904.76.
P2Pool Server List | How To's and Guides Mega List |  1EndfedSryGUZK9sPrdvxHntYzv2EBexGA
Pages: [1]
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!