I just recently made the switch from Windows to Ubuntu, and I'm just a little paranoid when it comes to security measures.
I've looked around and from what I've read, security is not as big a concern as on a Windows OS, but I just want to make sure I'm somewhat covered.
Currently, I have installed ClamTK anti-virus and gufw (and enabled it once).
So basically I have three questions :
- Aside from those apps, updating regularly, and downloading from trusted sources only, should I be taking any other precautions?
- Must I do anything more with gufw other than checking enabled or are the default settings (incoming : deny, outgoing : allow) sufficient?
- Do I have to manually turn on gufw everytime and enable it (and keep it open)? Everytime I open it the enabled checkbox is unchecked.
EDIT: When I open gufw, I must unlock and enter my password, however the checkbox is now checked. Must I always open gufw did I simply need to enable it once?
Thank you.
Best Answer
Good questions.
Not really. Don't run random commands, especially those mentioning
sudo
, that people might give you on the web, unless it's a trustworthy source or you know what it does.Beyond that I think the main thing you want to be careful with is web security, eg not typing your facebook password into random other web sites.
Update rigved wisely suggests installing security-oriented browser plugins: Adblock Plus, HTTPS Everywhere, Noscript and WOT. (rigved also says Tor, but I'm not so sure about that, because Tor has major security risks that make it a bad default for most people.)
Update2 Do not use the WOT browser plugin, as it has serious privacy concerns: https://thehackernews.com/2016/11/web-of-trust-addon.html . Thanks to DJCrashdummy for pointing this out.
That should be fine.
It actually does stay enabled after you quit, but bug 850468 makes it looks like it's not enabled, until you authenticate.