Firestarter

Questions about cabled networking
Forum rules
Before you post please read how to get help
Post Reply
Husse
Level 23
Level 23
Posts: 18701
Joined: Sun Feb 11, 2007 7:22 am
Location: Near Borås Sweden

Firestarter

Post by Husse » Sat Mar 03, 2007 8:14 pm

According to the FAQ on the homepage of Firestarter (http://www.fs-security.com/) if you
installed the Firestarter from a binary package such RPM or Deb, the firewall will be running all the time (dial-up users excluded) and independent of the graphical interface, even after a reboot. In these cases the firewall is registered as a system service and can be manipulated using the standard Linux system service and runlevel management tools.
I installed thru Synaptics, but I can't se it in Control center>Desktop>Sessions>Start up programs (the last entry may be wrong, but you understand what I mean - that's the backside of localized versions - you're never sure of what it's called in english) neither can I see it in Present sessions.
Is it not running or is there more going on "under the hood" than I see here.
Image
Don't fix it if it ain't broken, don't break it if you can't fix it

scorp123
Level 8
Level 8
Posts: 2277
Joined: Sat Dec 02, 2006 4:19 pm
Location: Switzerland

Post by scorp123 » Sun Mar 04, 2007 3:12 am

Can you check with this command (in a terminal)?

Code: Select all

ps -efH

jimint
Level 1
Level 1
Posts: 7
Joined: Sun Feb 25, 2007 9:49 pm

Post by jimint » Sun Mar 04, 2007 3:25 am

If you are using Bianca it should be in Start(Bianca) Administration.Thats where the link is for mine.

Husse
Level 23
Level 23
Posts: 18701
Joined: Sun Feb 11, 2007 7:22 am
Location: Near Borås Sweden

Post by Husse » Sun Mar 04, 2007 7:51 am

Thanks Scorp 123
Nice command :)
Nope, I don't see anything called Firestarter there.
could the process be called something else?
I think I'll check out their homepage, there is a solution for autostart at boot, but it's not supposed to be needed.
Image
Don't fix it if it ain't broken, don't break it if you can't fix it

Husse
Level 23
Level 23
Posts: 18701
Joined: Sun Feb 11, 2007 7:22 am
Location: Near Borås Sweden

Post by Husse » Sun Mar 04, 2007 12:20 pm

Well, what Firestarter suggests includes editing the sudoers file which seems impossible. But it should autostart, there is a script in /etc/rc2.d. In the same folder there's a script to start the nVidia kernel (which obviously has to start) and nVidia is not listed using the ps -efH command. I just have to hope it's running - don't get any error messages...
In that script (or rather in the script in /etc/init.d) there are references to a log - where would that be found? Could just check the log to see if there's an entry for Firestarter.
Image
Don't fix it if it ain't broken, don't break it if you can't fix it

scorp123
Level 8
Level 8
Posts: 2277
Joined: Sat Dec 02, 2006 4:19 pm
Location: Switzerland

Post by scorp123 » Sun Mar 04, 2007 3:19 pm

Husse wrote:nVidia is not listed
Because it's running as kernel module (= a "driver"), not as a process ... The relevant process using the "nvidia" driver would most likely be something like "gdm" or other GUI related processes ... To see your "nvidia" drivers quasi directly you'd have to type:

Code: Select all

sudo lsmod
When I do that on my system I get (output edited for the list is very long!):

Code: Select all

Module                  Size  Used by
nvidia               4741300  32
i2c_core               25216  5 tuner,saa7134,ir_kbd_i2c,nvidia,i2c_i801
agpgart                35528  2 nvidia,intel_agp
Thinking of it .... If Firestarter has activated anything then this is most likely using the "iptables" firewall of the Linux kernel, I think? Can you please check if "iptables" has any rules set?

Code: Select all

sudo iptables -L
On a Linux system without an active "iptables" firewall you should get this output:

Code: Select all

Chain INPUT (policy ACCEPT)
target     prot opt source               destination         

Chain FORWARD (policy ACCEPT)
target     prot opt source               destination         

Chain OUTPUT (policy ACCEPT)
target     prot opt source               destination
If "iptables" is active then the output will have far far more details than that!

Besides, forgive me if this link is unneeded, but I will mention it anyway: There is a nice little Firestarter tutorial for Ubuntu:
http://ubuntu-tutorials.com/2007/01/07/ ... buntu-610/
Maybe it's worth to take a look?

And then there is the official documentation:
http://www.fs-security.com/docs.php

And here we have "iptables" tutorials for those who want to fine-tune everything by hand and are not afraid to use the terminal (and maybe learn a lot too?) :wink:
http://www.cyberciti.biz/tips/how-do-i- ... ction.html
http://doc.gwos.org/index.php/IptablesFirewall


Regards,
scorp123

Husse
Level 23
Level 23
Posts: 18701
Joined: Sun Feb 11, 2007 7:22 am
Location: Near Borås Sweden

Post by Husse » Mon Mar 05, 2007 7:24 am

Thanks.
IP tables is not active. Have to dig a bit deeper, but I'm in no hurry since I'm behind a "broadband" router and thus a firewall. But there are other computers on the same net.
But clearly Firestarter does not do its job...
Image
Don't fix it if it ain't broken, don't break it if you can't fix it

Post Reply

Return to “Ethernet”