I am new on OpenSuse, have heteroclit linux knowledges.
Try to take care of the security aspects to use it at work.
At the moment I am working with Debian and want to switch to Opensuse Leap.
That is what I want to do:
Cancel root account and have an admin and a user account with dedicated rights.
Configure my firewall : could some body give me a link for a good explanation of Opensuse Firewall settings? (I am using Cockpit)
I used tu install auditd, chrootkit, and was trying to manage suricata on Debian. Do I need to do it with opensuse?
At the moment I make Rsync copies of my data to a external hard disk and we will soon have a dedicated server for that. (That is a pitty since the worst security issue for me would be to loose my data, think I will buy a second HDD to be quiet).
How to manage SELinux?
If use full disk encryption at the installation, how can I give to my IT service a rescue key (in case I lose my password)
Cockpit does include a basic firewall module, but openSUSE itself uses Firewalld as its firewall backend. Cockpit’s plugin is fine for simple tasks (opening a port, enabling/disabling the firewall, etc.), but anything more advanced is normally done using firewalld’s own tools: firewall-cmd (CLI) and firewall-config (GUI).
If you’re not already familiar with Firewalld, I suggest reading the official documentation first:
Unfortunately, the cockpit documentation is still rather limited (and without screenshots that might have been useful), but I’m sure that anyone who has a basic understanding of Firewalld will be able to navigate it without too much trouble:
You cannot. You can lock root account so it will be impossible to directly log into it. That happens by default if you decide to create a user during the installation.
