Hi there, i wonder if u can help me......
my brother came home to stay for a bit. he's got his own PC he's gonna gonnect 2 the router.
I was worried about this cos my bro has this friend whos a real pro with PC's.......now i work in I.T.......... but this guy is a major geek!! i was even gonna move to Linux while he's with us.....I dont wanna have 2 do that but.......
would that mean he cant access my PC using his Windows XP PC
anyway any advice is much apreciated.
Yea, check out Samba.
Basically, Microsoft isn't interested in interfacing with other operating systems, if you want to share files between a Windows box and a Linux box you will have to make the Linux box talk over SMB (the protocol used for windows resource sharing), this is what Samba does.
could I put my PC on the DMZ on the router, wouldnt that make my pc not accessible from within the network??
any other suggestions? like locking down the pc using windows 2000/xp local policys?? or how about encrypting my files??? and decrypt them off the network to use them
You can use PuTTy to work with your linux box from windows, and use scp and winscp to transfer files between then boxes.
You can try out the windows services for unix which is available for some versions of windows.
If you want your linux box to show up in windows explorer you'll need to use samba as bubblenut mentioned.
So what's the question, anyway?
I'm not sure I'm getting it. From the tone of deaconbeak's posts I'm thinking he's afraid his brother's really geeky friend is going to "crack" his boxen open and read all his email or find out what sites he's been visiting; if that's the case, you don't want SAMBA, you want a dang good firewall, great permissions and maybe ACL, tcpwrappers, and MAC ...
So, like I said, what's the question, anyway? 
He's posted in the Windows forum as well, it seems he is worried about his brother accessing his computer through the network. If he hasn't run any unknown programs, allowed anyone else to install stuff on his system and isn't running any remote control software he shouldn't have a problem. Putting your computer in the DMZ doesn't protect it, it allows computers from the world to see your system. This isn't the movies or TV people can't just remote to your system without some service running that allows it.
how do i lock my PC down as much as possible on the LAN. no domain is running the the network, its just used as a router & switch combo thing. so no1 else on the LAN can even see its there!! we are talking proper lock-down
Unless you're running some FTP server or something of the like, I'd say you're safe. If not... its a LAN. Walk over to him w/ a baseball bat.
Originally posted by deaconbeak
how do i lock my PC down as much as possible on the LAN. no domain is running the the network, its just used as a router & switch combo thing. so no1 else on the LAN can even see its there!! we are talking proper lock-down
Heh, on BSD it's as simple as "ipfw add 00001 deny all from any to any via any"
Vary for ipfilter, ipf, linux ipchains, etc.
On Windows: there are some good articles out there. Patch the system completely. Shut off file and printer sharing. Heck, go into "computer management" and shut off eveything that will shut off. You could even just pull the plug ... it's all the same in the end result, I suppose.
Technically, the only secure computer is the one that's been parted out piecemealand had its disk flung into Mauna Loa after passing through a metal grinder or somesuch.....
