Security features of Linpus Lite 1.4

Linpus logoLinpus Lite 1.4 is the latest update to the Linux distribution published by Linpus Technologies, Inc. of Taipei, Taiwan. Though designed for use on netbooks and low-power computers, it is one of the best distributions that I have reviewed for publication on this website. It boots up real fast and shuts down even faster. It features a slick installation program (see the screenshots) and a Simple Mode interface that would make it an ideal distribution for tablet computers.

With this article, I present all the physical and network security features available on this distribution. But before we get to the security features that it has, let me list the (security) features it should, but does not have. It is a very short list:

  1. Disk encryption – Sapphire, the installation program on Linpus Lite 1.4, does not have support for setting up disk encryption – at the partition level or full disk.

Ok, now to the available security features:

Password Protection for boot loader – GRUB Legacy (version 0.97) is the bootloader used on Linpus Lite 1.4. While it is possible to password-protect GRUB, the installation program and the bootloader management tool (accessible from System > Administration > Bootloader), do not have that feature. You can still set a GRUB password. You just have to do it from the command line. The instructions are the same for all distributions that use GRUB. If you are interested, read how to password-protect GRUB.

Why is it necessary to password-protect the bootloader? Two reason (source):

  1. Prevent Access To Single User Mode — If an attacker can boot into single user mode, he becomes the root user.
  2. Prevent Access To the GRUB Console — If the machine uses GRUB as its boot loader, an attacker can use the edit the command’s interface to change its configuration or to gather information using the cat command.

The graphical bootloader management tool

Bootloader utility

Firewall – IPTables/Netfilter is the firewall application that lives in the Linux kernel. So all Linux distributions ship with a firewall. However, not all have the firewall enabled out of the box, and fewer still ship with a graphical firewall utility to manage it. If you use Linpus Lite 1.4 or intend to use it, you are in luck; it comes with the firewall enabled and a full-featured graphical firewall management tool. Out of the box, the firewall tool is configured to allow all outgoing connections and deny all incoming connections except those that have an entry in the state table, that is, those that are related to an outgoing connection.

Graphical firewall manager on Linpus Lite 1.4

The firewall manager allows you to specify what interfaces to grant full access to the system, that is, what interfaces to trust.

Trusted interfaces

It also allows you to set up Masquerading. If your computer is sitting behind a high-speed modem/router, this is one feature you will not need to worry about.


Related Posts

How to customize Linux Mint 10 After a review of Linux Mint 10, the next logical step is to write a few tutorials and tips for those that might need it. The first of these tutorials...
Linpus Lite 1.4 review Linpus Lite is the distribution for netbooks and smartbooks developed and maintained by Linpus Technologies, Inc. of Taipei, Taiwan. The company's fla...
Upgrading OSSEC 2.7 to 2.8 and the bro-ids rule issue 'Tis the season for upgrading. This hour, the target is OSSEC. Next will be a Cloud server running Ubuntu 12.04 LTS, which will be upgraded to Ubun...
Tip for dual-booting Windows 10 preview and Linux on a PC with UEFI firmware Windows 10 Technical Preview is the beta version of what will become Windows 10, a major revision of Microsoft's operating system. It is being plan...
Zap GPT data structures from a disk, while preserving existing MBR partitions Using GPT partitions, or a GPT partitioning scheme, takes care of the shortcomings of the MBR partitioning scheme. However, if you are not careful, i...
How to reduce PHP-FPM (php5-fpm) RAM usage by about 50% PHP-FPM is the FastCGI Process Manager for PHP. On Unix-like operating systems, including Linux and BSD distributions, PHP-FPM is enabled by installin...

We Recommend These Vendors and Free Offers

ContainerizeThis 2016 is a free, 2-day conference for all things containers and big data. Featured, will be presentations and free, hands-on workshops. Learn more at

Launch an SSD VPS in Europe, USA, Asia & Australia on Vultr's KVM-based Cloud platform starting at $5:00/month (15 GB SSD, 768 MB of RAM).

Deploy an SSD Cloud server in 55 seconds on DigitalOcean. Built for developers and starting at $5:00/month (20 GB SSD, 512 MB of RAM).

Want to become an expert ethical hacker and penetration tester? Request your free video training course of Online Penetration Testing and Ethical Hacking

Whether you're new to Linux or are a Linux guru, you can learn a lot more about the Linux kernel by requesting your free ebook of Linux Kernel In A Nutshell.


  1. Pingback: Linux News » Security features of Linpus Lite 1.4

  2. Pingback: Links 30/9/2010: GNU/Linux Growth in Data Centres, XtreemOS Opening Up | Techrights

Leave a Comment

Your email address will not be published. Required fields are marked *