The first thing to do after installing Linux Mint Debian 201204

Linux Mint Debian is a line of desktop distribution based on Debian, developed by the same group responsible for Linux Mint, a desktop distribution based on Ubuntu Desktop.

The latest edition, released on April 24, is Linux Mint Debian 201204. Made available for download were the Xfce and MATE/Cinnamon editions. Both editions have already being reviewed here and here.

While both editions just work out of the box, they leave a very important feature disabled by default. That feature, is the firewall. The really bad thing about this distribution is not just that the firewall is not configured, but that there are open ports that leave your computer wide open for Black Hats to mess with. So, if you are running a new installation of any of the editions of this current release of Linux Mint Debian, the first and most important thing to do, is enable and configure the firewall. This tutorial shows you how to do it. And it actually involves just a few mouse clicks.

As on many Linux distributions, the firewall configuration utility is ufw, the Uncomplicated FireWall. It has three graphical interfaces that could be used to configure it. The only one available in the Linux Mint Debian repository is Gufw. While it is not as good as the others, it still gives you a user-friendly interface to get the job done.

Since it is installed by default, the only thing to do, is enable it. Launch it from the menu. You will find it under System > Firewall Configuration. It is shown below in its default state. To enable it, click the Unlock button.
Linux Mint Debian Gufw Disabled

After successful authentication, click the On/Off switch to enable it. The interface should now show some color. It is now enabled.
Linux Mint Debian Gufw Enabled

If you have no intention of allowing other computers to connect to any local service(s), you do not have to take any other action. No additional rule(s) is/are needed. The default rules, which allow all outgoing connections, while denying incoming connections that do not have a related entry in the State Table, is all the protection you need. If you need to add rules, this guide shows how to go about it.

Related Posts

Install Mageia 1 on an encrypted LVM file system Mageia is a new Linux distribution formed by former employees and contributors of Mandriva, a Linux software provider and publisher of a line of Linux...
How to install applications on and update Linpus Lite Desktop 1.7 Linpus Lite Desktop 1.7 is a desktop-centric Linux distribution I recently reviewed (see Linpus Lite Desktop 1.7 review. It uses a heavily-modifie...
Install Cinnamon 1.3.1 in Fedora 16 The first article on Fedora and Cinnamon published on this website was about installing Cinnamon 1.1.3 on Fedora 16. Now that a newer version of Cinna...
Opera 26 released. Install it on Linux Mint 17.1 and Ubuntu 14.10 I don't quite remember the last time I used Opera browser, but it's been a very long time ago. I didn't even think that the company is still developin...
GRUB Customizer 4 released. Install it on Ubuntu 13.10 and Linux Mint 16 GRUB Customizer 4.0 has been released. Install it on Ubuntu 13.10 and Linux Mint 16. GRUB Customizer is a graphical utility for managing GRUB 2, th...
How to install Ajenti on Ubuntu 13.04 server Ajenti is a server administration panel for Linux distributions and FreeBSD. It is similar to cPanel, ISPConfig and others like them, but kinda light ...

We Recommend These Vendors

Launch an SSD VPS in Europe, USA, Asia & Australia on Vultr's KVM-based Cloud platform starting at $5:00/month (15 GB SSD, 768 MB of RAM).

Deploy an SSD Cloud server in 55 seconds on DigitalOcean. Built for developers and starting at $5:00/month (20 GB SSD, 512 MB of RAM).


  1. Pingback: Links 13/5/2012: Xfce 4.10, KDE 4.8.3, GNOME 3.5.1, GIMP 2.8 | Techrights

  2. -_-

    You’re a real security freak..

  3. empty words.

  4. Why do so many people assume that there is only one computer on the local net? Since the firewalls used are non-standard (at least according to the UNIX command set), it takes some digging to figure out exactly how someone hosed local connectivity.

    The better way to protect local machines is to put a hardware firewall between the local net and the cable/DSL modem. These can be had for $75 – $100 and protect the entire net. Or roll your own with a specialized Linux firewall distro and put everything else behind it. Otherwise, there will be holes between the different local systems, and if one falls, then any trust relationships between the systems will cause the entire local net to fall. If you are really paranoid, use both hardware and per-system firewalls. Per-system local firewalls on a local net without a hardware firewall is bad architecture.

    Use the force, Jed. You aren’t on Windows any more.

Leave a Comment

Your email address will not be published. Required fields are marked *