6.1 Use a different window manager/desktop environment. You may want to do this if: KDE/GNOME is too unstable for you, you are short on RAM (memory), want something faster, less bloated, prettier, you are tired of a unified look, or just plain curious( I use blackbox on my laptop because it just doesn't have the power for KDE or Gnome). For an overview of available managers go to http://www.plig.org/xwinman/ Before you decide which window manager you will use by default, you will want to have the ability to decide on startup where you want to go today. There are a couple of programs available for this task that are reported to work. guichooser and wmchoose ( http://linux.umbc.edu/software/wmchoose/wmchoose.html ), and for those of you running RedHat or systems based on it, you can run 'switchdesk' to switch between KDE, GNOME, and AFTERSTEP. Prominent
representatives are: fvwm2 (http://www.fvwm.org/ )
Window Maker ( http://www.windowmaker.org/ ) Enlightenment ( http://www.enlightenment.org/ ) iceWM (http://www.icewm.org/ ) AfterStep ( http://www.afterstep.org/ ) FluxBox ( http://fluxbox.sourceforge.net/ ) XFCE ( http://www.xfce.org/ ) They all differ in look, feel and handling. If the above information does not
help you you can use the following script I found online. You may or
may not have a file called .xinitrc ( notice the period this is a hidden
file ) Create one using your favorite text editor and place the
following inside
#!/bin/bash
# # .xsession/.xinitrc # # choose a window manager # defaultwm=kde #set the window manager to $1 if it was supplied windowmgr=${1:-$defaultwm} #start the respective window managers case ${windowmgr} in kde|kwm|kdestart) WINDOWMANAGER=startkde ;; fvwm|fvwm2) WINDOWMANAGER=fvwm2 ;; fvwm95) WINDOWMANAGER=fvwm95 ;; gnome) WINDOWMANAGER=gnome-session ;; *) WINDOWMANAGER=windowmgr # default for unknown wm's esac # # load resources # if [ -f /usr/X11R6/lib/X11/Xmodmap ]; then xmodmap /usr/X11R6/lib/X11/Xmodmap fi if [ -f ~/.Xmodmap ]; then xmodmap ~/.Xmodmap fi if [ -f ~/.Xdefaults ]; then xrdb -merge ~/.Xdefaults fi if [ -f ~/.Xresources ]; then xrdb -merge ~/.Xresources fi # # finally start the window manager # exec $WINDOWMANAGER You will need to have the window
managers installed and you can also add lines to start other window
managers.
I have tested this script and it does work. If you don't have the listed window managers then startx just throws you back to a command prompt. To start X with the window manager of your choice you just type startx gnome or startx kde or well you get the idea. Note: You only need to do this if you need new features, you want to learn something, or you just want to show off :0) Getting a kernel update wrong is a
popular way of breaking a Linux system (been there, done that...). 1. Don't work as root. root is
allowed to do everything which also means 'everything wrong'. If you are
expected to do root tasks, use thought and caution. Don't consider
having restricted rights as a nuisance, but as a protection. 2. Protect the root account with a good password. An intruder getting access to the root account is a worst-case scenario. Tip: Don't use a plain word from a dictionary. Instead think of a sentence and use the words' initials. Better: mix some numbers in. Best: use a good password-generating program. 3. Turn inetd off (e.g. via
'linuxconf'-services ( some of the distros now use a file called
xineted, it is almost identical it does have somewhat better
security)). You only need inetd if you want to provide services like ftp
to other clients. With Mandrake's/RedHat's default settings running
inetd on a connected box is like wearing a bunny dress during hunting
season. If you decide to run it anyway (e.g. for a local news server
like leafnode) take a look at /etc/inetd.conf, /etc/hosts.allow and
/etc/hosts.deny and choose reasonable settings (the defaults are crap) +
install tpcd (it's in the tcp_wrappers.rpm). 4. Stay informed about security issues. Read at least the weekly security section of Linux Weekly News ( http://www.lwn.net/ ). See if the listed exploits pose a threat to you and get the updates. 5. For the very latest in Linux
security information check out http://www.linuxsecurity.com/. 6. Get ssh or openssh if you are doing things like
telnet. 7. Download a copy of Securing
& Optimizing Linux: The Ultimate Solution v2.0 from OpenNA It's probally the best thing out there for
hardening your system. 6.4 Find out what's eating your system resources. Use 'top', 'xtop' or 'ktop'. They will show all processes and the strain they put on your system. They will also allow you to kill misbehaving processes. Recomended reading man top Rename commands: If you
recently switched from DOS this error may occur annoyingly often: you
want to list a directory typing 'dir', which the shell will refuse. Now
that's where aliases come in. aliases are defined either in /etc/bashrc
(system wide) or in ~/.bashrc (per user settings). Type 'alias dir=ls'
save and after the next login, typing 'dir' will execute 'ls' (of course
'ls' itself will remain functioning) and list the directory. 6.6 Handle system services (daemons). Mandrake's/RedHat's default setting is having all daemons enabled which is certainly some kind of overkill and may even introduce nasty problems (see security section). The easiest way to disable them continuously is by using 'linuxconf' ('administration/control panel/services). Most likely to be superfluous are: firewall: handles firewalls :-). If you have not set one up, or your box doesn't connect through one to the Internet, you don't need it. gpm: handles mouse on console. If you only work within X or don't use the mouse on the console, you don't need it. Some X programs may even have problems when gpm is enabled (e.g. Netscape Navigator). You will still be able to use the mouse in a xterm. inet: handles dial-in services. If you only use dial-out (e.g. for connecting to the internet), disable it. There are severe security issues with that daemon (read the security section for more). nfsfs: handles the network file system of Novell Netware. If your box is not part of a Novell network, you can turn it off. pcmcia: only useful with notebooks. sendmail: handles sendmail. If you use a mail program that can do SMTP (send mails) on its own (like kmail or Netscape mail), you don't need it. ypbind: handles NIS (Network Information Service) domains. Most likely you are not part of such a domain, so you can disable it. |
|