LiveUSB goes without firewall

Question

I made a bootable USB to try another linux distribution. When the OS was booted up, I checked iptables and it was all ACCEPT. I suppose it's not safe to use with working internet connection. I may be overcautious but what do other overcautious people do in such a case?

Answer 1

If ufw's installed & ready to go, it might just take a

sudo ufw enable

to get it up & running.

Answer 2

It depends on the Linux distro. Mostly they are without root password and sometimes without sshd, so no one will be able to login to this OS. For longer work with such a system you should take care of its security, and always if you install any Internet services (FTP, Samba, sshd, apache2 etc.). If you are behind a router with a firewall and there are no redirected ports you should sleep safe.

Answer 3

Were you to create your alternate Linux distro LiveUSB with Persistence, you would be able to configure it and keep the configuration between reboots using the dedicated storage space in the Persistance LiveUSB. Instructions vary according to your distro, but Ubuntu-derived distros have instructions here and there are generalized multi-distro instructions here.

Answer 4

My plan to proceed was as follows (in this case, ubuntu):

1. download appropriate ufw package and put it on an accessible partition (or a usb disk)
   
2. unplug the ethernet cable
   
3. put the hardware WiFi switch in off position
4. load the OS from the USB stick
5. get ufw to work:
   5.1. run sudo ufw enable in terminal
   if I don't get "Firewall is active and enabled on system startup", then:
   5.2. install ufw using the package from (1)
   
6. run sudo iptables -L to be sure it is by default DROP for input and forward
7. plug in the cable / switch on wifi
   
8. repeat all this when booting anew