What we need is an application which centralises security. I'd like to think of it as "Security and Stability". It should monitor the following in a centralised location:



- Track system crashes/unclean shutdowns of applications and make it easily accessible. If apache has never crashed except the day a server was compromised for instance, it may provide a clue about how it was hacked.

- Firewall status. No IPtables enabled = insecure

- Show all security updates. Users should be informed when there are updates available specifically targetting security (in addition to the applet currently present).

- User rights. If the user is running as root, they should be told the risks.

- Anti-virus. There should be integration with Anti-virus here, or a one click means of listing various versions of anti-virus. Integration should also allow a one click option to start scanning, and an indication if automatic scanning is enabled. It could also offer an easy way to install rootkit detectors and anti-virus. Its better for us to get ahead of viruses, and make sure people don't pass existing ones on (I believe ClamAV is an example of a free one?)

- Rootkit detection. There are lots of Rootkit detection systems out there. I suggest that users be able to click a button and run a quick test.

- Permission checker, Use information from APT to identify changes in permissions to system files. Many newbies do stupid things like change the permissions on a config file so they can access it via gui. Lets make sure they have an easy way to fix it.

- Identify if your network is broadcasting everyones traffic to everyone (ie, hubs, not switches). Maybe not easy, and not really neccessary.

[....]

I understand WEP is not the most secure wireless encryption. However,
many people still use it at home these days. MANY users have the "pass"
but doesn't know which security option to pick. In Jaunty, We have:

WEP 40/128-bit Key
WEP 128-bit Passphrase

It's time to admit it - the Network Manager is a failure. Searching for "network manager" in launchpad bugtracker returns more than 1,000 (one thousand!) results.

Moreover, I find it easier and more reliable to use CLI tools for setting up network, then to use buggy and secretive nm-applet interface.

I don't understand why we need to choose the key (or password) type of our wifi network.

I always try all the possibilities (hexa, ascii, 64, 128bit...) and cross my fingers for it to work.

The best thing to make working my wifi network is still the command line and iwconfig or edit manually /etc/network/interfaces. With these solutions, I never have to specify which type of key i'm using, and it always works.

Can ubuntu simply detect automatically which type of key we have to use ? Or if it is not possible, it could try each type one per one, if one doesn't work, try the next, ... until we have the connection working.

For the installation many users use the CD. At live boot you can configure the network to fetch many packages during installation.
Before the installation, at reboot all settings are lost, and many users had to reconfigure the network.
For example, do you remember the wpa key?

Many people don't bother to run a personal firewall on their computers, because they know their entire network is protected by the firewall in their ADSL router.

However, if they take their computer to a public wifi hotspot or connect to the internet via mobile broadband, they are no longer protected by their router, and any services that they were comfortable running on their home network will suddenly be exposed to strangers on the local wireless network or on the internet.

Currently with network manager you can right click and get connection information, in a separate window. While it is a lot easier to get the network details this way than it is in Vista, and this would be great for detailed information. If you just want to know your IP, wifi speed, or current gprs/utms etc status for mobile broadband it's annoying.

Windows 7 is allowing the user to turn one Wi-Fi adapter into two, which means they would be able to connect to a hotspot and share it. (etc)

Source: http://gizmodo.com/5259173/windows-7s-virtual-wi+fi-turns-one-wireless-adapter- into-many-for-easy-sharing-hotspot-double+tapping

Right now,the user is left blind when trying to connect to a wireless acces point fails.It should at least show an error message with description of the problem or a possible solution

Ubuntu applications that use the network could use the status of Network Manager to provide more appropriate messages and behaviours. For example, when not connected to the network, instead of having Thunderbird tell you

"Error connecting to ***** server".

You could get

"You are not connected to the internet"

That could also save some time because the mail client should simply not even attempt to check for new mail when there are no network connections. The same general principle could apply to any browser.

Another example: If you start Firefox while the network connection is getting established, it could wait for it instead of giving you a "Page not found" screen.

Even synaptics doesn't seem to know when you are connected to the internet and gives you an error message. The list of examples could include audio players, IMs, apt-get, etc.

I am sure other people can think of more interesting examples that I could add to this idea.