Debian Hardware :: Can Make A Networked Hdd Secure
Jun 18, 2010
I've got a lan with a mixture of linux and win machines. I've got one of those network addressable printers that I really like since I can access it from any machine on the lan in an os independent manner.
I saw in the local computer store network addressable hard drives, i.e., those that have an ethernet address and port. I really like the concept of having hdd storage that is both machine and os independent, just like my printer. However I don't know how to make it secure from spoofers. The only filter between it and the outside world would be my linksys wireless router, which has an internal firewall, but that doesn't seem to be enough security to me.
View 2 Replies
ADVERTISEMENT
Dec 9, 2010
I have very little security and networking experience. What can I do to make my computer more secure?
View 5 Replies
View Related
Jun 7, 2011
To make aide more secure would i: put the aide binary and database on a read only media, then mount the aide binary copy it onto the filesystem(where?), then alter /etc/aide.conf so that DBDIR is a mounted read-only media, then run aide? BTW i'm not looking for military/bank security level(I'm willing to accept less)
View 1 Replies
View Related
Feb 9, 2010
I have installed my linux server on the Internet witout a router/firewall between. To secure it I used iptables and it works fine. The problem is that I'am not feeling secure enough with only iptables. Is there anything else that I can install to make my server more secure and get rid of my paranoid feelings?
View 8 Replies
View Related
Mar 30, 2011
I Have 10.04 LTS I want to make a more secure storage with 3 PATA 300GB disks. I think a raid5 is the best. I don't need to boot or have a system on the storage volumes.i have find some guides, but they are for raid on system-disk and make them bootable, and seems to be to complicated for me.
I have made ext4 volumes on them and flaged them as raid in gparted.
View 4 Replies
View Related
May 26, 2011
I'd like to set up a fileserver for myself and a few trusted individuals. I'm computer savvy and I use various linux servers frequently for work, but this is my first time trying to setup my own. Is it possible to have a Samba server setup so it is both secure and facing the Internet? Two questions:
Will opening Samba ports make my default Ubuntu server particularly vulnerable to penetration? More than having an SSH server running? Does Samba/ can Samba be configured to encrypt traffic or is it sent plainly? If so, does Windows and Mac support this secure communication?
If not, what would you suggest? I'd like to achieve something like a network drive and at a difficulty level that my parents could use this if they really wanted to. I will be storing things like financial information and tax returns, but no weapons-grade secrets.
View 9 Replies
View Related
Dec 1, 2010
I'm an Oracle DBA and started working for my current employer about 4 months ago. This past weekend an alert re: FS space brought my attention to /var/spool/clientmqueue (full of mail re: cron jobs) and the fact that sendmail is not running on our Linux servers.I'm told that the IT security team deemed sendmail too vulnerable so we don't run it.Aside from FS filling up and missing notification of issues with crontab entries, I'm concerned that we may be missing notification of potential issues. In other Unix/Linux environments I've seen emails from the print daemon when it experienced problems with specific jobs.
Are there other Linux facilities aside from cron and lpd that use email to advise the users of possible issues? Are there ways to secure sendmail or secure alternatives to sendmail? My primary need/desire is to make sure that emails regarding issues on the server get to the appropriate users. Secondary goal would be to have the ability to use mailx to send mail out. There is No need/desire to receive mail from outside.
View 1 Replies
View Related
Feb 10, 2011
I am running an Ubuntu Server on a VirtualBox VM running on my windows machine. So I've created a self-signed certificate using the following tutorial: [URL]
From this tutorial I'm left with 3 files:
server.key
server.csr
server.crt
Then I found this very similar tutorial that has an extra bit on installing the certificates in apache: [URL] So I followed it's instructions which boil down to this:
[Code]...
So I'm thinking this should work now. However in Chrome I get: SSL connection error Unable to make a secure connection to the server. This may be a problem with the server, or it may be requiring a client authentication certificate that you don't have. Error 107 (net::ERR_SSL_PROTOCOL_ERROR): SSL protocol error. IE8 gives me a typical "Internet Explorer cannot display the webpage" Note that [URL] fails while [URL] works fine, so it's definitely something in my ssl setup I'm thinking.
View 5 Replies
View Related
Sep 19, 2010
I was looking at my apt-get keys (with APT Key Manager) and, besides the usual keys:
I have this one: live-helper local packages key, no expiration
I am using Debian Squeeze from an original live-dvd installation; is the last key normal or should I remove it?
View 4 Replies
View Related
Feb 21, 2011
I want to change my user name, pretty my replace my user name completely so that it is reflected all around the OS. What is the less dangerous and most secure way to do it? I guess I can create a new user copy stuff all over but if there is an easier way I am going to prefer it.
View 7 Replies
View Related
Feb 13, 2010
Ubuntu is based on debian unstable, but there might be some time lag before security patches get to debian testing --- so is Debian Testing more secure than Ubuntu ?
View 1 Replies
View Related
Jan 13, 2016
I need to setup a squid 3 proxy with https bumping. Unfortunately I'm not very familiar with squid and https in general.
I already perfomed the following steps:
1.) compile from source
Code: Select all./configure --with-openssl --enable-ssl-crtd
make
make install
2.) configuration (http)
I used this guide: [URL]
3.) configuration (https)
[URL]
The server is now working for http and https, but is the server secure, too? Is the default config already secure or do I need to configure additional security features? (e.g. things like cert validation, cert pinning, [dont know what's importend], ...)
View 0 Replies
View Related
Jan 29, 2010
I am trying to setup a web-based secure ftp client that can handle not only file transfers to and from one of my company's servers, but also allow new clients of ours to visit our site, create an account of their own and use it to log in and begin transferring files. This way, the users can manage their own accounts.
I don't know a lot about exactly what is running on our server, though I am almost positive it is debian based. I really only have access via ssh and ftp. I may be able to do more in the server room, but haven't tried. I thought about using net2ftp, but that doesn't seem to work with sftp, and also doesn't allow the creation of new users on the server.
Is there anything out there for me??You will undoubtedly require more information from me, so please let me know what it is and where I can find it and I'll get back to you as quickly as I can.
View 3 Replies
View Related
Jun 14, 2011
I've been deploying a lot of Debian based OSs for the desktops. I recommend the users to upgrade after every 2 months; however as we all know upgrades have their own flaws and issues, many times an upgrade does cause a lot of problems.
I'm deploying the testing branch of Debian, reason being hardware compatibility issues with older kernel and drivers. My main concern is security, I don't want the users to have big security venerabilities over time which's a consequence of not upgrading, but upgrading too may break the system (partially maybe...).
I know there's an option to only do security upgrades, but this will require a repository refresh... the consequence of not upgrading after a repository update is that if you install software using software center.. or even using aptitude or apt, it's bound to give a lot of dependency issues which users wont like.
This's the second question -- installing new packages with an updated repository and an older system gives issues.
View 6 Replies
View Related
May 18, 2010
I'm having problems establishing secure sessions with my bank's online banking service provider. I've already contacted their local tech and together we were unable to solve the problem. I've tried deleting my cookies, session store, cache, and none of it worked. He's currently forwarding our conversation to the service provider's tech support line, but who knows what will come of it. Or even if they will offer support for an iceweasel user. I'm using Iceweasel 3.6.4~build2-1 out of the experimental repo.
I'm able to login successfully to online banking site to view my list of accounts, however if I try going any further than that, I'm redirected to an error message page that tells me a security error has occurred - the online session has expired. I get this on browser profiles 1, 2, and 3, however I do not get the error message on profile '0' (default) or on newly created profiles. And as mentioned earlier, I've tried deleting all persistent data (cookies, session, cache) on a non-working profile and the problem still exists. Let me know if I can provide any more information.
View 2 Replies
View Related
Sep 26, 2014
I have Acer Aspire S7-392. It has two 128GB SSD drives. They are using RAID 0. Currently there is Windows 8.1 installed on the RAID 0 drive.I am trying to install Debian 7.6 (wheezy) alongside Win 8.1 (dual boot). Actually I have already created linux partitions and installed mentioned Debian on my computer. I had to skip grub installation due to fatal error that had occurred. (Everything on existing RAID 0 volume).Now I am looking the way to install grub and boot Debian. I have disabled UEFI Secure Boot. It didn't work.
My question is:
1. Is it possible to have Win 8.1 and Debian dual-bootable on the same RAID 0 volume? How to install grub and boot debian?
2. If not, what am I supposed to do to achieve what I want (these two systems on one computer)? Delete old one RAID 0 and create two new: one for windows and one for linux partitions?
View 0 Replies
View Related
Apr 10, 2015
Since users need to disable secure boot to install Debian but can you enable after its installation?
View 7 Replies
View Related
Sep 29, 2010
I need to set up a Debian server in a windows network so that users can securely ftp docs to the Debian server and then pull docs from the server when needed - using a secure ftp session. I have the Debian Server built and IP'd. Do I just need to set up the vsftpd.conf and thats it? Right now I am just concerned with getting ftp working.
View 7 Replies
View Related
Aug 31, 2011
I am installing Debian for the very first time and having read websites similar to [url] I have come across parts of the installation which I do not understand.
For example, I have created logical volumes using the logical volume manager however am unclear what the message regarding writing changes to disk before configuring Logical Volume Manager means.
Once I have created the volume group, I am presented with a window that provides me with the ability to
Display configuration details
Create volume groups
Create logical volume
Delete logical volume
Extend volume group
Option 2 is pretty self-explanatory however am unsure whether it is advisable to segment directories between 2 or more volume groups. What benefits does it serve?
Option 5 provides me to extend a volume group however am unsure how this works?
Does it mean I can assign free space available one 1 physical drive to the existing volume group or does it mean I can assign free space available on a second phyical drive or does it mean both? How does it affect security, performance, etc?
Currently the only way I can see the logical volumes I have created by selection Option 4. Is there any other way? How do most people keep track of the logical volumes they have created e.g. checking off against a checklist, etc?
Next I have the ability to map the logical volumes to mount points however am confused what purpose the none mount point serves as I have the option to select it?
What are mount options for?
What do I use labels for?
What are reserved blocks for?
What does typical usage refer to?
How does the option to copy data from another partition work? What is it for?
View 1 Replies
View Related
Aug 8, 2010
On Windows, I used to be able to search for items on my home server quickly if it had indexing enabled by simpily typing a query in the search box when I was viewing one of its drives (i.e. samba shares).Since I moved the server to Ubuntu, I can find plenty of indexing software like tracker but I cant figure if any of them support querying them over the network. I need a fast way to search through all the files on the server with indexing without the hassle of having to VNC into it.
View 1 Replies
View Related
Aug 29, 2014
I appear to have the exact problem that is currently listed in the 7.6 errata about EFI boot and black screen while trying to install ("Potential issues with UEFI booting on amd64"). The problem is that their workaround is not an option for me. This is a new rig and the motherboard doesn't appear to have any kind of ability to disable secure boot. I also don't know if my problem is exactly what they're thinking when it comes to that entry.
I'm able to get to the Grub install screen where you have the option to install Debian but when I select an option (any option) the screen turns off, back on but is black. All activity in the system stops after a few seconds (3-5 seconds) and that's it, she's done. I've tried all the options to try and disable secure boot but the options listed below are as close as I can get (and apparently should be sufficient).
The CD ISO used was the 7.6 netinst CD. I've also tried the Jessie ISO (Testing) that was downloaded about 2 hours ago. Same results. Unlike the errata which says "intermittent booting problems", my issue is consistently reproduced with no other result no matter what I do.
The rig:
-Asus H97-Plus running revision 2202
-Intel i5-4570
-32GB DDR3-1600
-128GB SSD Drive
-No external video card - using on board only but have tried both VGA and HDMI ports with the same result.
BIOS settings (is it still called BIOS or is it UEFI now?)
-Fast Boot: Disabled
-Launch CSM: Enabled
-Boot Device Control: "Legacy OPROM Only" or "UEFI and Legacy OPROM" (tried both)
-Secure Boot State: Enabled (it's grayed out and I'm unable to change this)
-OS Type: Other OS (supposedly makes it so you can boot non-Windows OS)
The Debian page with the errata: [URL] ...
Look for "Potential issues with UEFI booting on amd64"
The obvious suggestions I've tried:
-tried USB boot & CD boot - same result
-tried altering the grub script to add the ACPI options - no effect
View 1 Replies
View Related
Oct 3, 2015
debian 8 64bit
Should bios setting be eufi or legacy?
Should secure boot be enabled?
View 2 Replies
View Related
Dec 27, 2010
Things beyond my control are causing me to rush a bit in getting the website moved. I'm working hard to try and get it done, but something else has come up that SSL Certificate.I know that our website's "basket" area is protected by an SSL certificate to ensure customer information, especially credit info, is secure. With the move to Amazon's service, it looks like I may need to create our own self-signed SSL certificate to ensure the basket area remains secure.
I have found guides that walk through how to make one yourself and configuring apache to allow it, but something else has come to mind. The guides I found don't really indicate where the SSL certificate goes afterwards, and also doesn't suggest which sections should be governed by the certificate (as only the basket section uses it, not anything else). How would I find out that information?
View 1 Replies
View Related
Feb 21, 2009
I want to find the MAC address of another pc connected to my pc through LAN. That PC is showing GRUB load error so i cant boot it.
Can i find its MAC address through my PC? Both PC's are connected in LAN.
View 1 Replies
View Related
Sep 2, 2010
I will be running a network of +- 35 Ubuntu pc's from next year on. I have already started setting up remote desktop viewing utilities, but I now need a way to remotely shut down all the pc's at the same time, with a simple command as Admin. Setting up scripts to execute at a certain time is not gonna help, as the online time wont be the same all the time. I want to avoid having to remotely shut down each and every pc, as this will take quite a lot of time.
View 3 Replies
View Related
Dec 6, 2010
I have installed Tomcat on one machine and MySQL on another. When I run tomcat on the same machine as Mysql and use 'localhost' in the jdbc url, I have no problem accessing mysql through jdbc. So my problem is accessing a remote mysql instance. I have granted privileges in the following way from the MySQL prompt:GRANT ALL PRIVILEGES ON mydatabase.* TO myusername @192.168.0.103 IDENTIFIED BY 'mypassword';
FLUSH PRIVILEGES;
Still I get :
com.mysql.jdbc.exceptions.jdbc4.MySQLSyntaxErrorEx ception: Access denied for user 'myusername'@'192.168.0.103' to database 'mydatabase'
sun.reflect.NativeConstructorAccessorImpl.newInsta nce0(Native Method)
sun.reflect.NativeConstructorAccessorImpl.newInsta nce(NativeConstructorAccessorImpl.java:57)
[Code]....
I have no idea whether this is a problem at the operating system level i.e. allowing networked hosts, or whether it is something to do with MySQL. I have commented out bindaddress and, on this version, there is no 'skip-networking' line to comment out.
View 4 Replies
View Related
Dec 11, 2010
Ok here is the deal, I am allowing my neighbor access to some networked folders on my ubuntu file server in exchange for access to their washer & dryer. I have already created mapped drives on their xp machines but now I want to only allow them "read only" access so they don't accidentally delete anything?
View 6 Replies
View Related
Oct 13, 2010
Is there any way to make it so I can let my laptop go into standby that is connected to my printer and make it so that I can still see the printer from my other systems. Then if I print something it brings the networked printer/laptop out of standby and prints my job. I just ran a test and when my system went into standby the printer went "offline" and I couldn't print from it. I don't want to be forced to leave my computer fully on 24/7 to have a networked printer.
View 4 Replies
View Related
Oct 10, 2010
While I was setting up CentOS 5.5 for my first time I faced this problem which is connecting to a printer is not possible, my tutor told me you need to change from eth0 to eht1 or eth2, what does that mean? And if I do this, how can I connect a printer which I have its name and IP address.
View 4 Replies
View Related
Mar 26, 2016
I build and use a custom kernel, and use the nvidia driver. This is on debian stretch.
By default, I build the image and headers packages with this line:
CONCURRENCY_LEVEL=8 nice -n19 ionice -c3 fakeroot make-kpkg --initrd --append-to-version=-something --revision=1 kernel_image kernel_headers
These kernel sources are usually the sources from debian, with a couple of more patches that I add. It appears that for nvidia-driver package versions higher than 352.79-1, the kernel headers/sources need to be prepared with 'make prepare' and 'make prepare scripts'. It's that simple. I concluded this after the nvidia dkms build failed on my custom kernel, but then succeeded after I pointed it to the full sources, but only after running 'make prepare' and 'make prepare scripts' on them. The problem is that this make-kpkg scheme doesn't appear to do this, or if it does, it doesn't properly include in the headers everything that it should.
View 0 Replies
View Related
