Fedora Networking :: Hacking Attempt On Server (need To Close Ssh)?
Oct 3, 2009
I've just had a log email sent from the server box and it seems Somebody's trying to gain access to the server via ssh
sshd:
Authentication Failures:
root (210.38.xxx.xx): 16 Time(s)
unknown (210.38.xxx.xx): 7 Time(s)
Invalid Users:
Unknown Account: 7 Time(s)
& it seems that it's somebody who's at Zhanjiang Ocean University in china I've got the firewall enabled, but how do u set up rules to stealth the server's IP address to make it invisible & disable ssh so only I can log into the server to fix any problems (eithernet cable) not over the net
[Code]...
View 1 Replies
ADVERTISEMENT
Apr 10, 2009
I went away from home for a few days, ... Now I am back at home and noticed, that my server is going out with 100% available bandwidth. The server is mainly Http / Ftp / Mail server, so I stopped all services, to see which one it is. ervices stopped, still 100Mbps go out like ants in the flood.
I updated the system, made a backup, installed IPtraf. It seems that I have something 'installed' and my server is running something to attack User computers. It seems to try to find something on random IP's random ports. I am a little bit confused now. As long as my sites are running, I'm ~OK~ but sooner or later I would like to have my bandwidth back. How could I try to hunt down which service/app/process got hacked?
It seems that the monetary system of our society got now more enemy's than friends. Capitalism seems to reach it's end. But my server is serving also ART! Sooner or later we will need to pay copyright even for our thoughts. I was reading today, that the French president wants to punish file sharing as his wife made 3 albums, and wants to get some money ..
View 12 Replies
View Related
Aug 9, 2010
I am new to all this so I don't understand much of the language used in linux or backtrack, but I founded in a forum how to hack wep and I did this steps: I have a IWL 4965 AGN I tried to hack a wireless but I get errors, this is what I did:
1)airmon-ng
wlan0 intel 4965 a/b/g/n iwl 4965 - [phy0]
2)airmon-ng stop wlan0
wlan0 intel 4965 a/b/g/n iwl 4965 - [phy0]
(monitor mode disabled)
3)ifconfig wlan0 down
4)macchanger --mac 00:11:22:33:44:55 wlan0
Current mac: 00:1d:e0:4f:99:4b (unknown)
faked mac: 00:11:22:33:44:55 (cimsys inc)
5)airmon-ng start wlan0
wlan0 intel 4965 a/b/g/n iwl 4965 - [phy0]
ERROR: Neither the sysfs interface links nor the iw command is available.
Please download and install iw from dl.aircrack-ng.org/iw.tar.bz2
So I downloaded this from the Page and tried to install it.
6)cd '/root/iw'
iw# make
CC iw.o
iw.c:11:31: error: netlink/genl/genl.h: No such file or directory
iw.c:12:33: error: netlink/genl/family.h: No such file or directory
iw.c:13:33: error: netlink/genl/ctrl.h: No such file or directory
iw.c:14:25: error: netlink/msg.h: No such file or directory
iw.c:15:26: error: netlink/attr.h: No such file or directory
iw.c: In function 'nl80211_init':
iw.c:25: error: implicit declaration of function 'nl_handle_alloc'
iw.c:25: warning: assignment makes pointer from integer without a cast
iw.c:31: error: implicit declaration of function 'genl_connect'
iw.c:37: error: implicit declaration of function 'genl_ctrl_alloc_cache'
iw.c:37: warning: assignment makes pointer from integer without a cast
iw.c:44: error: implicit declaration of function 'genl_ctrl_search_by_name'
iw.c:44: warning: assignment makes pointer from integer without a cast
iw.c:54: error: implicit declaration of function 'nl_cache_free'
iw.c:56: error: implicit declaration of function 'nl_handle_destroy'
iw.c: In function 'nl80211_cleanup':
iw.c:62: error: implicit declaration of function 'genl_family_put'
make: *** [iw.o] Error 1
View 6 Replies
View Related
Nov 30, 2010
I recently built myself a backup computer/file server running Fedora 14, and I'm trying to install the NVidia driver. For some reason, I can't seem to switch to console mode to save my f'ing life! Ctrl+Alt+F1 does nothing, as does the terminal command init 3. Seriously, I can't figure out for the life of me what could be causing this issue.
View 5 Replies
View Related
Aug 8, 2011
Not for illegal purposes of course, it's just my computing teacher bet me that I couldn't obtain the schools wireless key without actually asking someone for it. Now I am an idiot and can't get anything like airsnort etc to work. So I was wondering if there is a nice simple"click here then click here then done" GUI I could use. O btw the encoding is WEP.
View 4 Replies
View Related
Jun 4, 2010
I realized that Scrabble on Facebook is blocked to users outside of the US and Canada. Can someone help me hack this so I can play outside of the US.
View 1 Replies
View Related
Dec 1, 2009
Does fedoraproject close its official rsync server? Or I did the wrong way?
View 1 Replies
View Related
Aug 6, 2010
I have Fedora 13 installed on my Fujitsu Siemens Laptop. I can only connect to my wireless router when the laptop is close to it. When I try using the laptop in the next room, it keeps asking for the password and eventually disconnects after 3 or 4 attempts. The wireless connection worked fine in Windows XP.
View 2 Replies
View Related
Jun 18, 2011
I'm planning on the RHCSA 2nd attempt? Has anyone taken it twice?
View 1 Replies
View Related
Jul 13, 2011
I have been trying to set up openVPN on a Virtual Machine running Ubuntu 10.04 with the eventual intention of having a closed VPN in the workspace I'm at, and a bridged internet connection out through the server.My initial process/instinct was to go through Webmin. After a fair bit of tooling around making eys/certificates, I was able to get a response (and that's all it was, really) from my windows machine accessing the VPN server. However, in my attempt to bridge the network, I have lost all internet/networking capabilities from the server.Fortunately I am able to access the server directly from the hardware underneath (i.e. I don't need to SSH in or anything), and so I've been attempting to restore the server's networking back to default. I have returned the /etc/network/interfaces file to it's original state (just the loop, and an eth0 on dhcp) and restarted the networking. A check with ifconfig returns what seems to be a working eth0, and the loop (noting else) however I am unable to ping any outside server. When I do, I am given the message:From XXX.XXX.XXX.XXX icmp_seq=1 Destination Host Unreachable(where of course XXX is my IP address).nother VM on the server is able to access the internet just fine, so it's not the overall server hardware...I guess at this point I'm just trying to take steps back,
View 1 Replies
View Related
Jun 18, 2011
I followed blindly this how to : [URl].. out of laziness and then for some reason bind9 didn't want to start. So I tried to apt-get remove it, but when I re-install it, it failed because
Code:
chgrp: cannot access `/etc/bind/named.conf*': No such file or directory
so I assume the chrooting stuff I did is in the way, but I know very little about chrooting and permissions ... how can I undo the following things I did :
Code:
/etc/init.d/bind9 stop
[Code]...
View 4 Replies
View Related
Apr 18, 2011
I have had Ubuntu desktop on my PC for a year now and am very happy with it. A couple of months ago I got a Ubuntu server 10.04 for playing about with. I have installed the gui, for personal reasons, but I want to upgrade to 10.10
Whenever I attempt the upgrade my server becomes unbootable and I have to reimage and start again. I have even tried performing the upgrade before I install the GUI but it still makes no difference.
Although I have the GUI I am doing the upgrade via command line.
Upon watching the upgrade in process, I find that no errors are occurring. Could it be something to do with my server provider?
Server Specs are: Specification: Intel Dual Core, 2.2 GHz 800MHz FSB, 2MB L2 Cache, 2Gb DDR, 1x 250Gb HDD
View 4 Replies
View Related
Jan 7, 2011
I want to filter and block failed attempt to access my proftp server. Here are few line from the /var/log/secure file:Quote:
Jan 2 18:38:25 server1 proftpd[17847]: server1.XYZ.com (93.218.93.95[93.218.93.95]) - Maximum login attempts (3) exceeded
Jan 2 18:38:27 server1 proftpd[17864]: server1.XYZ.com (93.218.93.95[93.218.93.95]) -
[code]....
View 9 Replies
View Related
Jun 24, 2010
The nm-applet starts automatically as it should, and also tries to connect to the local, wireless LAN, but always fails its first attempt. If I click the icon and ask nm-applet to connect again, it always succeeds.
The server, running the wireless LAN, never sees the first attempt to connect, so no wonder this attempt fails. But it would be nice to make it succeed!
View 2 Replies
View Related
Dec 29, 2010
I'm setting up an Ubuntu 10.04 system; installed open-ssh. I'll call this box A. I also have an older box B with Debian. From A I can log into B via the usual way (ssh <user>@<IP>). The 1st attempt at this I was presented with the 'unknown host' warnings & elected to accept it. However, from B when I try logging into A there is no response at all -- no warnings, nothing. I have to ctrl-C back to the prompt. I can successfully ping A from B though. I CAN connect to A from a Windows box using PuTTY as an ssh client with all default settings. Once connected I can log in. Why no response from A when trying to log in from B?
View 1 Replies
View Related
May 28, 2011
My wireless usb will not attempt to connect to my AP even though it shows in ifconfig and iwconfig:further information which i believe may helplspci -v
00:00.0 Host bridge: VIA Technologies, Inc. CN700/VN800/P4M800CE/Pro Host Bridge
Subsystem: VIA Technologies, Inc. Device aa08
Flags: bus master, 66MHz, medium devsel, latency 8
[code]....
View 1 Replies
View Related
Nov 4, 2010
I'm running F12 and Package Updater has been telling me to update Thunderbird for two days but fails on every attempt. I tried to go the yum route today with
yum remove thunderbird
yum install thunderbird
And I get this error:
Error: Package: thunderbird-3.0.10-1.fc12.i686 (updates)
Requires: nss >= 3.12.8
Installed: nss-3.12.7-6.fc12.i686 (@updates)
nss = 3.12.7-6.fc12
Available: nss-3.12.4-14.fc12.i686 (fedora)
nss = 3.12.4-14.fc12
Is there any way I can update nss such that Thunderbird will have access to the correct version or is this something that is in process for the repository?
View 2 Replies
View Related
Mar 2, 2010
Ive always had luck doing any kind of updates to my system. I let it auto install the security updates lastnight. Today when I rebooted the machine it just hangs. I would like to attempt to boot only to a command prompt so that I can atleast use vi to edit files and fix the system. Do I have to edit grub to do this or is there keys I can press during boot up?
View 5 Replies
View Related
May 26, 2010
I am attempting to upgrade Fedora 12 to 13. I get an error screen that said root could not be found. Four options are given. Not sure exactly their wording, but two appear to allow you to cancel the other two warn that if you reinitialize you will wipe out all data.
I have a Vista partition and a Fedora partition. I've added the vista ntfs partition to fstab with no help. All of the partition use the long UUID form. I added the root location (root (hd0,5) to the upgrade menu item in grub.conf and that didn't work either.
I'm reluctant to proceed for fear of initializing the entire drive. I could live with installing Fedora 13 over the existing partitions.
View 3 Replies
View Related
Oct 2, 2009
when i try to install fedora 11 on my laptop my Fedora 11 Preview installer crashes after attempt to create a partition. How do i overcome this problem
View 6 Replies
View Related
Aug 30, 2010
the following security alert made me checking my httpd.conf:
Code:
Summary:
SELinux is preventing the http daemon from reading users' home directories. Detailed Description: SELinux has denied the http daemon access to users' home directories. Someone is attempting to access your home directories via your http daemon. If you have not setup httpd to share home directories, this probably signals an intrusion attempt. Even though in httpd.conf there is a line that reads
Code:
LoadModule userdir_module modules/mod_userdir.so
in the same conf-file the access to home-dirs is disabled:
Code:
<IfModule mod_userdir.c>
[Code]....
View 12 Replies
View Related
Nov 18, 2010
I am looking for resources to learn how to put linux on usb devices. I have a Zune 30G that I'm itch'n to try and break into but I have no idea where to start. I also have a Sandisk clip 2Gb that I can practice on,before tackling something that no one has been able to so far.
View 5 Replies
View Related
Feb 15, 2011
Curruntly using Ubuntu 9.10!I am eager to know where the hacking begins in linux? The stuff like netstat, telnet, or mail-forging or even pinging...ho do we do that in linux?
View 3 Replies
View Related
Apr 28, 2010
vsftpd not working on my CentOS system. I tried logging in using FileZilla but the error message was: Connection attempt failed with "ECONNREFUSED - Connection refused by server".
View 7 Replies
View Related
Jan 4, 2010
I think it is very easy to hack passwords in Linux, but I did not try it yet. If you use sudo you get 3 attempts for the correct password. But if you get enough time it should be no problem to hack it by bruteforce. Imagine a script an attacker places on your machine which runs for a few hours or days. I think it is much more effective to delete the user out of the admin (or adm?) group so that user cannot be any danger anymore. You would have to login with root and readd the user then.
You now say: but if you login with root you got almost the same effect as with sudo. Of course it is the same. That is why I would use a system (not sure which yet) to create sub enviroments of your OS, which got the attribute that they can run without root, only got one account that can sudo and once sudo access is denied there is no other way to login as root. You just can repermit sudo access by the parent os layer.
View 9 Replies
View Related
Nov 27, 2010
I am having a problem with nautilus since today. I was hacking on glib and trying a few things with the way stuff gets mounted, after a while i noticed that nautilus was seriously broken. Network, Computer, and all volumes are not displayed anymore. I wanted to revert to the original state, and tried to reinstall glib, gvfs and nautilus with the packet manager, but it didnt change anything. how i can restore everything to normal. I tried running nautilus as root or reinstall gvfs-backend and other things but it didnt work.
View 6 Replies
View Related
Dec 14, 2010
After a week this 200 lines c code still working, it seems Ubuntu forget it, what happend?
http://marc.info/?l=full-disclosure&...5358621826&w=2
*solved: I build a new kernel (2.6.32.27)
View 5 Replies
View Related
Mar 9, 2010
is ssh remote login similar to hacking?
View 2 Replies
View Related
Dec 10, 2010
recommend a good book to start learning iphone/pad development. I want to use the offical development SDK, rather than hacking the phone.
View 1 Replies
View Related
May 11, 2011
I'm having issues getting apache to respond to requests outside of my local LAN. If I goto my server [URL].. it says connecting... but never finishes and returns anything. I'm using Ubuntu Server 10.10.
a) The DNS is working fine. It's pointed to my cable modem's IP and ping responds fine.
b) The apache server is setup and is working locally. In fact, if I use w3m and goto [URL]..I reach the test page perfectly. I can't figure out where the missing piece is to close this gap. Here are some config files to illustrate my setup:
[Code]...
View 2 Replies
View Related
