General :: Secure Distro That Sends Traffic Through Tor?
Aug 2, 2011
I'm looking for a live Linux distro that is secure and preserves my anonymity online. For what I need, Tor seems to do the job - but such software requires configuration that someone who is not knowledgeable in how it works might find difficult. I was looking at 'Lightweight portable security' but it does not specify whether it sends all traffic through Tor. Does anyone know more information about it and/or any other such live Linux distro?
View 3 Replies
ADVERTISEMENT
Jun 25, 2010
I'm using Ubuntu 10.04, and starting a SOCKS proxy with 'ssh -D', and setting Ubuntu to use it with "System -> Preferences -> Network Proxy". Firefox uses the proxy, and the proxy's IP appears when I visit a site like [URL]. is Firefox resolving DNS requests through this proxy? Is my web-browsing truly secure? (That is, until I exit the other end of the proxy.
I know it's insecure after that.) (And I've verified the keys, I'm not being man-in-the-middled) (And--screw it. You know what I mean. Is it resolving DNS requests through the proxy?)I don't know how I would go about verifying such a thing for myself.Using additional hardware such as another debugging proxy is not an option. If Firefox isn't resolving my DNS requests through the SOCKS proxy, how do I go about fixing it?
View 3 Replies
View Related
Jun 22, 2010
Currently using linux mint.While it's nice I have the feeling all those bells and whistles must be exposing a large attack surface. What is the most secure distro known to man, but which is still capable of making payments to amazon and ebay?
View 14 Replies
View Related
Sep 27, 2009
Recently I notice that when I'm connected to an vpn server (pptpd) and I'm using it as a default gateway my download and upload speed decreases almost to the half of the usual speed. I made a test using iptables in order to count how much GRE packets are generated (except the real traffic itself) in that way:
Code:
iptables -I INPUT -p gre -j ACCEPT
iptables -I OUTPUT -p gre -j ACCEPT
iptables -I FORWARD -s 172.16.10.101 -j ACCEPT
iptables -I FORWARD -d 172.16.10.101 -j ACCEPT
The first 2 rules match all GRE packets between the pptpd server and client, and the next rules - the traffic between the server and the client.
When I turn the counters to zero and begin to generate traffic (to browse, to download etc.) I see that the GRE packets are even more than these in the FORWARD chain.
So, my question is first of all is my test correct and is it true that so much gre traffic is being generated during the browsing (it becames clear that the traffic is double than if the pptpd wasn't used as a gateway) and if yes - can that traffic be reduced?
View 3 Replies
View Related
Nov 3, 2010
how can attachment sends through mail command in linux with mail command either with mail -s or -v option also please confirm how to download the attachments from it . and how one should knows with mail command that attachment is present with the particular mail
View 4 Replies
View Related
Jan 9, 2010
nominate a disastrous distro from past or present that was simply AWFUL and what exactly was so bad about it?
View 14 Replies
View Related
Feb 17, 2010
When I start up my computer Xubuntu is asking me to login (which is strange as I have login disabled). Then, when I do enter my password, it is accepted and after a few screen changes I am returned to the login screen. (I know the password is correct as the login screen informs you immediately if you enter it incorrectly.) Also, I can see that my display settings have been changed--the monitor resolution is wrong--my cursor is way big as are buttons, text etc..
View 3 Replies
View Related
Dec 1, 2010
I'm an Oracle DBA and started working for my current employer about 4 months ago. This past weekend an alert re: FS space brought my attention to /var/spool/clientmqueue (full of mail re: cron jobs) and the fact that sendmail is not running on our Linux servers.I'm told that the IT security team deemed sendmail too vulnerable so we don't run it.Aside from FS filling up and missing notification of issues with crontab entries, I'm concerned that we may be missing notification of potential issues. In other Unix/Linux environments I've seen emails from the print daemon when it experienced problems with specific jobs.
Are there other Linux facilities aside from cron and lpd that use email to advise the users of possible issues? Are there ways to secure sendmail or secure alternatives to sendmail? My primary need/desire is to make sure that emails regarding issues on the server get to the appropriate users. Secondary goal would be to have the ability to use mailx to send mail out. There is No need/desire to receive mail from outside.
View 1 Replies
View Related
Apr 27, 2010
We have something on our network that is reaking havoc with our content filter. I am trying to track it down, but so far I have been unsuccessful. We have approximately 500 devices in 100+ different locations spread across 9 states. Looking at each computer is not really feasible.
I need a machine that can sit in between our network and our internet connection and graphically monitor in real time and logs how much traffic each device is sending and receiving. It would need to sit inline so it has to have two nics and be able to pass traffic. The machine also needs to be transparent. Reconfiguration of our routers or workstations is not an option.
I have used ethereal and wireshark before. Ethereal may be a viable option, but wireshark seems to provide lots of information, but no practical way to make use of it. how to set up the box to be a transparent device on the network that will allow internet bound traffic to flow (freely)?
View 3 Replies
View Related
Sep 29, 2010
I need to set up my centOS computer as a firewall in my home network. Ive got 2 interfaces, eth0 and eth1. I want to allow and forward all traffic on eth0 and block all traffic on eth1 except ssh, ping(icmp) and DNS. How do I do this? Ive tried some editing in /etc/sysconfig/iptables but no luck.
View 1 Replies
View Related
May 28, 2010
Using CentOS. I have a cron setup to run this command: Code: /var/test.sh | mail -s "Test Cron" mr182@somewhere.com The email is sent but the output of the script is not in the email body, it's just blank. I know there is some output because there are some echo statements in the script.I don't want to get an email for all cronjobs, just this one.
View 1 Replies
View Related
Mar 15, 2011
I wanted to tell my server to block all traffic but US only traffic. So i followed this guide:[URL].. Now I know, it's the best way to help prevent hackers/crackers (doesn't matter to me what they are called. I just have to stop them). My server only deals with US clients anyways so might as well just start right there for my server's security before getting into the brute force and injection preventions. So I got it all done compiled everything moved to the proper directory. I then started to setup my iptables. Like so
Code: iptables -F INPUT
iptables -F OUTPUT
iptables -I INPUT 1 -s *.*.*.* -p tcp --dport 22 -j ACCEPT
iptables -I INPUT 2 -s *.*.*.* -p tcp -j ACCEPT
[Code]...
After seeing that i went digging in the code and figured it was something todo with memory allocation.
View 1 Replies
View Related
Dec 15, 2010
Lubuntu is nice - but it seems the LXDE version is not as up to date as Fedora LXDE Spin or even Debian squeeze with LXDE installed. I do like Chromium on Lubuntu though... its faster and a nice touch. I am looking for a lightweight 64-bit distribution for my main laptop (it is by no means "old" or "low spec" but I like that Lubuntu starts up in like 2 secs).
LXDE version seems not to be recent (esp in 10.04 version which seems to work more stably for me - with Nvidia drivers etc)64 bit install is currently a pain - requires first install of minimal CD or alternate CD both of which required wired Ethernet, then install of lubuntu from PPA. Native 64-bit support would be nice. Linux Mint LXDE, for example, is also only 32-bit.
View 4 Replies
View Related
Aug 17, 2010
I have set up a server using Suse, which I have done several times. This one is running 11.2 'Emerald'. It has 2 network cards. One is connected to a bt router with a static ip, and the other is for the internal network. The server is used as the gateway for the internet via masquerading. I have 2 issues, which I suspect are related. I can ssh to and from the server fine, but if I try to scp a file, it is fine sending to a remote machine, but stalls if I try the other way.
It also stalls if I try and send from the remote machine to this one. I have tried debug mode, but no 'error's occur, it just stalls.The internet connection is also very slow and sometimes stalls, so there may be a link.I am not new to linux, but this has me baffled. This server replaced a Suse 10.2 server with similar config, and that worked fine.The firewall allows ssh, so I don't think its that.
View 12 Replies
View Related
Jul 9, 2010
I cannot remember the name of an app I once found that sends keystrokes from terminal. I believe it started with the letter t and was only a few letters long...
View 1 Replies
View Related
Jul 21, 2010
It seems there is a bug with F13Files send over Bluetooth to my WM phone are corrupted.When I send files, the Bluetooth transfer starts normal, then when the transfer finishes the window stays open (like it does not complete the transfer).I am unable to run or use that files on the WM (they are binary or data) so I assume they are corrupted. I have no problem with Ubuntu/Opensuse (I have a test disk with Ubuntu and OpenSuse) only with F13.
View 2 Replies
View Related
Feb 23, 2010
I just installed my version of 11.2 and am slowly setting up the software I need to make my Windows box an expensive paperweight. I recently set up my KMail to receive mail on my POP3 acct. I only recently had reason to send an email to myself at work to remind me to do something. When I hit send this is what I got:
[code]...
And it was in the clear. hmmmm. Is this how KMail sends it's authentication string? I have never really looked at SMTP or POP packets so maybe they all send them like this but I was a bit shocked when it came up like that. What if someone had been looking over my shoulder?
View 6 Replies
View Related
Sep 6, 2010
I have a linux box set up as a multi-purpose server for my home with three Windows client PC's. The linux box is based on a slightly modified Slackware 9.0 distribution using Linux 2.4.20 and an unfortinately old, slow AMD processor with a miserable 512Kb RAM. The linux box serves the CIFS file system to the Windows boxes, runs the SQUID HTTP proxy, the Apache web server, a print server, does masquerading, mail serving and a very effective firewall using iptables.
This system, although slow, has run perfectly for several years.Let me say that again - This system works perfectly.I had decided that now is the time to upgrade the hardware, so I bought a Gigabyte LGA775 motherboard which has two 1Gb network interfaces on it, an ASUS 256Mb PCI-E display card, 2Gb of DDR3 RAM, an Intel Core2-Quad processor and a bunch of 500Gb SATA drives to set up a RAID5 array (but I intend that the system boot off one of several 40Gb PATA drives I have).I set up the processor, motherboard, display card, RAM, a SATA DVD Drive and a 40Gb PATA hard disk in a "breadboard" layout and installed distro 13.1, being careful to set up the static IP for the local network, dhcpcd to get an IP address from the cable modem (my internet connection) and to enable ip_forward in the network configuration.
Then I installed a script invoked by /etc/rc.d/rc.local which installed all the SAME iptables rules as my old Linux box. There was one minor glitch when I had to change 8 occurrences of "-d ! $LOCAL_NET to" "! --destination $LOCAL_NET" but that was no problem. I also set up /etc/resolv.conf, /etc/hosts , the BIND server files etc. etc. exactly as in the old box.
I am able to ping mirror.aarnet.edu.au (this is at the heart of Australia's internet hub network - if it's down the whole bloody thing is down) and have the system find the correct IP from the designated nameservers and contact that server with a return trip time of 35ms. I am able to run a telnet session from one of the Windows boxes and edit files on the Linux server. So both network interfaces work and I've got them the right way around.I am able to run FTP on one of the Windows boxes and connect through to mirror.aarnet.edu.au, although it seems to hang when I try a DIR (but then so does the old linux system).
View 83 Replies
View Related
Oct 13, 2015
It's hard to understand the whole systemd stuff. Specially in combination with mdadm and sendmail. My goal is to get a mail every boot about the state of the RAID. Also get a mail when someone is wrong with the RAID while my computer is running. How I can reach this target I don't care especially. It just has to be a Debian package and stable
OK, to the story: I made a while ago an dist-upgrade from wheezy to jessie. Before, everything works fine. I boot my computer, the RAID gets checked and a mail was sent to my email-address with the state of my RAID and the disks of it. For this I followed a HowTo from [URL] .... After the upgrade, I dont get a mail anymore.
Here some details.
Actually installed: Debian 8.2 Jessie
Code: Select allsystemctl status mdadm-raid -l
● mdadm-raid.service - LSB: MD array assembly
Loaded: loaded (/etc/init.d/mdadm-raid)
Active: active (exited) since Son 2015-10-11 16:11:34 CEST; 21min ago
Process: 281 ExecStart=/etc/init.d/mdadm-raid start (code=exited, status=0/SUCCESS)
Okt 11 16:11:34 xy-server mdadm-raid[281]: Generating udev events for MD arrays...done.
[Code] ....
When I execute
Code: Select allecho "This is a test e-mail from my server using msmtp" | msmtp -d xyz@gmx.net
or
Code: Select allmdadm --monitor --scan --test --oneshot
Everything works. I get the mails like I need it. In my opinion it's not a problem of the mail configuration. It seems, there is no network when the RAID get's started and the mails want to be send.
What I'm wondering is also, that obviously the
/etc/default/mdadm
is ignored by systemd and only the
/lib/systemd/system/mdmonitor.service is executed. But while booting the RAID get's startet with /etc/init.d/mdadm-raid and this should read the /etc/default/mdadm. Right? Confusing!
Anyway, is there a way, how I can easy change the order (without any side-effects) of the startup for the network and the RAID. I can't figure out, which unit I have to change, that it will work. Or maybe is there another solution? Like I mentioned, it's just have to work with Debian stable packages
There are various units who sounds nice, but wich one is the correct one?
Network:
- network-online.target
- network.target
- system-ifup.slice
- ifup@eth0.service
Disks:
- local-fs.target
- mdadm-raid.service
- mdmonitor.service
- -.mount
And how can I be sure, that every dependency of the network units doesn't depend on a filesystem unit?
View 2 Replies
View Related
May 26, 2010
My server is opensuse 11.1 I recently wrote a small script to quickly shut down or reboot my server (I needed this because I need to close an application manually before shutting down. The shutdown line in the script was: /sbin/shutdown -r now When I tested the script (as root) from the console terminal, It worked just fine but after reboot strange things started to happen if I logged in as root - while the mouse works, the keyboard freezes (rebooting the server does not help). While I can still use console terminal, if I try to start any application that requires root permission or log in as root from my sftp client then I will get an error on the server that says; broadcast message from root (time & date), the system is going down for reboot now! I have since commented out level 6 in my inittab, so that now when root sends a reboot signal and It shows the message about going to reboot, it does not actually go into reboot anymore because of the commented out line but that is ofcourse not an healthy way to go about it.
View 4 Replies
View Related
Jan 24, 2010
The only problem is I'm having trouble with Bindwood, the bookmark synchronising program. I'm on 9.10 and using firefox and whenever I try and delete a bookmark it just appears in my bookmarks next time I restart firefox.
View 1 Replies
View Related
Dec 23, 2010
I have 2 email accounts set up in Thunderbird - one is gmail and the other was given me by our server admins few years ago. Everything works fine on windows but when I try to send something from the second account (not gmail) in ubuntu it says that password is incorrect. Ive double checked all settings and seems like everything set correct. Now the most interesting part: when I set up this account as root (gksu thunderbird and then do same as I did under my account) everything works perfect.
I found only one thread at this forum with same issue and sure it's not solved [URL]..
View 7 Replies
View Related
Jul 20, 2010
a file or a process that is always running and pinging for example [URL]. returning 1 or 0, when returns 0 (that means have no response) do something else. i already made the something else, basicly sends an email etc.
View 1 Replies
View Related
Jan 12, 2010
I think I put my question on a wrong sub-forum. My problem is I can't get apache to produce right output to XMLHttpRequest responseText but instead it displays php source code. On another server the same code works as it should.
When I open the php script on a browser window it works as it should.
this is the thread in programming sub-forum Apache sends php source code to Ajax - openSUSE Forums
I'm using Firefox 3.04 and SuSE 11.1
View 1 Replies
View Related
Jun 15, 2010
I'm trying to sign up to office-live but I'm getting this error. Is it possible to report to office-live that I'm using windows so I should be able to use the service.
View 3 Replies
View Related
Feb 7, 2010
I bought an imac G3 yesterday and it has xubuntu 6.06 Dapper Drake installed on it. When i turn it on, after it POSTs, a little xubuntu logo appears it it begins to load 'essential drivers' and mount the file system, etc. After it is done doing that, it simply prompts me into a CLI that on the top says "Ubuntu 6.06.1 LTS ubuntu tty1". It asks for my username and password, and then it just keeps me in this tty1 terminal. I did some research online and supposedly by pressing alt+F7 you can exit the tty terminals and go back into GUI mode. Well pressing alt+F7 does nothing, and pressing alt+F1 through 6 just sends me into the different tty terminals.
I am very new to Linux so if someone could give me an idiot proof explanation on either how to fix it or whether im screwed and just need to reinstall xubuntu on here.
View 9 Replies
View Related
Jul 13, 2011
I have a dhcpd server running CentOS and Webmin. I noticed in my lists of expired leases some of the lease times are only a few hours even thought I have lease length set to 1 week. I want to keep a lease for a week even if the device requests that it be expired. Is there some way I can do this in dhcpd? I am attaching a screenshot of some of my lease times listed in Webmin.
View 4 Replies
View Related
Apr 16, 2011
I'm new here and I'm sure this question has been thrown around a lot but I just couldn't find a solution. I have a networking website I've setup and we need to send notification mails to our members depending on activity related to their profiles(messages, comments etc).We are hosting the site on Centos5.6 with VirtualMin and are using Postfix as our MTA. We also use google apps for email on the site. Heres the problem, the mails go through for some gmail users but more often than not, they end up in gmail,hotmail and yahoo spam.We've setup the appropriate SPF codes on the server, DKIM and rDNS works fine.v=spf1 ip4:xx.xx.xx.xx a mx include:_spf.google.com ~all Below is a sample email that goes directly into gmail spam. I've replaced the actual values with dummy text (Ip, Domain etc)
Delivered-To: my.email@gmail.com
Received: by 10.143.165.5 with SMTP id s5cs223598wfo;
Fri, 15 Apr 2011 08:38:22 -0700 (PDT)
[code]...
View 1 Replies
View Related
Mar 17, 2011
Is there a way to trigger Nagios to "Auto Acknowledge" any host alerts after x amount of times? Sometimes system has been down in the mid of the night but no one really has responded to the notification which might mean bunch of emails flown through in each inbox within the department coming from these alerts.
View 3 Replies
View Related
Jan 6, 2010
I'm new to mail via the CLI, so bear with me. I have this line in my crontab:
Code:
*/5 * * * * fetchmail
Which does check my mail every 5 minutes fine. But I get the command-line output mailed to
[code]...
View 3 Replies
View Related
