Security :: UFW Does Not Seem To Affect Anything On Ubuntu 9.10
Nov 23, 2009
I'm trying to set up a firewall using ufw. I had planned on denying all network traffic and allowing as it became a problem. I expected to need port 80 8(http) 88(https) and 1863(MSN).
I tried:
Code:
Me@Ubuntu:~$ sudo ufw enable
Firewall is active and enabled on system start up
Me@Ubuntu:~$ sudo ufw default deny
Default incoming policy changed to 'deny'
(be sure to update your rules accordingly)
Me@Ubuntu:~$ sudo ufw status
Status: active
If I have understood I should not be able to connect to the Internet now but I still can (I am posting this with these settings). I have tried rebooting and this did not help although the status was persistent. I am currently using version 9.10 of Ubuntu upgraded from 9.04 (itself from 8.10 which was a clean install). I am using a wireless network called wmaster0 with driver rt61pci if that helps. How to configure firewall?
View 5 Replies
ADVERTISEMENT
Oct 19, 2010
I have two Ubuntu installations: a full one and a light/custom. The full one has every default package installed using the Live CD and some extra packages I've been adding as I need them, the custom one is created using debootstrap and then I add some packages: xserver, fluxbox, alsa... among others.
But I have one problem: plymouth shows a low-res splash screen for the custom installation, while it works great with the full one. Both running on the same motherboard and with the same monitor. Besides, I need to set the FRAMEBUFFER=y option in the custom installation to make plymouth show the splash screen at boot.
I've tried setting GRUB_GFXMODE, GRUB_GFXPAYLOAD and GRUB_GFXPAYLOAD_LINUX for GRUB without any change, I'd like to know what other programs/drivers/configurations may affect Plymouth resolution so that I could find what is preventing my custom installation from showing a nice plymouth splash screen.
View 4 Replies
View Related
Dec 6, 2010
I am compiling some software (JWM) and it says that I must install the "development headers" for X11 and Xlib.My main question is, how will installing those packages affect my system.My less main question is how do I install them?
View 1 Replies
View Related
Nov 11, 2010
I have grub installed which boots both my ubuntu and windows which are in seperate partition. I'm about to format my windows, will it affect anything? Like though my ubuntu will not be formated nor the bootloder but shouldn't the windows bootloader overwrite somethign and make it default? Thus making ubuntu impossible to boot?
View 4 Replies
View Related
Mar 24, 2011
I did a d-u today, all went well. Then tried to install dkms, and apt came back with a list of programs it says were automatically installed by no longer required, including several libqt4 packages. I'd like to know what programs would be affected by removing each one.
View 9 Replies
View Related
Oct 11, 2010
I'm thinking about making a web server but, I have an issue:will opening Port 80 affect all computers on a network?
View 1 Replies
View Related
Jan 13, 2010
Whilst sound works for MBP5,1 / 5,2 under Karmic, it could definitely be better - mainly the master volume does not affect the headphone output, and the speakers don't automute when headphones are plugged in. However, I've finally got around to writing a patch for alsa which fixes this - the patch is against the latest version of alsa-drivers (1.0.22.1). If you want to test it (since so far I've only tested it on my MBP5,1 - any feedback from MacBook 5,1 / MB(P) 5,2 owners would be great too) follow these instructions: First make sure you don't have any versions of linux-backports-modules-alsa installed:
[Code]....
View 7 Replies
View Related
Mar 26, 2010
I'm moving over to Linux when the new SSD arrives. SSD gives increased performance, so I thought that I could encrypt everything.
But then I came to think about TRIM, and garbage collection on the drive. Will a LUKS encrypted drive affect the garbage collection system? (TRIM).
View 3 Replies
View Related
May 25, 2011
I added a directory to the $PATH variable in /etc/profile. This works for my user account but not for root. It's easy to add it to my /root/.bashrc but I would like to understand whats's wrong. It's a widely unmodified Debian 6 so I think my changes should do the trick.
Here is what my /etc/profile looks like:
# /etc/profile: system-wide .profile file for the Bourne shell (sh(1))
# and Bourne compatible shells (bash(1), ksh(1), ash(1), ...).
if [ "`id -u`" -eq 0 ]; then
[code]....
Edit: The path I added is the distcc-stuff. Here is what echo $PATH tells me:
$ echo $PATH
/usr/lib/distcc/bin:/usr/local/bin:/usr/bin:/bin:/usr/local/games:/usr/games
# echo $PATH
/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin
View 1 Replies
View Related
Apr 19, 2011
I have cpanel running and working with mysql. I need to add ODBC so I can get server side action script to connect to mysql also. Will adding ODBC affect anything else? I don't want to affect the way anything else connects?
View 1 Replies
View Related
Jul 29, 2010
Just want to know if I'm going to reconfigure the tcp_fin_timeout is there any effect to the other applications? or will affect some applications? for example changing 60secs to 30secs, 30secs to 15secs.
View 1 Replies
View Related
Jul 30, 2011
I tried a little C programming, and got a bunch of segmentation fault the first few tries. But from what I understand, the whole purpose of segmentation faults is the protect other programs from the damaging effects of my program. Yet, if I trigger a segfault enough times, weird things happen to my other running programs. I usually run a console inside Kate, and after 10 or so segfaults, Kate sometimes freezes or randomly highlights text, etc. just random behavior. Also, my desktop will occasionally hang and things will start failing, like copying files and such. I have to log out to restore everything to normal, but logging out is difficult since the logout prompt freezes. I have never experienced such behavior before I began programming, my system has been relatively stable. I run my program from inside Kate's console, so I was wondering if all KDE applications share memory or something, because this has happened once or twice, and only when I trigger a segfault many times.
View 4 Replies
View Related
Jan 12, 2011
I have my adapter set up properly with my laptop, but the touchpad is flipping out.
Cursor jumps randomly and clicks even when I haven't clicked.
My USB mouse is not affected.
View 2 Replies
View Related
Jan 20, 2011
I have a dual boot system on a 500GB HDD. Here is a printscreen of the partition table for the disk. It's a fairly standard set-up but the root partition is almost full (I know it's fairly unheard of but I have a lot of software provided by uni that takes up a lot of space). I would like to shrink my /home partition and increase the root one. I've downloaded gparted and got it onto a live CD. The only thing I really want to know before I go ahead is how will the editing of the partitions affect booting.
From what I can tell from reading is that the MBR has only got listed the place on the HDD where the bootable partitions start. These starting placed will not be affected by the alteration, so will the system quite happily boot in the same manner? One booted I'm assuming as the /home partition will have moved I'll need to alter fstab to mount /home again. Will having /home missing caused any adverse affects on the first boot into linux?
View 3 Replies
View Related
Apr 4, 2011
If I try to change the icon style, it changes the icons in my desktop and in Nautilus, but it doesn't change the icons in the panels nor the ones in the menus.
Some screencaps:
[URL]
View 2 Replies
View Related
Aug 5, 2011
Will deleting dev/sda partition table ( msdos ) affect my windows 7 system? I am trying to install Fedora 15 on Virtual Box.
View 1 Replies
View Related
Nov 27, 2010
A while back I installed Dreamlinux 3.5 Gnome edition using ext2. When I attempted to use the email address books I imported from the Dreamlinux3.5 XFCE edition, which had been ext3, I discovered that none of the email addresses could be mailed to. I had to manually type in the addresses.
When I reinstalled Dreamlinux 3.5 Gnome using ext3, the same backup files that did not work in ext2 now work just fine. The question is, was this a "broken data" problem caused by the switch to ext2 file system or something else? Has anyone else experienced this?
The mail program is Thunderbird.
View 2 Replies
View Related
Jan 27, 2011
I need to change the some configuration in httpd.conf file with out affect any current status of http service.
View 3 Replies
View Related
Jun 14, 2011
Kernel 2.6.21.5, Slackware 12.0
KDE 3.5.7
(Mozilla) Firefox 2.0.0.4
Do color settings in the desktop environment affect color in the web browser? Thanks.
View 2 Replies
View Related
Jan 19, 2010
ubuntu 9.10 login panel is worse with respect to ubuntu 8 since now all the users with names are shown without a way to hide them!Why don't keep the old way at least as an option?
View 5 Replies
View Related
Oct 15, 2010
To avoid having to input a password for the keyring each time I connect to the net via wireless, I enabled the 'Available to all users' option in Network Manager. Now, my question is this. Are the 'users' it refers to just those created on this machine? Would a drive-by be able to use my network without entering the password?
View 3 Replies
View Related
Jan 17, 2011
1. I understand you can protect your files or directories in your website by setting file/directory permissions. The meaning of r w x is clear to me, but I'm not sure how to proceed... Starting with the index.html file, if I wanted to make it so that anyone in the world can read it but can't modify it, do I set its permissions to rwxr-xr-x? If I set it to rwxr--r--, would that mean the file couldn't be served? I mean, what does the x setting do on a .html file, how can a .html file be executable?
2. If file permissions work on the lines of owner-group-others, in the context of a website, who is 'group'? As far as I can tell, there's only the owner, which is me, and others, which is the world accessing the site. Am I correct in thinking that by default, say when creating a website on a shared hosting server, there is no group unless I specifically set one up?
3. My ISP allows the DynDNS.org service, meaning that I could serve a website from my home. It's too early to go that route just yet, but for future reference, I would like to ask about the server software called Hiawatha. It is said to be secure, but having read some evaluations of it, it doesn't seem to offer anything that couldn't be accomplished with Apache or Cherokee, it's just that its security settings are simpler and easier to configure. Am I right about this? Or does Hiawatha truly offer something that the other major server packages don't?
View 9 Replies
View Related
Mar 3, 2011
i updated both browsers i have and lost my secure log-in pages (no padlocks showing ) concerning different Web mail accounts.Just before i did these updates i checked an unrelated thing on-line regarding my sound card of which i kept a copy of and got this message below :
!!ALSA/HDA dmesg
!!------------------
[ 12.762633] cfg80211: Calling CRDA for country: AM
[code]....
View 2 Replies
View Related
Mar 29, 2010
Conky can be used to display a variety of information on the users desktop. I wanted to use Conky instead to display the current status of security as reported by:
SANS Internet Storm Center
IBM Internet Security Systems
Symantec Threatcon
McAfee Threat Center
I therefore created 4 small scripts which download the current status from these sites, and set the colour of those status's depending on the current value.The conky configuration allows for a semi-transparent background - though this is optional.Attached is an example image showing the 4 different colours.Also attached is an archive with the 4.sh files, .conkyrc and draw_bg.lua (from here http:[url].....
View 2 Replies
View Related
May 29, 2010
I just installed Ubuntu on a desktop. Can anyone give me some guidance on installing basic security software? In particular, I'm looking for a firewall, antivirus, and anti-spyware/malware utilities.
View 2 Replies
View Related
Aug 3, 2010
I already posted a topic similar to this concerning the Desktop OS version, but this deals with the Netbook because unlike the Desktop, the Netbook is less cooperative. Allow me to elaborate: Today (or rather yesterday since it's not after midnight where I am), I changed my password because I was hopelessly confounded about how to get my Wireless Network card up and running after it had been installed and I was allowing my dad to use it. This issue has since been resolved, however...
When I chose my password during the original installation, there was no mention of it being "too simple." This is where the Desktop OS and the Netbook OS differ. The desktop will let me change it in the terminal without any errors. The Netbook will not. When I've attempted to revert it back to the original, it will not let me do so in the User Profile or in the Terminal. The Passwords and Encryption Keys application also does not appear to help.
So now even after I've changed it to a different "complicated" password I am still prompted to insert two different passwords since I changed my user password but I am unable to change the password I input during the installation. A bit screwy methinks. This is extremely important. I'd like to know how to change the original installation password.
If I can't change the main password on my laptop then this is a serious potential security breach just waiting to happen (especially since it's on a laptop and I will be hauling it around with me) and I will most likely install a different OS if this isn't resolved --- It would be very unfortunate since I spent the whole day fixing it and I really enjoy the interface. Luckily I can live with this on my Desktop since I'm not going to be hauling it around with me everywhere when the school year starts.
View 9 Replies
View Related
Nov 11, 2010
As it stands I have a small home network operating behind my modem/router. Some of the ports on this are forwarded to my PS3 for gaming but I was looking at forward some for my file server.
At the moment I've forwarded port xxx22 to port 22 on my server for SSH for instance. ANd similarly 21 for FTP (although it doesnt seem to want to connect for any more than a few seconds using that). What I was thinking of doing was placing a small website for a handful of ppl to use on the server too and port forward again - xxx80 to 80. It works just fine but I'm a little concerned on the security front.
As I've moved the port to something different from the outside world I'm presuming I will have already cut the potential for malicious folks to wander in but is there anything else I should be doing? At the moment there's no firewall operating on the server, usually as its hidden behind the modem/router. But if I open this thign up more permanently what should I be doing? I've read a few articles on it but I'm always left with the overwhelming thought of "Thats if theres no firewall in my router" as they just seem to do the same.
View 5 Replies
View Related
Feb 28, 2011
When posting results from ifconfig, it shows the hardware address of etho, etc. Would you consider that to be a security risk ?
View 9 Replies
View Related
May 8, 2011
I'm concerned about security of having a LAMP server on my laptop as having any server makes the system less secure. However, if I were to create a new partition and install a lamp server on that and only use it when offline, would the security of my main partition be affected at all?
View 3 Replies
View Related
Jun 7, 2011
The default Firewall ufw is not enabled by default at the time of installation and it has to be enabled by the user.Isn't this a security risk or is the user whether ufw is enabled or not secured from external threats?I am not much knowledgeable about network security But I am trying to understand the Ubuntu mentality behind this default setting.
View 4 Replies
View Related
