Security :: Using The Ubuntu Gateway To Gain Information About A Physical Burglary?
Jun 15, 2010
We've had a site broken into, and several of the desktop computers physically stolen. The Ubuntu 9.10 router/gateway/firewall/web filter box has however NOT been stolen. I'm wondering if there is any information we can get from this that would help the police.
NAT and firewalling are handled by firehol. It runs a DHCP server to provide the desktops with IP addresses. It runs a Samba server with some file shares. It runs Squid and Dansguardian in an intercepting-proxy configuration. Of particular interest might be whether the MAC addresses of the stolen desktops can be obtained, which might help with tracking them down. Also anything to narrow down the time of the break-in.
View 2 Replies
ADVERTISEMENT
Nov 19, 2010
My 2wire only allows HTTP/HTTPS access and this is my home office network.
I was checking my auth.log for a previous question I posted and this popped up:
Code:
View 3 Replies
View Related
Jun 9, 2011
We want to set up a Linux server (hosting Git or later SVN repositories) which should have all stored data strongly encrypted, so that if one steals the server the data cannot be read. For example, our notebooks have all important data stored on a "true-crypted" partition.
We plan to access it with SSH private keys and only after successful login should the data be readable. The server would be located in our office, shut down at night and not be connected to the Internet directly, but only accessible in our intranet.
View 1 Replies
View Related
Jun 10, 2010
By fiat I must distribute my homedirs across multiple physical disks/partitions. Unfortunately this is not open to discussion so obvious solutions like a lvm home partition are not available to me. The issue: Users created with homedirs on the main home partition (the one created as home during the f13 install) behave as expected, but if I create them on a different partition (home9 for the sake of this example) the users are not able to login (dropped back to login screen), nor run x-apps if su -'d to in a konsole.
If I 'su - <user-on-home9>' in a konsole, I get delivered to the /home9/<user-on-home9> as expected, but x-apps fail with the error: 'cannot open display: :0'. This can be temporarily fixed with the command 'xhost +SI:localhost:<user-on-home9>', but I would rather fix it permanently at the source.
This appears to be an selinux problem from the following.The contexts of the the two rootdirs are the same
% ls -Zd /home /home9
drwxr-xr-x. root root system_u:object_r:home_root_t:s0 /home
drwxr-xr-x. root root system_u:object_r:home_root_t:s0 /home9
but when I create the users (using useradd or the gui) their respective contexts differ:
% ls -Zd /home/user5 /home9/user6
[Code]...
So, my questions for you selinux experts are 1) is it possible to have homedirs spread across multiple partitions with selinux, and if so, how, 2) Why, even when I manually set the dir/file contexts to match a properly functioning user5 from /home, do users from /home9 still not work (as far as login and x-apps).
View 8 Replies
View Related
Mar 15, 2011
I have set logwatch to report daily the logs, somehow since last week i get below message. A total of 1 possible successful probes were detected (the following URLs contain strings that match one or more of a listing of strings that indicate a possible exploit):
/cgi-bin/blocked.cgi?clientaddr=192.168.1.108&clientname=&clientident=&clientgroup=limitedaccess&targetclass= untrusted&url=http://adfarm.mediaplex.com/ad/fm/9608-84171-8772-2?
[code]...
View 7 Replies
View Related
Jun 25, 2010
Im using Ubuntu 9.10.When I use Nessus scan to scan my computer I can receive information about how match RAM, how man CPU etc.
View 1 Replies
View Related
Mar 24, 2010
a client asked me to install ettercap on their linux gateway machine - two ethernet machine. I tried it in bridged mode, it but as soon as I start it, the traffic stops and no one can access anything. Did anyone ever succeed in running it on the gateway?
View 1 Replies
View Related
Dec 6, 2010
As a matter of routine, I use dd to collect my hard drive master boot records, and I save the resulting file someplace where I can always get to it if I have to. It has occasionally saved me when some kind of disaster has struck and damaged a partition table or rendered a drive unbootable.Since I have switched to a fully encrypted system, I have been wondering exactly how to save the dmcrypt information. Dmcrypt works with a standard filesystem, and the filesystem itself isn't encrypted, only the contents.Thus dmcrypt must write a header someplace that includes all the information needed to decrypt the contents of the partition, including the key and the type of encryption employed.
Should something happen that causes that header to become corrupted, the entire partition is inaccessible and no recovery tool will work. So, it would seem like a really good idea to use dd to copy that header someplace safe.Now, I haven't taken the time to sit down, read the dmcrypt code, and try to figure out how to do it from that. The command cryptsetup luksDump doesn't do what I want because it dumps that information, but not in a format that would be immediately useful in copying the information back to a damaged partition. And every howto I've found tells me how to set up dmcrypt, and encrypt partitions and so forth. None tell me how to recover this information, other than mentioning that it is stored in the first few sectors of the partition.
Looking at some of this through a hex editor, I *think* that saving the first 512 bytes of the partition gives me what I want, but I'm not positive of that and I hesitate to depend on any putative backup scheme of this sort that I haven't vetted. I want to save no more than I need, and I certainly don't want to save any less than what I need.Edit: As I think about it, the first 512 bytes can't be enough because Luks/dmcrypt permits multiple keys. So how much information do I need to save?
View 5 Replies
View Related
Jan 13, 2010
Why can't Ubuntu store configuration information in a way that it wouldn't need to be clobbered in order to apply security updates? For example, this mornings updates told me I had to choose between using a new version of smb.conf that's part of the security patches, stick with the old version, or let the update installer merge them. Of course, the first two choices have obvious drawbacks: why should I have to choose between losing all my SMB settings or refusing security fixes? So I chose the merge, which came back with "Conflicts found during three-way merge! edit `/etc/samba/smb.conf' and sort them out manually."
View 5 Replies
View Related
May 28, 2011
I searched Using my User Name and did not find the post post made for this problem.Still the search using the User name does not return the first post or this.
View 4 Replies
View Related
Nov 19, 2010
I've been looking for a tweak that would allow me to store temp and log files in ram. I've found a few that involved editing the fstab file, but they were either Ubuntu articles or they were over a year old and perhaps didn't apply to Fedora 14.I hear there is also a 'noatime' command that can help speed up processes by telling the kernel not to saved when files are accessed.And what are the advantages and disadvantages of noatime, and writing log/tmp files to ram?
View 7 Replies
View Related
Apr 12, 2011
This may be a stupid (?) question, but does any one know of a patch for sudo that allows the sudoers information to be pulled from mySQL?
I run multiple servers with multiple people working on them and would like a one-stop update of permissions.
Yes, I could use rsync or the like, but I'm just wondering if this has been done, or could be done.
(Sorry if this is the wrong forum, I'm kinda new around here, posting wise and this seemed to fit. Feel free to move it if it's not)
View 3 Replies
View Related
Mar 18, 2010
I wanted to set up Computer Lab. loading Fedora 11 OS and one system acting as a Server to store Users(Student) Login Informations. When students do a programs, all programs (eg, C++ programs) files should be saved in the local fedora system but when login to the system, the login should be validate by a Server System.
View 5 Replies
View Related
Sep 3, 2009
I'm trying to write a program which would get information from a webpage and display the information on my desktop sort of like a widget. I kind of remember there being something like this already made, but for the life of me I can't remember what it's calledDoes anyone know?
View 1 Replies
View Related
Aug 29, 2010
I recently installed Ubuntu 10.04 32bit on my laptop. I am trying to learn the command line and also install software via the command line. I type in su and hit enter it asks me for my password and I type that in. The password fails, why is this? I am the one who set this up and installed the OS. Now I am logged in using my normal user account when doing this from the GUI
View 8 Replies
View Related
Feb 3, 2011
I am trying to email a .pdf file that I created on a mac system, and I am being told after attaching the .pdf to the email that: Quote: Unable to save your message as draft. There was an error attaching . Please check if you have access to the file I found an evince tutorial on line to try and resolve this on my own, however I am still getting the same error. This is the link: [URL]
View 1 Replies
View Related
Mar 23, 2011
How can I do the printing job over the network .I have only one printer on my firm
Its not network printer here whole system are in LAN how can i gain the printing job
View 1 Replies
View Related
Apr 7, 2011
I've recently created a new user's account in Ubuntu because of some difficulties I was having with network communications. Apparently this has affected my ability to get into a terminal because now, when I submit my user name I get the following:
[OPTIONS] [PASSWORD-FILES]
--single "single crack" mode
--wordlist=FILE --stdin wordlist mode, read words from FILE or stdin
--rules enable word mangling rules for wordlist mode
--incremental[=MODE] "incremental" mode [using section MODE]
--external=MODE external mode or word filter
--stdout[=LENGTH] just output candidate passwords [cut at LENGTH]
--restore[=NAME] restore an interrupted session [called NAME]
--session=NAME give a new session the NAME
--status[=NAME] print status of a session [called NAME]
--make-charset=FILE make a charset, FILE will be overwritten
--show show cracked passwords
--test perform a benchmark
--users=[-]LOGIN|UID[,..] [do not] load this (these) user(s) only
--groups=[-]GID[,..] load users [not] of this (these) group(s) only
--shells=[-]SHELL[,..] load users with[out] this (these) shell(s) only
--salts=[-]COUNT load salts with[out] at least COUNT passwords only
--format=NAME force hash type NAME: DES/BSDI/MD5/BF/AFS/LM/NT/mscash/NETLM/NETNTLM/bfegg/DOMINOSEC/lotus5/raw-MD5/raw-sha1/IPB2/nsldap/openssha/HDAA
--save-memory=LEVEL enable memory saving, at LEVEL 1..3
I've always been able to just install my name and password and things worked smoothly. What is this about and what do I need to do to restore my ability to use a terminal?
View 2 Replies
View Related
May 11, 2010
I'm the only user, can login (meaning I know my pass). But cannot Sudo. I'm on Ububtu Studio, the latest release. Doesn't make any sense.
View 2 Replies
View Related
Dec 10, 2010
i had a problem in software sources so i changed the server to main server now i can't find the server of egypt in the list of servers
View 1 Replies
View Related
Dec 18, 2010
I'm working with a laptop that will not boot into windows (the sole partitionI'm working on a laptop that recognises that a windows partition is present in ubuntu live CD but will not mount it so that I can gain access to the system to recover files. I get this error:
Code:
Failed to mount: '/dev/sda2': input/output error
What I want to know is how to force mount the partition so that I can gain access or any other method that will allow me to recover those files
View 4 Replies
View Related
Jul 20, 2009
After installing Fedora 6 (and probably any later version) I find that access to the add/remove section is denied unless I have an Internet connection which I don't have. I just do not see any reason why this is done this way! One can't even gain access with the DVD Is there a way to circumvent this nuisance from the terminal Does anyone know why this is put into the installation in the first place.?
View 2 Replies
View Related
Feb 2, 2010
I am semi new to linux and i was getting the hang of it until just recently. I'm trying to do some web design using php and mysql. In my reference material (the all in one desktop reference {for dummies}). At some point I needed to do something in /var/www but I ran into a permissions problem so I typed:
Code:
chgrp -v -r guy0203 /var/www
405 chgrp -v -R guy0203 /var/www
406 chown -v -R guy0203 /var/www
Afterwards in some subsequent step it suggested putting the files in /usr/src/mysql. Since I didn't have that folder I used mkdir and created it. Then I tried adding the files I needed to that folder and got denied on the grounds of not having permissions once again. So tried something like this:
Code:
451 chmod 777 /usr/
452 sudochmod 777 /usr/
453 sudo chmod 777 /usr/
It was a 755 originally but I couldn't copy those commands. It turns out as that I had two terminals open in different desktops. one of them was a root terminal. It was at this point that realized that I was in that root terminal and decided I was done 'learning' for the day. I decided to listen to some music (which is located in my windows partion) and ran into a problem. The prompt that pops up to normally asks me for my admin PW to mount the drive. Now just vibrates like an incorrect entry was received, says authentication error and says I am not authorized to mount that drive then I went back to terminal to fix it, and when I tried to elevate myself to SU:
I got this:
Code:
guy0203@guy0203-laptop:~$ sudo su
sudo: must be setuid root
guy0203@guy0203-laptop:~$
I don't know what to do now but I think I totally killed this OS. If so is there anyway to save things if I have to reinstall?
View 9 Replies
View Related
Feb 9, 2010
I have installed transcriber from the ubuntu repositories the version is listed as 1.5.1.1-3
I am trying to use this program on Ubuntu 9.10 (64bit), and when attempting to play the audio file (standard mp3 format) I get the error message:
Quote:
could not gain access to /dev/sound/dsp for writing
Everything else I have tried for sound works fine and The mp3 file I'm transcribing plays fine in any other application eg movie player and rhythm box etc.
the full error message is:
Code:
Could not gain access to /dev/sound/dsp for writing.
Could not gain access to /dev/sound/dsp for writing.
while executing
[Code]....
View 6 Replies
View Related
Mar 9, 2010
I am running Ubuntu 8.04, and I am able to access my machine via SSH, but I only want the log in screen visible on the machine itself, yet still able to work with the SSH. But to do this, I have to log in, get the IP address, log off, then log in via SSH. How do I make the machine receive an IP address during the boot-up!
View 7 Replies
View Related
Apr 12, 2011
I'm trying to install hwdn2 gain wireless on ubuntu 10.10 but no luck y follow some post here but nothin.
View 2 Replies
View Related
May 8, 2011
Does anyone here has any experience with the proprietary compilers? OpenWatcom, Intel and Pathscale? Does the performance gain is noticeable regarding the gcc...?In number crunching applications, i may say that ifort/ icc/ mkl yeld faster binaries than gcc.has anyone here already tinkered with OpenWatcom/PathScale...?
View 4 Replies
View Related
Jul 30, 2011
How would you make NIS user information override local user information on client systems? This is what I think is right? Add nis on the passwd registration file on the second line Is this correct?
View 1 Replies
View Related
Nov 30, 2010
Right now by default iam logged in with my account and i want to access some files/folders in my machine, but iam unable to access(also no copy/paste) those because iam not logged in as root user. So is there a way to gain root access over those files/folders in Ubuntu. I know i can do su in command prompt and change the permissions but what is the other way to gain root access.
View 3 Replies
View Related
Feb 4, 2010
I have this new Hawking adapter, and have googled some, and have found no one who has had sucess, but then again I only saw two threads. So, what I was wondering was, does anyone know if these are compatible with ubuntu in any way, shape, or form, and how I would install them, I have Ndiswrapper, but am just learning Ubuntu's OS and don't know how to work the commands.
View 9 Replies
View Related