I was under the impression the Linux (in my case the Fedora OS) is very secure. However I've learnt with deep concern that that one can have access to the system during system startup i.e one can give various startup directives and bypass the normal login UI to have direct root access.
Is there a way to disble this so that the directives during startup are fixed and cannot be altered. I would like to make the system secure to the maximum extent possible.
I setup a SSH server on my computer on a very high port, so that my brother could surf the web through my computer from Iran, since the majority of websites are filtered there.
Today, he told me he cannot connect to my computer. That's why, I got suspicious that they are doing packet based filtering instead of port. Then I decided to change the port to 433 for https, but one of my friend told me that they just banned https in Iran as well.
I was wondering if there's any way I can manipulate SSH packets between two computers so that my brother's ISP won't figure out he's exchanging SSH packets?
I have a user that has already used up a demo 24hr trial on my website. At present, I only check the customer id and the IP address to search for duplicates. On the whole this works but it's not foolproof. We now have 1 user from China that is changing their IP address everyday to get access to the free trial. Any options on what to do? I thought of downloading a cookie to their computer that the website could pick up - again not foolproff but most people don't disable cookies. Any other options?
I could ban China temporarily until the user gives up but if they find another proxy to chain then their IP address will be different again.
I don't what happened but yesterday I was working normally and then I shutdown the computer, today when I opened ubuntu it took me to tyy1 login screen, I entered my username and password then it took me to the normal login screen with the login drums sound and it wrote on my account (logged in) so I clicked it and I entered my password again and then I got to my ubuntu so what went wrong and how to fix it also I noticed that a new terminal in system tools occurred called Kernel (I didn't add it)
I'm using ubuntu 10.10 on Dell inspiron 1520 with Nvidia 8600GT and 3GB RAM
Important: this happened after update to generic-headers-24
I am having a funky issue at login. When I enter my username/password at login with the GUI (I disabled the list of users some time ago) the screen will flicker then return me to the login screen. There is no notification of an error. It doesn't matter if I try the recovery console or safe mode there is the same issue when I try and login with this user. However, I can login with a different user open a console and su to that user that wouldn't login at the GUI.
Seems that I have been having a problem with the initial user login on Ubuntu 10.10 Netbook. Whenever I try and login the normal way (from standard gui login) my system comes to a standstill and I have to switch to command line (ctrl+alt+F2) and restart/shutdown my computer in that fashion. The only way that I can login and actually see my desktop without any hint of my system freezing up is by booting into the ubuntu recovery Console using the dpkg function to remove any broken packages, select boot normally (where I have to login through the command line), and manually startx.
Originally I was running an x64 version of ubuntu desktop 10.10 but I switched to an x86 version of netbook due to many incompatibilities in software and trouble finding x64 software for my system. When I was on Ubuntu Desktop I had a similar problem where it would freeze at login as well but I fixed it by removing compiz & compiz-core. I tried that with this version of the OS but had no luck because it said that compiz was not installed.
Not a major issue, just somewhat annoying that I have to resort to other means to login
PS: My computer is a Toshiba P500-026. Some stats are listed below in my signature if its relevant to my problem.
i have to reinstall my pc with a testing version. The installation almost is the same as stable version (lenny). But, the problem is that, i can't login it after the installation completed. The new user i created during installation is invalid! So, i have to enter the single user mode, to my surprise, the new user(i created before) doesn't exist! So, i add a user here.But, i still can't login to my system as the normal mode.How should i resolve such a problem?
Is it possible to have multiple passwords on the same account, where one password allows only normal login and another only when accessing the machine remotely (for example, via ssh)?
I am unable to login as normal user. I am sure that my password is correct. What are the possible reasons behind this and also the solutions. My /etc/password and /etc/shadow files are good and my login haven't set to /etc/nologin.
Actually this a question asked to me by a Novell(Suse Enterprise Linux) Regional manager.
I can't get respond through normal channels, all I can use is my phone. My keyboard is disabled. My PC is pretty much a paper weight. Both of them. The only way they could be getting in is through the wifi. I don't know if there is anything I can do. My recovery programsare not accessible. Even onstartup. Is it possible to clear the hard drive another way? I've heard fire purifies, I couldn't get another disc to boot up to reinstall ubuntu. Please text me any ideas, but please be specific with command lines, I have trouble with all the () and / [ and where they go.
Code: Jan 23 20:15:01 localhost CRON[22629]: pam_unix(cron:session): session opened for user root by (uid=0) Jan 23 20:15:01 localhost CRON[22629]: pam_unix(cron:session): session closed for user root
Its been two days over, after my search started . But I didn't find answer any where ?. I need to call chroot as part of normal user, but to my surprise it can only be called by SUper user with CAP_SYS_CHROOT capabilities. I am not sure how to add this capability to my user .
i am looking for a detailed description of the login process for both root and normal user , also locally and remotely.i read some sentences that the files .bashrc and bash_profile are needed for this process. But that was very concise.
I've been installing proftpd on a server running fedora 8. It is setup in standalone server type, and I checked that the process is running and listening to port 21. When I try to login using a ftp client in Normal mode with root user & password , I receive first a 220, then a 530 login incorrect error. Can you help me?
I've been pasting my proftpd.conf configuration file below
Strange thing happend two days ago. I just wanted to reboot my computer and now I'm no longer able to boot o0. My system is runnig with a full encryption with luks/cryptsetup. I'm using a passphrase to unlock my first partition and it will unlock the others by itself. So far so good. But now it doesnt work anymore... I'm not sure what I did before, but what I know, I didn't change anything! about cryptsetup. I did only a little "update" with the recommended packages from the repositories (guess only 4-5 updated)
I already checked with live cd and same thing there. Not able to unlock any device (what seems strange to me, cause there are 4 of them and all corrupted at the same time...?)
I always get the error message: unlock failed, bad password or options? (on boot) Command failed: No key available with this passphrase (live cd)
First thing I did was checking wheter all modules are loaded:
Code: ubuntu@ubuntu:~$ lsmod Module Size Used by sha256_generic 11580 0
I'd like to know if something like this already exists :have an ecryptfs encrypted user account on a laptop that accepts two logins, 1st logs normally, the second triggers a system format
I can't log into my normal user account anymore, though I can log in with root without any problem. When I enter my normal user name and password, the screen blinks, a black page appears and after a couple of seconds I get the login screen again. I deleted /tmp files but no changes. I tried to login using command mode. So I hit Ctrl-Alt-F1 and log into root in command mode, then ran init3, then switched user to my normal user and ran startx. It worked and I logged into my normal account, but I can not do this process every time. So, what is the problem? How can I solve this problem? I used to work with my normal user flawlessly. I installed a bunch of software and also copied some folders to my home directory, but I don't know whether these activities caused the problem or not. I'm using KDE4 under openSUSE 11.2.
Running Ubuntu 10.04 I noticed my hard disc rumbling for longer than normal and louder. Not doing anything demanding to cause hard disk activity like this so I was suspicious so I checked my process list with 'top' command in the console terminal. At the top was mount.ntfs running. Eventually it stopped running after 20 seconds or so. At the time I have not been accessing NTFS filesystems, but I do have them. I have a dual boot Ubuntu 10.04 and Windows 7. In Ubuntu I've mounted the Windows main C drive and on the same hard disk a partitioned drive for sharing files between the OSs. I know mount.ntfs is a standard program but was it being run on my machine, instigated externally here? Was the running of mount.ntfs an attempt from outside to hack into Ubuntu and the mounted Windows areas of my machine via a backdoor connection or vulnerability? I've restarted my machine since then. Are there any logs I can check for malicious attempts to break in?
ubuntu 9.10 login panel is worse with respect to ubuntu 8 since now all the users with names are shown without a way to hide them!Why don't keep the old way at least as an option?
i updated both browsers i have and lost my secure log-in pages (no padlocks showing ) concerning different Web mail accounts.Just before i did these updates i checked an unrelated thing on-line regarding my sound card of which i kept a copy of and got this message below :
!!ALSA/HDA dmesg !!------------------ [ 12.762633] cfg80211: Calling CRDA for country: AM
I'm seeing really bad user login format under a standard installation and am wondering why ubuntu does this as default. I have noticed that the graphical login for gnome sizes itself to accommodate a user's exact password length. This indicates to me that somewhere on the unencrypted part of a standard installation with user encryption contains at least some indication of the content of the password length which seems a security flaw even if not a complete hole, it majorly reduces the number of attempts a cracker would have to cycle through.
And that's assuming that *only* the length is contained. Furthermore it seems that it would be MUCH better to simply display the number of characters entered into the pw field and allowing the gui to expand itself from an fixed size as the field is filled out so the the user still receives visual feedback for entering characters. Either a simple character count display should be entered into the field or a 10 dot to new line so that one can visually quickly count the number enter by multiplying from a 10base graphical observation.
just migrated to Lucid from Jaunty and noticed that the login startup screen looks more like windoze (shows all authorized users).One of the endearing security checks with Unix was that if you had access to a console you had guess both userid AND password - the system wouldn't tell you which was wrong.I feel that we have lowered security by making the list of authorized users visible on a console. Is there any way to turn it off and force users to enter both userid and password?
