What software can be used on a GNU/Linux box to assess security vulnerabilities? And not just network related. I mean:
- Unnecessary binaries with SUID/SGID flags set up.
- Users with passwords easily crackable
- Test known vulnerabilities of installed software
and a long etc etc.
I i've virtual machine that is running BackTrack4r2. I need to use the built-in tool Metaspolit in bt for assessing the security and vulnerability in websites The prob is that i dont have any about the Metaspolit tool.
View 10 Replies View RelatedGoogle just announced the release of Jarlsberg, a microblogging app specifically designed to be full of bugs and security flaws.The app is being released through Google Labs and Google Code University as a security tutorial for coders. Google is encouraging programmers to try their hands at exploiting weaknesses in Jarlsberg as a way of teaching them how to avoid similar vulnerabilities in their own code.
View 1 Replies View Related1. May new vulnerabilities in Adobe flash became a thread for linux users? [URL]
2. By the way I would like to know if computer with linux can became a member or botnet somehow?
on the bios of my dell inspiron i have the option among others to set a password on my hdd. so my questions are: which exacly is the point of this? does it encrypt my hdd in any way? if someone has physical access on my computer and takes out the hdd,could he gain access? im a regular home user but im very curius to know
View 9 Replies View RelatedMy VPS host a mail, blog and web site. So i want to block port i not use. The port that i use is 80,21,2022,443. The other port will be drop. I want to block bad packet and all packet that not related. Can anyone how to write in iptables?
View 2 Replies View RelatedI am setting up a virtual server. Ubuntu 11.04, "minimal provider image".UFW was disabled by default. I set it to default deny. Allowed HTTP, SSH and other standard stuff, and enabled it. All seems to be OK. Adding one rule to block some annoying security scanners causes ping not to work. I'm not an Iptables expert, but it looks OK to me. I got it from some website, rather than invented it myself, but modified to to fit the ufw config file syntax. What in that rule prevents pings?!? It seems completely unrelated.
View 1 Replies View Relatedhow efficient and effective are these snort, argus, ossec etc etc for an organization having 3500 PC Network, connected through 700+ Cisco Devices (Layer 2 and Layer 3), and scattered on 130 different sites (geographically)? what should be the combination of products and what should be the architecture for an efficient forensics activity?
View 2 Replies View RelatedTo avoid having to input a password for the keyring each time I connect to the net via wireless, I enabled the 'Available to all users' option in Network Manager. Now, my question is this. Are the 'users' it refers to just those created on this machine? Would a drive-by be able to use my network without entering the password?
View 3 Replies View RelatedAs it stands I have a small home network operating behind my modem/router. Some of the ports on this are forwarded to my PS3 for gaming but I was looking at forward some for my file server.
At the moment I've forwarded port xxx22 to port 22 on my server for SSH for instance. ANd similarly 21 for FTP (although it doesnt seem to want to connect for any more than a few seconds using that). What I was thinking of doing was placing a small website for a handful of ppl to use on the server too and port forward again - xxx80 to 80. It works just fine but I'm a little concerned on the security front.
As I've moved the port to something different from the outside world I'm presuming I will have already cut the potential for malicious folks to wander in but is there anything else I should be doing? At the moment there's no firewall operating on the server, usually as its hidden behind the modem/router. But if I open this thign up more permanently what should I be doing? I've read a few articles on it but I'm always left with the overwhelming thought of "Thats if theres no firewall in my router" as they just seem to do the same.
The default Firewall ufw is not enabled by default at the time of installation and it has to be enabled by the user.Isn't this a security risk or is the user whether ufw is enabled or not secured from external threats?I am not much knowledgeable about network security But I am trying to understand the Ubuntu mentality behind this default setting.
View 4 Replies View RelatedInstalled a security update for samba tonight via Opensuse updater.Now, when trying to access my home network an authentication box pops up (never used to)Asks me to enter authentication for my home network.I enter my username and password and hit enter. After a few seconds the authentication box pops up again askingfor the same indicating I have entered the wrong username / password combination (which I know I have not).
View 9 Replies View RelatedI want some advice for making my system more secure. I want deactivate any network connection that is unnecessary. Only my browser and the update ability of zypper should have access to the internet. On windows there are personal firewalls.
How can I block internetaccess for all other programmes on openSUSE?
I have a laptop connected to the the net thru an adsl modem, when I switch off the laptop network interface,(thru system-config-network) the light of the laptop network card plugged in the router stays on ( green) where as in my pc, when i do the same thing , the light of my pc network card goes off in the modem
View 5 Replies View RelatedThe network manager will ask me for my security key and it will not accept it. Instead when I use the show password feature to see what I typed in was correct, it shows something completely different than what I typed. For instance if my Key was :when it pops up and ask to for me to retype it again it shows something completely different in hex. Is there anyway I can use a different network manager?
View 8 Replies View RelatedWe are trying to define an appliance based on Suse for an application server and Web server Apache, so we would like to know configuration best practices for network and security, is there any paper/doc about best practices?
View 3 Replies View RelatedI am trying to compile splasutis in my debian wheezy. ./configure run well, but during make I get the following error
make --silent all-recursive
Making all in libs
CONF libjpeg.a
[code]....
I'm trying to sed out X and Y coordinates from a identify command. I get back from the identify:
Quote:
1015x638+0+0
I need:
Quote:
1015x638
[Code]...
Having some trouble with a new install of Ubuntu 11.04. I use it for work, so I do tend to run quite a few programs at a time. Namely Pidgin, Firefox, Thunderbird, Chrome, Osmo, LibreOffice Calc, Calculator and Text Editor. Sometimes I'll listen to music using VLC. Sometimes (and I can't figure out when), I will be suddenly logged out without warning. Just BAM, black screen then back to the login screen. I've lost work from this happening.
My only clue is that it hasn't happened when I was not running VLC, but then again it doesn't happen consistently while running VLC. Also, it happened today when I wasn't running VLC but was using Calibre (along with my usual programs). Maybe I'm doing too much at one time? Maybe it's the RAM? How do I view an error log about what happened?
I've seen packets coming to my computer through a DD-WRTv24s2 gateway above port 32K several times. I have iptables (using fwbuilder locally) both places. My desktop stops the packets. But I'm guessing the problem is as I described in the title for this post. Yes?If you ESTABLISH a connection to some webpage, and you just accept ESTABLISHED or RELATED datagrams in rule 1 of your iptables, what will keep incoming TCP from that (presumably nefarious) site from going straight to your desktop like the building firewall isn't there?? If the site wants to connect to you above 32k, or portscan you, its RELATED correct? They know your IP. You've ESTABLISHED a connection.If my guess is correct, it would seem wiser to NEVER use these together. Better to ACCEPT all ESTABLISHED. And if something is RELATED, then ACCEPT it only if its the data connection on FTP or individually by service or protocol.
View 6 Replies View RelatedTrying to debug a network issue - we have problems with scp transfers to a remote host intermittently stalling. I believe it may have something to do with incorrect handling of sack / dsack TCP options. Looking at netstat -s, during a (successful) scp transfer the TCPSACKDiscard and TCPDSACKIgnoredNoUndo counters increase rapidly. This is on the client initiating the transfer to the remote server. This doesn't seem normal, but I'm having difficulty finding an explanation of what exactly these counters signify. The tcp_sack / tcp_dsack / tcp_fack options are enabled in the kernel on both hosts.
How do I debug this further? Are the counters a symptom of a known problem? It's kind of hard to google this, all I get is unrelated netstat output which happens to include 1 or 2 discarded SACKs, not tens of thousands like I am seeing. I can make tcpdumps on the client (unfortunately not the server), but what should I look for?
I want some users should be barred from login into some of NIS clients. Please help me to accomplish this. I googled it but still not very clear to me. Can you please tell me how it works. The OS is RHEL 5.
View 3 Replies View RelatedI am using KMS with a radeon 3650, KMS with kernel 2.6.33.2, xf86-video-ati 6.13.0 and mesa 7.7I am using fluxbox, and only have one transparent terminal running. I have not been playing any games(so no 3d acceleration?).My computer is getting far too hot from this. Not overheating to the point it shuts down, but the fan is going full bore, and mplayer stutters when playing a movie.This never happened when I was not using KMS, so it seems likely that that is the cause. It is definitely related to graphics, because when I exit X the temperature cools rapidly.Is this just because KMS is new and still being worked out, or is it something that can possibly be fixed?
View 4 Replies View Relatedhow, and if, I enable 3Dnow, and other CPU related features?
I'm not having any problems or anything to that effect. I am only curious. Is this something that's automatically done? Is this something I must do during compile and install of applications?
haunted@haunted-desktop:~$ sudo grep flags /proc/cpuinfo
flags: fpu vme de pse tsc msr pae mce cx8 sep mtrr pge mca cmov pat pse36 mmx fxsr syscall mmxext 3dnowext 3dnow
If this is something I must enable manually per application, then for example, if I wanted it enabled for FlightGear, how would I go about doing that?
I just blindly install 'java' in GNU/Linux Debian SID -- so I could use it as a plugin for iceweasel -- Unfortunately, things didn't work as expected. I was used to Debian's APT to take care of things for me as it had done for more years than I could remember. (Being a desktop user/programmer and a beginner system network admin). I want a clean install of java plugin for iceweasel. So I want to remove completely all java related packages --
How do I know which is which and if they are safe to remove without affecting any other part of the system? Now, to install -- what do I need to install in order for iceweasel to have the Java plugin and let java work as it should? I prefer from the Debian package. But if it doesn't work, I'll accept JRE from the java site and install them myself.
In the processing of reinstalling VirtualBox, I found this:2.6.35.6-48.fc14.i686.PAE/source -> /usr/src/kernels/2.6.35.6-48.fc14.i686.PAE/ ,but this folder don't exist.。 I try to relink the ln as source -> /usr/src/kernels/2.6.35.9-64.fc14.i686.PAE , but VirtualBox still get problem with the kernel. Since VirB works fine with other 2 kernels, the solution for this is not quite needed, but I just wonder why this happens. See below. I don't know why these two folder contain different version of kernels. Anybody get an idea?
2.6.35.6-48.fc14.i686.PAE]$ ll /usr/src/kernels/; ll /lib/modules/; ll /lib/modules/2.6.35.6-48.fc14.i686.PAE/ |grep build
total 16
drwxr-xr-x. 22 root root 4096 Nov 19 14:58 2.6.35.6-45.fc14.i686
drwxr-xr-x. 22 root root 4096 Nov 15 00:04 2.6.35.6-48.fc14.i686
drwxr-xr-x. 22 root root 4096 Dec 8 17:08 2.6.35.9-64.fc14.i686
drwxr-xr-x. 22 root root 4096 Dec 8 15:19 2.6.35.9-64.fc14.i686.PAE
[Code]...
11.3 installation appears to be completely unusable for mission critical workit's running/freezing on a Toshiba a300 laptop, intel 965gm gfx, using the drivers that where installed by 11.3whenever the unstoppable screen/monitor saver kicks in, it freezes the machine irrecoverably.same as: 11.3 kde constant lock upsthe unstoppable screen/monitor saver has been a pain in the neck in 11.2 too, is it possible to COMPLETELY REMOVE any code that will make the gfx go on standby? what a pain when you are watching a movie! disabling everything obvious never worked! wtf?
View 5 Replies View RelatedI know 10.3 is old, but my main reason for using Linux is that I can build a machine and then just use it for 3-5 years without dealing with stupid degradation issues like Winblows.
The problem is that I can't access any 10.3 online respositories anymore, so package management is a big mess. Basically I'm down to manual rpm-ing. If I try to install anything with Yast, it attempts to access 10 different repositories for dependencies, all of which fail because I guess they just don't have 10.3 directories anymore.
I really hate updating my Linux all the time to the newest version, because frankly that usually breaks things.
Not sure what do to. This conundrum often makes me consider if any distributions are better in this regard. But then I don't have a lot of time to play with Linux. What started out as a hobby in 1994 is now a tool, like any OS, that I just want to work. I don't use Linux to use Linux, I use it to run programs.
I am trying to add subdomains on ubuntu 9.10 desktop edition and and I am not sure whether I need to add some info.(such as 127.0.0.1 sub1.example.com and so on) to the /etc/hosts file like the windows' windows/system32/drivers/etc/hosts file. I used to use the wamp-server(on Windows 7), I needed to edit 3 files, httpd.conf, httpd-vhosts.conf and hosts. And almost every edit is made in the httpd-vhosts.conf file on wamp-serveriles should be edited? or what else should be done that I didn't mention?
View 1 Replies View RelatedI installed Mono 2.4 and I am struggling myself to remove all folders related to mono.. I didn't install from Synaptic so it's not just 'apt-get autoremove mono', I used the tarball.. how to remove all files from the installation?
View 3 Replies View Related