Slackware :: Screwed Up After Hardening Down System?
May 31, 2011
So I was following the majority of this guideand sometime last night my computer went awry. First all my icons went blank, and I was unable to open anything. I had to reboot, and upon trying to log back in as a user I got an error /bin/bash: Command not found. I tried removing the user completely and starting from scratch but I am unable to remove the /home/user/.bash_history file. I even tried with root. I'm at a complete loss, confused. I know I did have to chomd 644 the entire /etc directory because I was getting some permission errors there.
When I google this I get a million results, most of which are either too in-depth to be practical or advertisements for one solution or another. Is there a general guideline for hardening a linux (kubuntu) system? A set of steps say, to close all ports and disable all listening services like you would do to a windows machine? I can hardly believe that there are NO vulnerable points of attack on a default kubuntu 10.10 install. I don't know very much right now so I'm looking for something to fill in the gaps and translate my knowledge of windows (in)security into a holistic view of how the penguin operates.
I just ponder can anybody shed some light to me how to manually disable service such as FTP,SSH,etc in which Bastille is doing.If all the services can be manually disable,which mean Bastille is just a tool to help newbies like me to use it.
I have a VPS (Ubuntu 8.04 server eition) and as such am stuck with using a software firewall.
i currently have UFW installed.
I would ideally like to have my firewall be a little rude, or rather just not polite. I know what i am asking will break the RFC, but i consider this ok due to the security benefits.
I would like to have my firewall 1) ignore (eg drop without responding)all packets that dont start with a syn flag 2)for all other traffic that is currently blocked, have it dropped (again drop it without responding)
If there are any other rules you can think of i would like to know them. I already have only the services i want open and the rest blocked.
Most of our machines have public facing and backend mgmt private nics(ie: 192 or 172 networks). I wrote a rule that matches source ip(our monitor on a 192 network) on udp 161 accept. I want to prevent listening on that port on the public. Is the source rule sufficient or should I match the interface and then source? I know there a many ways to do this. I need to verify from the public network with a port scanner?
I use my desktop (VM) for online transactions only (it has no other purpose) & have removed most software. In adidtion want to remove Archive Manager, Calculator, Multimedia systems selector, Printing, sound recorder, Terminal (gnome-terminal), terminal server client, Ubuntu One. When I attempt to remove the listed software, I receive a waring message "no future desktop updates will include if you remove this". I want to know if this will impact the updates for Firefox as this is the only app I need. Can you please advise on any other consequences if I proceed with the above?
it's possible to compile the 2.6.37 kernel patched with the autogroup patch on a Slackware 13.1 system running 2.6.33.4-smp with 2.6.33.4 headers? I just compiled and installed the 2.6.37-autogroup kernel from AUR on my ARCH setup and I like it especially when using firefox with lots of tabs open and other background apps also running. I did notice a speed and smothness difference in my ARCH testing setup with this kernel patch and I can get same results in 13.1??
pls delete this post if I should not do this as it is included in [URL]..How do I recover from the 99 error when I start my system? I can only get to my Slackware by booting into it from the Slackware DVD.I have re-run lilo but I keep getting the 99 error on start up.
I run a compute cluster with only a few users. Occasionally a user will accidently run a job on the master node that runs out RAM/swaps then hanges up for a while.In /etc/security/limits.conf I have set memlock to 7.5GB (master has 8GB RAM) and maybe that is what lets the machine come back rather than hanging completely? Is this the right setting to physocally limit a single user from asking for more RAM than the system has and bringing down the system? Should I set this to 2GB or so or is there something else I can do??
Is there a way to fix this. I know once a theme is applied it's suppose to take affect on everything. But, my folders (and the stuff that you see below, folders and icons etc..) stay the same no matter what theme I use
Running Ubuntu 9.10. I was messing around with gdm/kdm and now BOTH of them are screwed up. It boots into "rescue" mode but none of the options work...not even droping into a console (the screen just goes black) I've also tried pressing CTL+ALT+F[1-9] ...still can't get a console. I AM, however, able to boot from the live CD and mount /dev/sda1 and...
Code: root@livecd# chroot /mnt Unfortunately... Code: root@chroot# dpkg-reconfigure gdm Doesn't work...SO I tried using apt-get to reinstall gdm...the only problem is when I try getting the network up in the chroot enviroment I get an error saying.
At first, all seemed normal on the gnome-terminal except for the scroll bar but my theme settings don't seem to have changed. I guess that's because, they haven't as I can see in programs like iceweasel where all is normal.I am using testing/wheezy. I tried removing /home/deniz/.gconf/apps/gnome-terminal and restarting my computer but that did not work. Did an update screw things up or what? How do I bring things back to normal?
Suddenly my mouse is all screwed up: a single click registers as two clicks - one for the press and one more for the release, or at least looks like that, but most of the time i click once and it treats it as two distinct clicks. i tried to fix it in the "configure desktop" but no go.. It's v11.3., kde4
I have a older dell inspiron laptop running xubuntu 9.10. It has run fine for quite a while. I recently hooked it up to my plasma tv to watch some some movies and now it crashes when I try to log in. The process I used to hook it to the TV was: connect VGA cable then boot into the external monitor, then shutdown. I have done this in the past with other laptops and it always went back to normal when I boot without the VGA cord attached.
What happens now is I try to log in then the screen flashes and sends me back to the login screen. One more thing to add, I didn't have to use the login screen prior to this problem, it was set for auto-login.How can I fix this? I can get to the terminal via CTRL + F2 and via SSH.
I actually wanted to create partitions on my usbstick, but instead I fdisked new partitions onto my boot + datadrive. It is still running. Is there a chance I can recover that?
This hasn't happened to me before, but I develop for the Android platform and (perhaps needless to say) I really need to be able to debug on a real device. On past installs, my device was recognized automatically and debugging was as easy as checking "debug" in the Android's settings, but now (after updating to Maverick from Lucid) the phone registers with adb as?It mentions some necessary tasks for set-up on Ubuntu, but only mentions this process for Dapper/Gutsy/Hardy. Is there any personal experience out there that can confirm that this works and/or is necessary on Maverick?
I updated my version of ubuntu to 11.04 I think and installed my ati drivers. Then tried to change some settings, rebooted and when I try to log in it acts like it will but exits back to the loging. How can I access console? Alt+Shift+F1 is not taking me there..
I have a HP ZE2000 laptop with an ATI XPress 200M graphics card that worked great with 10.04, but when I upgraded to the 11.04 the screen is now all screwed up and I cannot figure out what happened. I even downloaded the .iso and booted up on the LiveCD and it is still screwed up. I am assuming something is screwed up in the graphics setting, but how do you change it if you cannot see it?
So I (being an idiot) screwed up my boot process. While tinkering around with random things I was reading here and there, trying to get my Burg and Plymouth resolutions to look normal, I think I tried something, not realizing that it was intended for intel graphics (I am running ati). During boot I get a "FATAL; Error inserting i915 (/lib/modules/2.6.38-10-generic/kernel/drivers/gou/drm/i915/i915.ko): No such device
I have 2x 2TB drives for data storage in my system. I placed both drives in a volume group and made 1 big 4TB partition on it. I made it ext4 and mounted it in my Ubuntu Server environment and used it for a while without any problems. Just now I wanted to work a little with Windows 7 and I installed it on a separate hard drive (a 500GB one). This went fine but the (f***ing!) Windows 7 installer automatically made a 100MB system reserved partition on one of the 2TB drives (because the freaking MS OS saw them as unallocated space). That basically scewed up the volume group.
Running vgchange -ay gives an error that device with UUID (..) couln't be found. Running vgchange -ay --partial works and activates my volume group as read only. When I try to mount my logical volume inside that volume group mount gives the error that I need to specify the file system. When I do so with mount -t ext4 it returns the error that it's the wrong file system. Is there a way for me to fully restore my volume group? Or a way to mount what's left of it so that I can backup as much data as possible?
Vista won't start but Ubuntu will, all her documents are gone because my sister stepped on our disk, I can't bring files over to Ubuntu for them because the entire partion for Vista deleted itself automatically.
I had Ubuntu 9.10 installed and working great. I wanted to check out SUSE because i heard it was better for laptops and wanted to test it out. Went through the install, which was a bit more complicated partition wise than I'd like, asking the begin and end segment shell or something. I changed them to give me a 5GB partition, deleted an old partition of gNewSense (wireless was just too difficult to implement ie. work) and tada... stuff broke. gNewSense still shows up in SUSE's "GRUB" but I can't boot to it. When I threw in my 9.10 cd to fix everything, it showed that 9.10 was still installed and gNewSense was not.
So, how can I fix this. Is there a way to just reinstall the 9.10 GRUB for the Ubuntu I already have installed? The sooner the better, Ubuntu was my primary OS and all my stuff is on it! FYI, do not recommend SUSE as far as installation goes
