I have installed ettercap using apt. But, when I scan for hosts, Ettercap crashes. I've found on the Web that there's a solution, but I don't manage to solve this problem.
View 3 RepliesMy Host Lists of Ettercap is empty when I try to sniff my Lan. I modified /etc/etter.con, obtaining this:
Code:
# if you use iptables:
redir_command_on = "iptables -t nat -A PREROUTING -i %iface -p tcp --dport %port -j REDIRECT --to-port %rport"
redir_command_off = "iptables -t nat -D PREROUTING -i %iface -p tcp --dport %port -j REDIRECT --to-port %rport"
and the error is this:
Code: iptables v1.4.6: can't initialize iptables table `nat': Permission denied (you must be root)
Perhaps iptables or your kernel needs to be upgraded. I lunch ettercap as root.
I have been playing with Ettercap on my home network, learning about packet forwarding and all such things. Recently, after doing some certificate stuff, Ettercap is performing the SSL attack where it sucks out the password of a user after it issues a fake certificate. How do I turn off the SSL attack in ettercap when I'm not interested in SSL information?
View 1 Replies View Relatedc source code for scanning a shared directory of a host ?
View 3 Replies View RelatedI have an Ubuntu 10.10 host running in VirtualBox 4.0.8 r71778, and I need to setup a LDAP authentication network between two VM's: a Maverick-based distro and Ubuntu Server 11.04.
Screenshot of the two running perfectly fine:
[URL]
Using NAT, I can have the two VM's up and running on VBox, but they get the same IP (10.0.2.15).So I googled it and quickly found out that I needed to change the VM's network interfaces to Bridged Networking. So I tried that. Here's two screenshots of the default configurations:
1- Ubuntu Maverick based distro:
[URL]
2- And here is one of the Ubuntu Server:
[URL]
(I'm Portuguese, that's why there are mixed languages in the UI)It's pretty stupid to explain like this, but whenever I try to start one of those two using Bridged Networking, I get a black screen full of errors (I can't take a printscreen of that, so I took a bunch of pictures - yeah, it's lame, I know ). Then, I have to press the power button to shut down my host, and restart the pc.Here they are:
[URL]
Where I think the problem is:
[URL]
My host is currently running Linux kernel 2.6.38-10.I have dkms, linux-header-generic and build-essentials installed (and the VB extension package too)And my host is a laptop, connecting to the internet using the router my ISP provided me.How can I solve this? Is this some kind of bug regarding 2.6.38-10 kernel?I don't have other pc's to test my LDAP authentication, so I needed the two VM's to have different IP's.
I goggled a lot on how to get ettercap working on ubuntu, but unfortunately wasn't able to find anything good.
So, i decided to make a new post about it.
1. The GUI mode crashes after scanning for hosts.[ Fixed by downloading the version by timothy]
2. After Scanning, When you start Sniffing, and run the chk_poison plugin it says no poisoning at all . Why, i am not able to poison it at all?
3. Running the original ettercap in text mode(-T), also gives the error , if you uncomment the two lines required for SSL sniffing, then you are met with error saying that you don't have enough permission to and suggest that i should either upgrade iptables or my kernel[I am sudo]. O.o?
I can not manage to get any passwords on my network with Ettercap.I have followed several tutorials but I still seem to have no luck in getting them.I have BT5/KDE/32bit installed and using an alfa network adapter (RTL8187).First I configured etter.conf script to look as below:
ec_uid = 0 # root is the default
ec_gid = 0 # root is the default
# the command used by the remote_browser plugin
[code]...
How can I create an ettercap log ?, how can I read it with etterlog command ?.
And how different new version of etterlog and etterlog v0.6.6 ?. How can I get ettercap v0.6.6 manual ?
for dns spoofing in my local network (one laptop and a router switched), but that does not work. An access to a specified site does not redirect.If you need any details, The command I use is:
Code:
#ettercap -T -q -i eth0 -P dns_spoof -M arp // //
I have Ubuntu 10 installed.
I have installed ettercap using:
Code:
sudo apt-get install ettercap
But I cannot see it in any of the Ubuntu Menus(Aplications-->Network etc).
If I type
Code:
ettercap
[Code]....
I am using fedora 13 and have installed ettercap from Add/Remove Software in Fedora. But when it is starting(Application->Internet->ettercap), it is not able to detect any interfaces ( i am using eth0 interface, wired lan ).
View 4 Replies View Relatedi downloaded ettercap and wireshark but when i ever i press scan for hosts after doing the things before it doesn't scan it just gives me
Randomizing 16777215 hosts for scanning...
I used to have ettercap on backtrack 4 and everything was ok...But on ubuntu 10.04 I'm having this issue; it is not showing passwords (if i log in for example in a forum with a http link )and not sending false certificate (if i try to log in in https links, after uncommenting the redir ip tables in etter.conf).Other features seems to work alright (such as dns spoofing) and the arp poisonning is succesful. Besides, Wireshark gets the passwords.
View 9 Replies View RelatedI am using fedora 13 when i am starting ettercap, i get following warning and when i clicked "scan host" , the program quit after scanning hosts due to some segmentation fault...here is warning
Code:
[piyush@localhost ~]$ sudo ettercap-gtk
ettercap NG-0.7.3 copyright 2001-2004 ALoR & NaGA
(<unknown>:2315): GLib-GObject-WARNING **: gsignal.c:3079: signal name `depressed' is invalid for instance `0x9f9ee00'
[code]....
ettercap can see http request but not response
I'm trying to see regular http responses from my wireless ipad (victim) from my wired pc (attacker). Everything's working great but I can only see the http requests not the responses.
I've done much reading and googling and tried registering in more relevant forums but some forums were shutdown, so I've come here.
Code:
# setup ip forwarding
echo 1 | sudo tee /proc/sys/net/ipv4/ip_forward
# use ettercap to do the mitm using only mitm
sudo ettercap --iface eth0 --text --plugin autoadd --only-mitm --mitm arp:remote /192.168.0.1/ /192.168.0.155/
[Code]....
a client asked me to install ettercap on their linux gateway machine - two ethernet machine. I tried it in bridged mode, it but as soon as I start it, the traffic stops and no one can access anything. Did anyone ever succeed in running it on the gateway?
View 1 Replies View RelatedI am using unbuntu as root. I've made all the edits to my etter.conf file as follows:
[privs]
ec_uid = 0
ec_gid = 0
and:
remote-browser = "firefox -remote openurl (http://%host%url)"
I also turn on ipTables. I then start my attack as follows:
ettercap -T -Q -M arp:remote -i eth1 /client-ip/ // -P remote_browser
echo 1 > /proc/sys/net/ipv4/ip_forward
ettercap -T -Q -M arp:remote -i eth0 /target_ip/ /gateway_ip/ -P remote_browser
My problem is Firefox only shows https:// pages and not regular pages like google. I'm stumped. I have no clue why. I've tried other versions of linux. Different computers and still the same result. If I turn quiet off I see in my terminal all the traffic.
Many of mails sent from my mail server that are in Queue;The main reason is deffered by domains like yahoo,aol,etc.but there is one more error that i keep getting and that is Host Unknown,Below is an example from mail log,The catch is,test mail sent on the same email id sent from my personal mail from the same server i.e. url was deliveredHowever,another mail containing client information sent from customercare@mycompanysdomain ended up in queue.
There are more examples of the same,around 20 domain have the same problem.
Sep 7 14:33:46 server2 sendmail[24591]: n8793jiC024589: to=<abc@xyz.fi>, delay=00:00:00, xdelay=00:00:00, mailer=esmtp, pri=163672, relay=xyz.fi., dsn=5.1.2, stat=Host unknown (Name server: xyz.fi.: host not found)
Sep 7 22:09:42 server2 sendmail[6407]: n87Gdffa006403: to=<abc@def-fgh.com>, delay=00:00:00, xdelay=00:00:00, mailer=esmtp, pri=152474, relay=def-fgh.com., dsn=5.1.2, stat=Host unknown (Name server: def-fgh.com.: host not found)
I am quite new to Linux. Just some basic information, I am using windows xp but have installed vmwork station and am running Red Hat enterprise linux 4.
When i run ./configure it gives me this error. "configure: error: libnet >=1.1.2.1 not found "
I am working on a cluster for a molecular dynamics class and I have to edit my FORTRAN code (only the newest and best for me!). In order to get through to the cluster I have to ssh in. The network on which the cluster resides is behind a firewall, so I have to ssh through the firewall into the network first.
this is fine, I can login and move files and folders as needed, including sftp-ing into host 1, then into the cluster so I can transfer files from cluster to host and then host to me. This gets rather tiresome, so it would be nice to edit the files in place.
The problem is that when I access my code with emacs it launches the emacs client on Host 1, with no mouse support. I know the purists will howl about how I should be using keyboard shortcuts, but I am a chemist and not a programmer, so the mouse is very nice for me. Is there any way I can perhaps mount the cluster using sshfs so that when I open my code it launches a local instance of emacs? Sorry if this is the wrong forum, but I thought it was network related.
I got a bunch of machines (~10) that I share with my co-workers. I have appropriate .ssh file(s) set up so I don't get prompt for password when I try to ssh.Currently I ssh into these hosts and then do a top to check the load before I start using the machine. Because I don't want to be on a busy host.Can someone show me how to write a script that find a least-busy host given a list of hosts to check? (hardcoded is fine)
View 1 Replies View RelatedI have two servers, one has an empty / and the other has a subdirectory with a large number (4 gig) with many, many files. I need a way to transfer the files en masse from the server with the large number of files to the one that is essentially blank.I don't have space on the used host to simply gzip all the files. I've googled this and see that there may be some combination of tar and/or gzip that will let me do this with some sort of redirection.
I really need and example line of how this can be accomplished. If my explanation seems rather sparse, I can supply more details.
Bit of an odd one, this. I've migrated a website from my old server to a new machine. Both servers run Ubuntu + Apache2. Both only serve a single site, apart from the default site.I've flipped the domain name to the new IP address.The trouble is that after moving the virtual host config over into sites-available, with the necessary link in sites-enabled, Apache attempts to serve from the default web root (/var/www) rather than the actual site content (in /var/www/technology). So for example, an attempt to browse.
View 1 Replies View RelatedI'm trying to get Synergy up and running between my Windows 7 (server) host and my Arch Linux (client) host. In rare exception, synergy works perfect on my windows host, however every time I try and run Synergy on my linux machine I get the following error in messages.log:
[code]...
I'm running Arch with a barebones Xorg install and SLiM with LXDE. I'm not sure what in the world is causing the problem and haven't been able to find anything of substance in a search.
I have installed RHEL5U5 but I've also tested RHEL5U4 and the problem is: Once configured the multipath, I restart the server,and with the command-ll mutipath I can see the LUN presented correctly:
[Code].....
I'm trying to ssh from my laptop to my desktop (both fedora 14) over a local network. I can ping my desktop and get responses, but if I ssh to it, I receive
ssh: connect to host 192.168.100.xxx port 22: No route to host
I can ssh from the desktop to itself.
HOW TO GET THE IP ADDRESS OF HOST IN LINUX WITH USING OF HOST AND NSLOOKUP COMMAND and after getting the ip address how to assign it in the variable
View 4 Replies View RelatedThe internal network is behind nat done by the PC Router.The TP Link is recieving wireless signal from outdoors and it has switching and basic routing capabilities. I'm using the PC router for better routing options.PC Router (or R for short) is a triple-booting machine - Linux, FreeBSD and Windows. It has two lan cards - external (ext_if) - 100Mbps Realtek 8139 and internal (int_if) - 1Gbps integrated Realtek 8169.The problem is that all traffic from R to the network is slow - about 5-20K, while the traffic in the oppoiste direction is all right - about 10MB that is fine for 100Mbps cables, NICs and switches. The problem persist no matter the OS the pc R is running.I've tried some debugging on the situation as follows:
- put another PC at the place of R - everything is fine. That exclude the possibility of damaged cables, RJ-45s, switches and etc.
- connected both of the NICs to the Internet while the internal network is being disconnected and they both work fine (no delays)
- traffic shaping is not running
- there is nothing in firewalls except NATing the internal network (and it is working fine). Actually these firewall rules have been operational for more than months and everything was fine untill a week or two ago.
- changed the internal NIC with another
- connected the internal network directly to the TP and all of the PCs are getting good network performance. Then connected the R machine to the TP as well and there was good performance between the internal network PCs and R.
- R has good performance to the TP. In fact everything has good performance directly to the TP (when not connecting trough R).
- the problem persist only between R and machines from the internal network.
I thought I had a post out there that thoroughly covered this topic. But, I looked and I couldn't find it.Well, I am trying to get Sane to run so I could scan documents. I have printing set up, and the cups daemon is set to run at reboot. What are the following steps to achieve my objective,
View 9 Replies View RelatedWell I'm trying to set up a US robotics dial up USB Modem. When I enter WVDIALCONFI end up with a screen that says "scanning your serial ports for a modem"It scans and ends up saying Sorry'no modem was detected!Did you configure it properly with SETSERIAL?
View 9 Replies View Related