Ubuntu :: Panic Password To Shred Wrapped Passphrase
Feb 8, 2011
I considered making my system run the following if an incorrect password is entered 10 times in a row or a specific dead-password is entered.Code:shred /home/.ecryptfs/$USER/.ecryptfs/wrapped-passphrase.Because ext4 doesn't journal the contents of the file, only the metadata, the file would be shredded and it would be impossible to recover the encrypted home folder even with the password.Is there a simple way I could make GDM check this or would I have to patch and recompile GDM for something like this to work?
View 1 Replies
ADVERTISEMENT
Jan 18, 2011
When I was changing my password with the "passwd" command in Debian Lenny, after the confirmation, I received the following message: Bad: new password is just a wrapped version of the old one
I know the passwords are not saved in clear text, but hashes. Even further, when a single char changes in the string (the password in this case) the hash is completely different. So, how does linux detect a wrapped version of an old password?
View 2 Replies
View Related
Feb 9, 2010
Simply, the number of possible combinations of passwords increases as an exponent of the number of characters used and as a factor of the number of characters available for use.
26 potential characters for a 2 character password results in 26^2 possible password combinations. This means that each new character added would result in an "order of magnitude" increase in the difficulty of brute force attack.
Using a phrase, complete with punctuation and capitalization is the very best mnemonic device to remember a password. Consider this, how hard is it to remember; The quick brown fox jumped over the lazy dog.
Than it is to remember, l33tsp34kp@ssw0rd
If we pretend that both of these passphrases are generated from a character set consisting of 26 characters, the first would be one of a possible 15274273784216769021564085930704478424313742483024 510976. The second would be one of a possible 1133827315385150725554176.
In short, use a passphrase not a password, they are much MUCH more secure.
View 14 Replies
View Related
Jul 19, 2011
We have small requirement, we need to connect to ssh server through ey+Passphrase+password. Is it possible to configure this type of authentication in any version of openssh/fedora.
View 3 Replies
View Related
Apr 19, 2011
When I set up an ID in Ubuntu, I encrypted it. I did a print screen of the passphrase and put it on the desktop. I'm just learning how to use the encryption so don't fault me for putting it right on the desktop. There is no important data in this ID. Now, I went and changed my password to the account. On the next boot, I got a few error message:
Could not update ICEauthority file /home/mickymouse/.ICEauthority
There is a problem with the configuration server /usr/lib/libconf2-4/gconf-sanity-check-2 exited with status 256 In researching these, it looks like the problem is that I changed the password but didn't update (or something) my passphrase.
I can't boot into the GUI but I have figured out how to boot to a command prompt. I don't have access to my home directory because I don't have my passphrase. Am I toast or is there a way to recover / update the passphrase?
View 3 Replies
View Related
Feb 14, 2011
I just added a nice little HDTV as a second display on my laptop, it worked fine but I found that the text was a bit hard to read so I decided to change it, got another one yesterday, just plugged it in and everything was perfect. Today I came back from work, plugged the laptop in the monitor, booted the machine, and got a wrapped display, the bottom part (about 1/4 of teh display) seem to be stuck with the content that was visible when I opened my session, and the top part is shifted up, making it totally useless.I took a picture of the display, you can see it here [URL]... I will try to see what happen if I put back the other display, but I really want to get working with the new one.
View 1 Replies
View Related
Jun 27, 2010
I don't use the Trash bin because it does not really delete things,speaking from a security point Instead, I gotten used to 'shred' and 'secure-delete' .But to move around files, cut-n-paste is very handy.And I was wandering if items from the Clip get stored somewhere ?i realize that they get overwritten again and again in the clipboard but do they also get stored somewhere else?
View 9 Replies
View Related
Feb 5, 2011
I use nautilus-action to create a right-click shred command with these parameters.: -f -u -v -z %M
I thought the -v would give me some feedback as well as an "are you sure" dialog before deleting. But when I run Shred it just deletes the file without any feedback and no confirmation beforehand.
How can I get a confirmation prompt to occur before shredding occurs (to prevent me from accidentaly shredding something--sometimes I click the wrong item cause the mouse shifts last second).
Any why don't any icons ever appear on my context menu even though I'm assigning icons?
View 9 Replies
View Related
Jul 11, 2011
I am really new to linux and probably getting over my head but got to start somewhere. with making a shell script to run on puppy linux to shred all drives connected to it. I have been able to successfully use the command to wipe all drives connected but cant figure out how to write a script for it. I have several hard drives i got and want to shred wipe them before using them..
View 7 Replies
View Related
Aug 20, 2010
This hard disk is an old Maxtor (60G) extracted from an old computer, working fine. I placed in an enclosure and connected it to my Linux Box (Slack 12.1). It was recognized immediately and mounted automatically. However, before giving away the hard disk, I tried to wipe the data by running shred /dev/sdf At some point, I realized that it was going to take a long time, and aborted the process and disconnected the enclosure. Now, none of my Linux boxes recognize the disk inside the enclosure. Here is the output, when I plug in the usb cable, while using systemrescuecd on my desktop computer:
Quote:
Aug 20 00:58:17 sysresccd kernel: [ 3582.116029] usb 2-6: new full speed USB device using ohci_hcd and address 12
Aug 20 00:58:17 sysresccd kernel: [ 3582.316054] usb 2-6: not running at top speed; connect to a high speed hub
Aug 20 00:58:17 sysresccd kernel: [ 3582.322051] usb 2-6: New USB device found, idVendor=04b4, idProduct=8613
Aug 20 00:58:17 sysresccd kernel: [ 3582.322054] usb 2-6: New USB device strings: Mfr=0, Product=0,
[Code]....
Is there a way to use this hard disk at this point?
View 4 Replies
View Related
Nov 18, 2010
What am I doing wrong here ? Shredding a directory with files is incredibly slow. If I create a file of similar size it is around 1000 times faster. Filesystem is ext4, OS is Slack current. Looking at top it shows shred's status as 'D' which, according to the man page, means uninterruptible sleep ! Also /usr/bin/time shows around 10 minutes but that time was printed on stdout approx. 7 minutes before the command prompt reappeared !
Code:
[virgil@thunderbird2:~/q] $ du -sh
336M.
[virgil@thunderbird2:~/q] $ find . -type d | wc
160 160 12038
[virgil@thunderbird2:~/q] $ find . -type f | wc
6721 6721 687549
[virgil@thunderbird2:~/q] $ /usr/bin/time find . -type f -print0 | xargs -0 -r shred -zu
0.00user 0.00system 10:11.76elapsed 0%CPU (0avgtext+0avgdata 3616maxresident)k
0inputs+0outputs (0major+285minor)pagefaults 0swaps
[virgil@thunderbird2:~]
[virgil@thunderbird2:~] $ dd if=/dev/urandom of=qwerty bs=336M count=1
1+0 records in
1+0 records out
352321536 bytes (352 MB) copied, 51.6693 s, 6.8 MB/s
[virgil@thunderbird2:~]
[virgil@thunderbird2:~] $ ls -l qwerty
-rw-r--r-- 1 virgil virgil 352321536 2010-11-18 15:13 qwerty
[virgil@thunderbird2:~]
[virgil@thunderbird2:~] $ /usr/bin/time shred -zu qwerty
0.92user 0.78system 0:16.94elapsed 10%CPU (0avgtext+0avgdata 2912maxresident)k
0inputs+2752528outputs (0major+235minor)pagefaults 0swaps
View 3 Replies
View Related
Oct 8, 2010
I'm having a problem with sed syntax. So far I can sed the HiResBoundingBox to capture the images I want and output to pdf. But now ever so often I get an illustrator file that has hexadecimal values at the start and end of the file. Imagemagick powers through this and still creates the rastorized previews I want but the gs dies using the epstopdf script to output the vector files. If I hand remove the hex on both ends of the file, both functions work fine and the file can still be managed in illustrator but if I resave it the hex comes back. It only happens on a few files plus it seems to serve no purpose as the files work perfectly without it. I cannot get the sed statement to work. I've tried a blue million variations with no luck. Copied some that I found, same result.
Start of bad eps file:
ADOĆ ^@^@^@5O
^@^@^@^@^@^@^@^@^@UO
^@im^K^@yy^@^@%!PS-Adobe-3.1 EPSF-3.0^M
The way I need it to look:
%!PS-Adobe-3.1 EPSF-3.0^M
End of file the same:
%AI9_PrivateDataEnd^M
@ @
just needs to be:
%AI9_PrivateDataEnd^M
Tried
sed -n '/%/,$p' < = blank file
sed -i 's/%/,$!d/g' = same
sed 's/%/,$!d/g' = same
sed 's/%/,$!d' = same
I can't seem to find any proper reference to this.
View 1 Replies
View Related
Jul 11, 2010
I'm a new programmer (a life-long desire, but at 40 just getting to it) and cutting my teeth with Python. I just found the popen2 module today. I was so excited because I could do this:
Code:
>>> from popen2 import popen3
>>> cmd ="""TEXT="Hello, World!"
... echo $TEXT"""
>>> std_out, std_in, std_err = popen3(cmd)
[code].....
If you want to use another shell, substitute that shell for /bin/bash (e.g., /bin/sh for the shell portability purists out there). It is easy to modify what is returned as well. Don't like the tuple? Then just change it to return or even print stdout if you like.
View 14 Replies
View Related
Jun 4, 2010
It is possible to not only have the progress of the shredding, but the time elapsed/remained/whatever as well? It would be great to be able to see the time elapsed/time remaining along with the percentage complete.
View 4 Replies
View Related
Aug 25, 2011
Consider the following:
mount | grep home
type reiserfs
rm -Rf /home/user/over_9000_little_and_big_super_secret_files/
# oops, I should have shredded it instead.
How can I properly and securely "initialize free space" to ensure that no additional info can be restored restored by digging in free space (Preferrably without stopping or disturbing the filesystem much.) Is dd if=/dev/frandom of=/home/qqqqq really secure for this (tails, journal, etc.)?
View 4 Replies
View Related
Nov 12, 2009
I've only seen this occur in cases where I'm viewing a GPG-signed message and a line wraps. A plus sign appears at the beginning of the next line. Is this something I can get rid of?
View 10 Replies
View Related
May 24, 2010
I have an HP Compaq nx6235 Notebook, which was happily running Windows Vista Home Premium, until I finally got around to loading Linux openSUSE 11.1 from a DVD issued with a magazine last year. I now have a problem, because my Windows Vista has been wrapped up in the Linux partitioning system. I know it is located at dev/sda1 and that it is an HPFS/NTFS filetype, create a dual boot drive on my notebook, so that I can happily play with both systems. I am newbie, so the instructions should be as clear and simple as possible.
View 9 Replies
View Related
Mar 21, 2010
I'm looking for a light-weight text editor for general-purpose composition that can preserve indentations on wrapped lines.
View 3 Replies
View Related
May 31, 2011
what purpose does it serve to use a passphrase? Once the keys are generated the passphrase isnt used? Or what am I missing??? I did not use a passphrase and understood that there was no security implications of not doing so. Is this correct?
View 6 Replies
View Related
Sep 2, 2010
I'm trying to add a key to a new slot from a keyfile that I created, but I keep getting an error and I don't know what the problem is.
Code:
root@ubuntu:~# cryptsetup luksAddKey --key-slot 1 /dev/sda5 -d /media/Ubuntu_10_04/etc/cryptkeys/swap.key
No key available with this passphrase.
content of swap.key
Code:
nBPeNCr_PS-yEv5SYEyyzaEextllDLo7aHs7yZGW9dtC48GDlte6WYQe7iG2poJr84U6twxu1DImZcyoBPB1q1AjYAanPsre7qLr7VnN4G6u1x_WG-sja6U_pvnks9CTgcD4UmfBw9mkrU3YY4GknQXtpLvkiBkM1soJ0SYYQ2r-7CDZJvaiYJb9eOKKbMsjlrEG39IBdQwdcEp3D7PK5paTYZdVHU2ygrJvJy-sJly4oqb2274DO8hbYviQsPdawetglkhhhhhhh98h4erwjerfkasjnfhsahfocLnBPeNCr_PS-
[code]....
View 1 Replies
View Related
Jan 29, 2011
I am a noob who is playing around with setting up a home print/file server using Ubuntu Server 10.04. I have successfully setup the server and am now configuring the SSH server so I can control remotely.
I have setup RSA keys with a passphrase as outlined in the SSH - Ubuntu Community Documentation. However, when I log in remotely I am only asked for the passphrase the first time. Any subsequent log-ins simply take a few seconds to connect without any passphrase request. After restarting my laptop (that I use to connect remotely), I am again asked for the passphrase only the first time and subsuquent logins are without a passphrase. I would like to know if this is normal and if there is a way to have passphrase requested on each login.
View 3 Replies
View Related
Feb 7, 2010
I installed ubuntu 9.10 to a fresh partition on a HD that already contains a windows xp. During the install I opted to Require my password to login and to decrypt my home folder, (don't ask why, I regret it already). The install went well, I think, but when it came to reboot time I wanted to check that I could start windows xp from the new grub boot loader. Windows started fine so I rebooted again to try my new install of ubuntu. Now the system seems to get stuck at the little spinning wheel icon. I tried to boot to recovery shell but after entering my name and password I get:
Unable to cd to '/home/myname'
I rebooted using live cd. And mounted the file system as root. Now I have chroot ed into the system but that's as far as my knowledge gets me. I have googled to find the next step but am not finding a clear answer. I have found this [URL]. And here I see I should have seen a screen entitled: Record your encryption passphrase. But I didn't get to that screen. So is there any elegant solution? or am I destined to wipe the install and start again? Perhaps this problem is connected to the bug mentioned here [URL]. Optional encrypted partitions must be marked bootwait in /etc/fstab
In addition to the above, users who have configured any encrypted partitions in /etc/crypttab to start at boot time (i.e., not using the noauto option) should make sure that the filesystems on these volumes are listed in /etc/fstab if they are not mounted at a standard system mountpoint. Failure to do this on a desktop system will lead to problems from the X server and cryptsetup trying to control the console at the same time. At best, this will prevent the user from seeing the passphrase prompt; at worst it will also cause the X server to spin and consume 100% CPU. (430496)
I'm not sure, my /home is not on a separate partition.
/etc/crypttab is empty
# <target name> <source device> <key file> <options>
/etc/fstab is
# /etc/fstab: static file system information.
# Use 'blkid -o value -s UUID' to print the universally unique identifier
# for a device; this may be used with UUID= as a more robust way to name
# devices that works even if disks are added and removed. See fstab(5).
# <file system> <mount point> <type> <options> <dump> <pass>
proc /proc proc defaults 0 0
# / was on /dev/sda2 during installation
UUID=8e5f54dd-8d79-44da-9ddf-7f4e3bce2a64 / ext3 errors=remount-ro 0 1
# swap was on /dev/sda3 during installation
UUID=32bcb9fc-ff2b-4e37-a259-1bfabee7cee7 none swap sw 0 0
/dev/scd0 /media/cdrom0 udf,iso9660 user,noauto,exec,utf8 0 0
View 1 Replies
View Related
Feb 21, 2010
I've set-up a Linksys WPC54G v5 wireless card using ndiswrapper and the appropriate Marvell driver. It seems to work ok. On my other laptop running Kubuntu with built-in wireless the routing all works fine - I just get prompted by Network Manager for the WPA passphrase and I'm away. However, when I try to connect to my wireless router on thix Xubuntu-based laptop I get really odd security options.
When I try to connect I get a security prompt asking me for a bewildering array of information. There are four basic authentication options under "WPA & WPA2 Enterprise": TLS, LEAP, Tunnelled TLS and Protected EAP. None of those offers a simple passphrase, they all have some combination of username & password with certificates and keys. If I try to connect to other networks in my area, some do just ask for a WPA passphrase, not that I know them to check!
View 1 Replies
View Related
Aug 30, 2010
So I've connected to my wireless network with the command:
iwconfig wlan0 essid Linksys
But I need to enter my wireless access' passphrase to connect to it. The closest I've come is using:
iwconfig wlan0 key s: PASSPHRASE
...which gives an invalid argument and I've resently found out that this passphrase command is not supported - yet.
Where do one tell Ubuntu to use a passphrase to connect to a wireless network?
- Ubuntu 10.04
View 5 Replies
View Related
Sep 5, 2010
i have installed a ubuntu 10.04 (mini iso) w/ option of root encryption. Now i need to boot without ask for passphrase, but im trying to add a luks keyfile without success.i want to use a keyfile in the /boot partition or inside the initrd (cant be in external pendrive), but ubuntu aparently dont accept a keyfile in /boot or initrd file. I know, this way isnt very security, but i just need a basic encryption.So, how to force the use of a keyfile in /boot or inside the initrd for a crypt root partition?
View 5 Replies
View Related
Sep 16, 2010
I have loaded ubuntu Lynx 10.04.1 as a dual boot behind XP home. I have wireless connection to the XP os via netgear wireless G router and USB 2.0 adapter. The network connection works well with the XP side. When I boot into ubuntu I am sure I have configured the network properly with the wep key and password and the network signal is alive in the work bar at the top of the screen. When I open Firefox and try to browse to ,say, ebay it asks for the passphrase again then tells me that FF is in work offline mode. When I correct this I get asked for the pass phrase again and the connection is disengaged. It just keeps asking for the passphrase and disconnecting. When I reboot into XP everything works perfectly again.
View 9 Replies
View Related
Jul 31, 2011
Is there a way to change the passphrase login screen? It would be cool to change the background and edit the text?
text : Cryptsetup: evms_activate is not avaible
Unlocking the disk /dev/blablablabla
enter passprase
View 1 Replies
View Related
Jul 2, 2010
I have written a shell script which amongst a heap of other stuff creates virtual hosts, and consequently also reloads apache, however my problem is that unless I include a restart in the shell script, the reload is causing the server to stop, yet restarting everytime a new vhost is created is not really an option since it will disrupt the service for other users. I know this is directly to do with the SSL passphrase as simply restarting gets everything running again with no errors.
I have configured mods-available/ssl.conf so the SSLPassPhraseDialog directive uses the passphrase file instead of bulletin, hence the restart can work fine from within the shell script, but obviously reload and force-reload must be running some sort of background process which involves reloading the SSL certs or something?? so my question is can I over ride this and if so what directive / params do I use? Im on ubuntu lucid 10.04 server and apache v2.2.14.
View 8 Replies
View Related
Jul 2, 2010
I got a little problem upgrading my ubuntu-nas with some storage.I wanted to add a new harddrive to my lvm but I stuck before getting to this point.I want my harddisc to be encrypted before adding it to the lvm.I tried the following:
Code:
# sudo cryptsetup luksFormat /dev/sdb1 -y
WARNING!
========
This will overwrite data on /dev/sdb1 irrevocably.
Are you sure? (Type uppercase yes): yes
... and nothing happens. dmsetup ls returns nothing.
View 1 Replies
View Related
Jan 4, 2011
Ubuntu's request for an encryption passphrase on installation could be greatly improved.
After installation, if the option to encrypt the home folder has been checked, Ubuntu prompts: "Record your encryption passphrase".
On running the action there are the following problems:
# When you type a passphrase, your keypresses are not indicated on the screen
# If you make a mistake typing the passphrase, and backspace, there is no way of knowing whether the backspace operation has worked
# The passphrase is typed once and the operation ends. There is no attempt to validate the correct entry of the passphrase by asking for it to be typed twice.
The combination of these shortfalls can be fatal. My last recorded encryption passphrase proved to be incorrect when after a critical failure I was required to enter my encryption passphrase to retrieve my data. It had not been backed up for a while. Ubuntu did not recognise my passphrase. Only after some dogged support from Canonical was the problem resolved.
I've just done a fresh install. I have butter fingers. I inevitably fumbled over the entry of my encryption passphrase. I have absolutely no way of verifying the passphrase I just set. Should Ubuntu ditch another critical failure on me, what do you think the chances are that my passphrase will work?
View 1 Replies
View Related
