I recently came upon an ubuntu variant called blackbuntu. Its in early release stages at this point, but its being marketed as a pen test distro. Exactly like Back Track, but in Ubuntu form. Was just wondering if anyone has had a chance to use this yet? All software that the distro uses is readily avilable in the ubuntu repositories already.
View 4 RepliesWhat is the best way to test a distro? As a newbie, I am trying out several different distro's. I run them from a live CD and see if they are easy for me to set up my wireless, can be configured to multiple monitors, corectly recognize my hardware. I then connect to the internte and see if it plays videos or needs codecs downloaded, then connect to the reository and download any needed codecs, or pick a random program and see how easy it is to download and install.
Is this a reasonable way to check out a distro, or should I be looking at something else? Keep in mind, I am a newbie who is a user, not a hacker, and know nothing of the commandline yet.
I like puppy apart from the file manager, you could probably download a different FM from the package manager, but i am looking for a new distro. I know DSL as well and i think it's good but there must be better. I will mainly be using it for 2 reason
a) Recover(backup) files from a windows system i can't boot into
b) To access the net of a system i can't boot into
1) Be under 200MB
2) Fast to boot
3) Have network support including wireless
4) Have sata support and ideally raid support
5) Good file manager
6) As windows like as possible
7) Easy to copy files from HD to usb stick and easy to set permissions .
All my friends say, OpenSuse is the best distro. I have tried it, but I just can't make it work for me. I have a lot of problems touchpad not working properly, wireless, it crashes. It looks good, but I need a distro which will work on my dell Vostro 1700. I have found Ubuntu (gnome) best for my laptop, but I would like to try (KDE) something more polished like OpenSuse. A distro which works like a charm.
View 6 Replies View RelatedWhat is a good distro with vmplayer installed by default.
View 2 Replies View Related1. I understand you can protect your files or directories in your website by setting file/directory permissions. The meaning of r w x is clear to me, but I'm not sure how to proceed... Starting with the index.html file, if I wanted to make it so that anyone in the world can read it but can't modify it, do I set its permissions to rwxr-xr-x? If I set it to rwxr--r--, would that mean the file couldn't be served? I mean, what does the x setting do on a .html file, how can a .html file be executable?
2. If file permissions work on the lines of owner-group-others, in the context of a website, who is 'group'? As far as I can tell, there's only the owner, which is me, and others, which is the world accessing the site. Am I correct in thinking that by default, say when creating a website on a shared hosting server, there is no group unless I specifically set one up?
3. My ISP allows the DynDNS.org service, meaning that I could serve a website from my home. It's too early to go that route just yet, but for future reference, I would like to ask about the server software called Hiawatha. It is said to be secure, but having read some evaluations of it, it doesn't seem to offer anything that couldn't be accomplished with Apache or Cherokee, it's just that its security settings are simpler and easier to configure. Am I right about this? Or does Hiawatha truly offer something that the other major server packages don't?
I have an old Fujitsu Lifebook B series (B3020D) notebook with a touchscreen. Is there a good Linux distribution to use with this machine?
View 2 Replies View RelatedI want to know which linux distro version is good and easy for installing bioinformatics software installation...
View 2 Replies View Relatedhow to add blackbuntu repositeries in ubuntu 10.10......i know blackbuntu is a version of 10.10...but now i am having Maverick Meerkat
View 1 Replies View RelatedI want to know how can I test my server security with hping3 tool I want to make a virtual DoS or DDoS or SYNK attack in my LAN to test my server security and ability against these attack .Is hping3 a good solution for this or not if yes how can I do this which option of this can make such these attacks?
View 4 Replies View RelatedI am new to the Ubuntu/Linix world (less than a week).
I have tried the search, but have had difficulty finding threads on this.
Can someone recommend an excellent firewall to use with Ubuntu?
I have enabled ssh key based logins for one of my servers and disabled normal password based logins. It just occurred to me that the public key which I generated on my pc, and uploaded to the servers authorized_keys, may in fact only apply to my local PC / user account. So basically if my system crashes I would have no way to login to the server...? Is it not possible to "share" public keys so other people (PCs / accounts) can use them?
View 3 Replies View RelatedI am new and i am worried about my data. So i want an Internet Security software for ubuntu.
View 9 Replies View RelatedWhat is a good IP filter/firewall program? Seeing as how I like free softwares, I download a lot of torrents. When I was using Windows, I used PeerBlock (the newer fork of PeerGuardian), however, it's not available for Linux. What would be a good alternative for this in Linux? I tried iplist as it has a GUI, and it was extremely buggy and blocked random web pages even after I put them on the exceptions list. And MoBlock has no GUI from I understand, nor has it been updated in years.
View 9 Replies View RelatedI'm looking for a good hardware firewall that will run on an older pc (ie 512 MB RAM and 1GHZ CPU) FOSS is preferable, but not required. I've tried Astaro, but it refuses to load after a restart. I'm hoping for AV as I support Windoze clients, and a VPN. Past that, I can deal with anything.
View 4 Replies View RelatedSo I activated the Firefox profile:
Code:
And restarted Firefox (even rebooted), but it doesn't seem to be working. When I open Firefox I am able to perform a "Save Page As" in locations I shouldn't be able to, like my Desktop or Pictures folder.
The following command says the Firefox process is in enforce mode:
Code:
Of the following lines, the only directory which is "rw" is /Downloads, why am I still able to write to other places?
Code:
OS: Ubuntu 10.10
Can someone with an active Firefox profile do this simple test for me? Click File -> Save As and try to save somewhere the Apparmor profile shouldn't let you, and let me know the results.
rc.scripts, cron jobs, what else? Can hidden files be executed simply by going to a directory that has that hidden file inside it?
View 5 Replies View RelatedI had a hack on my oscommerce website recently. I have put in the relevant security patches but I need to check whether the hacker left any code changes in my files. What is a good file comparison software for linux? I need it to scan though the current files and folders and compare it the original default oscommerce installation so I can check the code.
View 14 Replies View Relatedi have fedora distribution running in my virtual machine. I installed sectool- .9.5-1.fc13.i686.rpm & sectool-gui-0.9.5-1.fc13.i686.rpm (the gui of the tool)
Then i modified the file /etc/selinux/conf to change the selinux from enforce to disabled (so the test can be run) the prob now, each time i try to lunch the package to get a test result... it takes so long time without result even if i choose 1 test only as u can see in the attached file. I've been waiting for more than 1 hour with no result
I ran a test where I login a test user several times using the wrong password to see that he gets locked out after several attempts. Now that I got the test user locked out, how do I unlock the test user? I tried passwd -u <test user>, but it says passwd: Error (password not set?).
View 4 Replies View RelatedI want to see how secure my company is. I am not too concerned about over the wire, more about someone hacking our wireless.
View 6 Replies View RelatedWell someone has been putting up this attack on my game-server ports. For those of you who don't know what type of attack this is, so its an attack which is actually masked to us because the attacker uses his machine to send packets to a machine called source which reflects the packets to destination. Based on this, the UDP port under Flood at the destination starts making outgoing connections to that IP and gets rejected which uses up more than 5mb/second bandwidth instantly.
I've worked out on some security for this and now need a tool to test this against my machine. I've used PentBox but that's not really powerful to do anything. As I search Google, I find something called Trinoo but can't download or test it.
I need to do a pentest on a Microsoft IIS webserver to test the efficiency of the HIPS i have installed on. methods to simulate attacks so that i can check if the HIPS will detect them?
View 4 Replies View RelatedI think ubuntu/canonical should start releasing a new flavour geared towards meeting needs of computer security professionals just like backtrack distro
View 9 Replies View RelatedHow would You encrypt Passwords [emails,forums,accounts] onto USB Flash the most Secure way? (It should be command line so I can use any Linux distribution on it.) Is gpg -c <filename> secure enough ? And what FAST distro would you install on it? I'm learning on old USB flash and found SliTaz pretty damn cool,I use it as a LiveUSB. Also I've tried Kubuntu but it's bit slow. Going to try Lubuntu soon too. Any other idea?
And I'd like to install some FAST distro onto new 8GB mini USB flash drive,maybe Kubuntu as well. How would you partition its Flash drive? Probably separate partition for stored encrypted files?
I know very little about MySQL, but I've got some users that need it for testing on a Linux server.So I had set it up a while back, but now I'm running into some small problems.Right now, each user has his own database that I created and can do whatever with it. Each user only sees their own database.I didn't want them to be able to create new databases at all, but they can and when they do anyone can see them.
EDIT(Apparently they can only create databases beginning with the word "test" in the name)
I need to either:
1) Stop them from creating new databases (without affecting their ability to interact with the existing database)
OR
2) Make it so that when they create a database, only they have privileges on it and only they can see it (except mysql root of course).
Anybody know the statement to set these kinds privileges up?
EDIT: pfft... I've a read a bit more and realize that this is an intended part of the installation.
EDIT2
I'd still like to remove the ability to make test databases.
EDIT3:Ok, for reference this is how you prevent users from making and using test databases:
shell> mysql -u root -p
Enter password: (enter root password here)
mysql> DELETE FROM mysql.db WHERE Db LIKE 'test%';
mysql> FLUSH PRIVILEGES;
I currently run Ubuntu 10.04 alongside Vista. I have been looking for a few linux projects to help me learn, the two that I have thought of have been:
1. LFS
2. Something security related
As for no.2, I am interested in learning about network security, intrusion detection, system logging, firewall logging etc. And as a project I would like to work on creating a desktop box as secure as possible, then maybe testing my own box on my home network.
1. Is there a good linux distro that is designed for security?I know people often say "the distro doesn't matter, it only matters how you configure it.
2. Does everyone agree with this? As far as security, learning, etc, are all distros created equally?
With the ever increasing threat of financially aimed malware on Windows machines(think Zeus here), I'd like to create a distro of Linux that boots from a USB thumb drive and opens directly to a web browser. I'd like this distro or config not to be writable and its only purpose being to make financial transactions via a web browser. All other services or applications would need to be stopped or locked down.I've seen some threads on here from a few years back and wanted to know if there is anything new out there that can assist with this.
View 9 Replies View RelatedCan you still use a 'distro' that has been knocked off the update tree with security intact, i.e., what are the risks. I ask because I am quite happy with fed 12 but there is a sound problem with my hardware on fed 14. My idea of extended support is 10 years, nieve I know but a nice thought.
View 11 Replies View RelatedCurrently using linux mint.While it's nice I have the feeling all those bells and whistles must be exposing a large attack surface. What is the most secure distro known to man, but which is still capable of making payments to amazon and ebay?
View 14 Replies View Related