Ubuntu Security :: Block Device By Bluetooth Address?
Apr 22, 2010Is it possible somehow to block some bluetooth device with specif address (mac) ?
(like iptables block by mac)?
Is it possible somehow to block some bluetooth device with specif address (mac) ?
(like iptables block by mac)?
I recently set up a web server at home, using a non-standard port, due to my ISP blocking 80. I just checked my log files, and I see a TON of entries indicating that a file was not found "proxy-1.php", "proxyheader.php", etc. I do not have these files, not intend to have them as part of my website. I did a whois looking by IP address for several of these, and they all seem to come from an ISP in China. Is there a way to BLOCK any IP address outside the US (that is somewhat simple to do?)
View 5 Replies View Relatedhow to block any IP address who failed to connect more than 3 ssh?
View 5 Replies View RelatedI want to block some ip address that are attacking my server and making my ssh port busy. On searching the google, I found
Code:
iptables -A INPUT -s ip_address -j DROP
I will add this rule in iptables. My questions are:
1) do I have to do
Code:
chkconfig iptables on
so that it load the iptables at boot. I am wondering why do I need this because iptables is already modified and it loads the iptables at boot time if firewall is enabled.
2) When we add the above rule, which file is modified? Another way, where are this rules stored? It is not in /etc/sysconfig/iptables and /etc/sysconfig/iptables_config.
I was taking a peek at the active connections shown by the Firestarter GUI and noticed the following (the source is my computer):
SourceDestinationPortServiceProgram
192.168.0.11266.235.133.4280HTTP
I closed all Internet related apps and the connection persisted. After a reboot it did not reconnect (yet).The IP address appears to belong to esomniture.com - some sort of web analytics company. How do I prevent my computer from connecting to these rascals. I have found a lot of documentation regarding stopping inbound connections to services on my computer but not the other way. I have various filtering addons installed in Firefox however, this connection seems to be at a lower level as no program is specified as being responsible for the connection.
after a yum update on my CentOS 5.3 I got this error when shutting down eth0 on reboot...
Shutting down interace eth0: Device eth0 has MAC address XXX instead of configured address XXX ignoring [FAILED]
Im an academic (university networks and security lecturer) studying/teaching network and operating system security, and inspired by the work of Hovav Shacham set about testing ASLR on linux. Principley I did this by performing a brute force buffer overflow attack on Fedora 10 and Ubuntu 9. I did this by writting a little concurrent server daemon which accidently on purpose didnt do bounds checking.
I then wrote a client to send it a malicious string brute forcing guessed addresses which caused a return-to-libc to the function usleep with a parameter of 16m causing a delay of 16 seconds as laid out in [URL] Once I hit the delay I new I had found the function and could calculate delta_mmap allowing me to create a standard chained ret-to-libc attack. All of that works fine. However .... To complete my understanding I am trying establish where I can find the standard base address for ubuntu 9 (and other distros) for the following, taken from Shacham:-
Quote:
[code]....
/proc/uid/maps gives me some information but not the base address ldd also gives me the randomised starting address for sections in the user address space but neither gives me the base address. Intrestingly ... when a run ldd with aslr on for over (about) 100 times and checked the start point of libc I determined that the last 3 (least significant) hex digits were always 0's and the fist 4 (most significant) where between 0xB7D7 and 0xB7F9. To me this indicated that bits 22-31 were fixed and bits 12-21 were randomized with bits 11-0 fixed. Although even that doesnt define the boundaries observed correctly.
Note: I am replicating the attack to provide signatures to detect it using IDS, and for teaching purposes. I am NOT a hacker and if needed to could reply from my .ac.uk email address as verification.
I want to block the Mac address in adhoc network to check the behaviour of the aodv protocol.Is there any other utility available for this purpose rather than Mackill..?
View 1 Replies View Relatedhow to block a specific MAC address
View 2 Replies View Relatedhow to block PC in Squid using Mac Address. I tried as in /etc/squid/squid. conf
acl block arp 00:13:45:d3: 24:e4
https_access deny block
but it give me error as like: - (This is the output of # squid -k parse) aclParseAclLine: Invalid ACL type 'arp' FATAL: Bungled squid.conf line 1234: acl block arp 00:13:45:d3: 24:e4 squid Cache (Version 2.5.STABLE6) : Terminated abnormally
I have two problem with my wireless card:
- When I connect myself to a wireless network I must give the dhclient command, to obtain a local ip address
- The system say me that haven't a bluetooth adapter, and so I can't use bluetooh services (I've try by graphical interface and by console)
These problems began when I've passed to ubuntu 10.04!
My Wireless card is: Intel Corporation Wireless WiFi Link 5100
I purchased 2 CSR V4.0 dongles which work fine, one in Deb8 and one in a Win7 laptop. The only problem is they both have the same mac address so my Samsung Tabs get confused. I have thoroughly researched how to change these but most of the suggestions want a dev reference such as wlano or eth0 which USB dongles do not have a dev id.
The only alternative is to use bdaddr which comes with the bluez package but it must be compiled with the --enable-tools option.
When I try to compile I get the error "error:D-Bus library is required". When I check the config.log it suggests:
"Package dbus-1 was not found in the pkg-config search path. Perhaps you should add the directory containing `dbus-1.pc' to the PKG_CONFIG_PATH environment variable".
Dbus is installed on my system but I could not find dbus-1.pc. The only reference was the directory "/usr/share/dbus-1" so I added it to my $PATH variable. This did work.
How do I tell what comport a Bluetooth device is connected to? The software that i'm using needs to know what comport to connect to.
View 2 Replies View RelatedI'm using Ubuntu 11.04 and bluetooth turn/off is not possible. However, with 2.6.37 kernel it is possible. Now i have gathered whole info about the device(mac adress, usb port etc) from 2.6.37 and what i need is to somehow use those info in kernel 2.6.38 so that bluetooth works.
lsusb in 2.6.37 (while bt is on)
Code:
Bus 008 Device 001: ID 1d6b:0001 Linux Foundation 1.1 root hub
Bus 007 Device 002: ID 1241:1603 Belkin Keyboard
Bus 007 Device 001: ID 1d6b:0001 Linux Foundation 1.1 root hub
Bus 006 Device 002: ID 09da:8090 A4 Tech Co., Ltd
[Code]....
I get assigned an IP from the university's server. Every now and then, a student will plug in his router to the network trying to get wifi in his/her room.
And by doing so will start assigning IPs on the network, while rendering useless the university dhcp server, which has to cope with a higher number of pc's.
How can I specify to dhclient (or the linux system in general) NOT TO obtain IP addresses given by a specific mac address ?
I have set up a couple of postfix servers for my domains, but the only thing I am missing now is this: How to block the public sending mail from my email to my email? I have managed it with SPF, but surely there must be a better way, that returns "relay not allowed" to the client. The SPF method costs too much, since it must make a dns request for each mail. So far, I have not gotten many of these mails, unless when testing my mailserver, but as I see it, anyone should not be allowed to send mail from abuse@mydomain.com to abuse@mydomain.com.
Somebody must have thought about this a long time ago, and there is simply that little line in main.conf that I'm missing.. My setup is this (virtual): I have a primary mx, with postfix, courier IMAP/POP3 server, a user database, and sasl via saslauthd. I also have a secondary mail server (backup mx) with no sasl auth, but with a copy of the mail users in the virtual tables, but added as relay_* users instead.
Spamassassin and SPF testing is replicated too, so most of the stuff should work, but I simply cannot find a setting in Postfix that denies someone to mail FROM my address TO my address. When mailing from my address and out in the open, they are required to authenticate, but not when using one of my my domain addresses, and also targeting my domain addresses.
As said, It is possible with a strict SPF setting, but that is at a cost for every lookup. It would be quicker for postfix to lookup the sender and the recipient in the relay/virtual tables, and deny if both addresses were in the recipient tables, and sender is not authenticated.
When posting results from ifconfig, it shows the hardware address of etho, etc. Would you consider that to be a security risk ?
View 9 Replies View Relatedcan we block email address in a way that a user cannot login into multiple systems simultaneously, so that if a user logs in into a system (with ip address 192.168.1.22)and if he tries to login to into another system at the same time(with ip address 10.0.0.5) his previous system(i.e 192.168.1.22) has to logout automatically. Is there any predefined scripts for this.
View 2 Replies View RelatedI've been having trouble in a couple of distros (including when I had windows installed..) getting my bluetooth working,
I have a dell vostro 1720, and the specs from dell insist there's a bluetooth adapter installed, and the laptop even has a little light which (ostensibly) indicates data being transmitted via bt... and, it's enabled in the bios.
though, dmesg | grep bluetooth
gives no results.
I've read comments on dell bluetooth for other dists, but can't seem to find any deb-specific recommendations.
So, how do i confirm that this laptop does *in deed* have a bluetooth adapter.. and... if there is one... how do let the kernel know about it?
I'm struggling for pairing my laptop with my phone to dial up internet. On slack 13 I configured hcid.conf but on the new 13.1 with the new demon bluetoothd I don't know how to pair on command line.Documentation is not a lot, or I'm not able to find it.
View 7 Replies View RelatedI'm using CentOS 5.4 x86_64 on my Dell Inspiron 1440 laptop. How can I configure my bluetooth device through CentOS?
View 5 Replies View RelatedIs there an easy example of a block device driver I could follow as a guide to write my own module?
View 5 Replies View RelatedI have got my headset connecting to the system using the BlueMan interface. When I first did this it gave me a error about not being able to put the sound on-top of 'pulseaudio'. Well this well about the last straw between me and Mr. 'PulseAudio', so away he went. I removed the demon via this instruction. [ubuntu] Safely Remove Pulseaudio?
I then tried connecting to my bluetooth headset again, no errors. But the bluetooth sound device does not show up in any mixer, or application. What else do I need to do to get this working again. I know my hardware is fine, it used to work in the previous version of Ubuntu and it all works on my wifes Windoze XP computer.
I've a custom startup script myscript.sh placed inside /etc/init.d/ directory with below lines to disable usb bluetooth device "hci0". This happens on Ubuntu Lucid.
Code:
#!/bin/bash
echo "Disabling hci0 bluetooth usb dongle"
/usr/sbin/hciconfig hci0 down &
Here is the /var/log/daemon.log
When I rebooted it worked fine disabling the bluetooth dongle. But, later on, it gets enabled! I've lost it!
Code:
May 15 00:20:02 linbox bluetoothd[1539]: probe failed with driver input-headset for device /org/bluez/1537/hci0/dev_00_1F_DE_FE_7C_34
May 15 00:20:02 linbox bluetoothd[1539]: Adapter /org/bluez/1537/hci0 has been enabled
May 15 01:07:39 linbox bluetoothd[810]: probe failed with driver input-headset for device /org/bluez/752/hci0/dev_00_1F_DE_FE_7C_34
May 15 01:07:39 linbox bluetoothd[810]: Adapter /org/bluez/752/hci0 has been enabled
May 15 01:07:49 linbox bluetoothd[810]: Adapter /org/bluez/752/hci0 has been disabled
May 15 07:46:10 linbox bluetoothd[1452]: probe failed with driver input-headset for device /org/bluez/1450/hci0/dev_00_1F_DE_FE_7C_34
May 15 07:46:10 linbox bluetoothd[1452]: Adapter /org/bluez/1450/hci0 has been enabled
I used update-rc.d myscript S 26 2 3 4 5 . to update symlinks.
Since i have 10.10 desktop i386 on my asus 901 im able connecting over bluetoth to my sony ericsson fone and get internet working! but i mmust everytime connecting doing the autorisation with the bluetooth device everytime conecting i must write for example 1 on both devices - laptop and handy,it must be on the linux software how can i turn off this issue!
View 3 Replies View Relatedi just installed debian wheezy on msi cx640dx. my bluetooth device not working. here is some information about kernel and modules.
kenel version:
Code: Select all$uname -r
3.2.0-4-amd64
--------------------------------------------------
lspci
Code: Select all$lspci
00:00.0 Host bridge: Intel Corporation 2nd Generation Core Processor Family DRAM Controller (rev 09)
00:01.0 PCI bridge: Intel Corporation Xeon E3-1200/2nd Generation Core Processor Family PCI Express Root Port (rev 09)
[Code]....
I have laptop with bluetooth and I bought PS3 bluetooth remote. In windows this remote is working with EventGhost and I would like to use it in Fedora as well. This remote has to be paired without a pin code, which is how I paired it in windows.In Fedora, however, there is no such option "no pin" when using a standard way to connect bluetooth device.How can I pair this remote in Fedora?
View 11 Replies View RelatedI use fedora12-Gnome as my major desktop OS. Every basic need was fulfilled , until I tried Fedora12 KDE. The problem is with Bluetooth connectivity to my cell phone device.It connects to the cell phone and set trusted but I can't seem to see any option of "Browse files on Device".Does that mean in KDE I actually can not browse my Bluetooth connected devices?The same thing happened with Mandriva2010-Kde and Fedora13 Kde , I mean I guess It's related to KBluetooth app.
View 2 Replies View Relatedhow can i search bluetooth device in linux(redhat) without graphics
View 1 Replies View Relatedi have created dialup internet connection in windows xp using my bluetooth enabled mobile and bluetooth device ,,and my question is that how to set up the same procedure in my fedora 11 system.
View 1 Replies View Related