I have changed my sshd banner in /etc/motd code...
However, I would also like to change the banner that someone sees if they attempt to use another method of connecting to my ssh server (telnet, for example). Currently, this is what happens code...
Where do I edit the telnet/ssh banner, so it isn't so easy to fingerprint my os/ssh version simply by using something such as telnet?
I'm trying to secure a workstation according to the DISA STIG and updated this machine from f10 to f12 to take care of a lot of kernel and openssl vulnerabilities.
I've gone into the Login Manager by running /usr/bin/kcmshell4 kdm --lang en_US as root, turned off themed greeter to enable the Dialog tab and inserted the login banner in the Greeting field. I checked the Xresources file in both /etc/kde/kdm and /etc/X11/xdm and the xlogin*greeting: field has my banner.
However when I restart the machine I am not prompted by the banner and when I select a user I am not prompted by the banner.
I'm not sure if this could be the issue but I get errors when launching kcmshell4:
Quote:
I have to sudo -s from the user with uid 1003 to root. does this need to be run from real root?
I'm trying to edit my wired connection but the edit and delete buttons are grayed out. How can I go about getting the available? I want to make sure my connection is checked for all available users. I was able to edit my wireless connection on my laptop fine, just not my desktop.
View 3 Replies View Relatedwhere i can edit the network connection in LXDE desktop? i dont found this option.
View 2 Replies View RelatedI have a webGUI in php where users can make certain settings. How can I edit a file on a remote server from my php webserver? Currently I use my FTP client, vsFTPd and a chrooted user in a specific directory where the file resides. I think this is pretty save as long a nobody else uses my FTPclient. How can I make changes to this file on the remote server from within my php-code on my webserver ?? (so that not I need to make the changes but my users can do it from a html-form) I found this but the credentials for the FTP-connection are plain :
<?php
$file = fopen ("ftp://loginasswd@server", "w");
if (!$file) {
echo "<p>Unable to open remote file for writing.
";
[code].....
I use https for the webGUI, but I guess this does not mean the connection to the remote server will be encrypted also ? Can I use my FTP-user (has no shell) from within php to edit the file ?
I'd like to use NetworkManager on a freshly installed CenntOS 5 on laptop Lenovo ThinkPad T61p. I followed: [URL] Everything went OK, until I selected my active LAN connection in "Edit Connections". After clicking on "Edit", it's not possible to change anything - all is grayed-out. I'm guessing it's a permission problem. But I don't know the internal structure of NetworkManager and what files to look at. I was also expecting that after stopping the network service "Syetem->Admin->Network" would be inactive, but it isn't. Shouldn't the old network manager be uninstalled as well?
View 18 Replies View RelatedI'm working in Ubuntu 9.04 Desktop with Apache installed. I have a directory /var/www/test:drwxrwxr-x 5 root www-data 4096 2010-01-04 13:51 test And I've added myself as a member of the group www-data. Problem though is when i go into /var/www/test I still can't do anything, whether it's creating a new file or directory or editing files there. The files within the directory are also 775 and setup under group www-data.
View 2 Replies View RelatedWhen I try to edit p2p1 with nm-connection-editor, it aborts back to the command prompt with the following error.
Quote:
# ./nm-connection-editor
(nm-connection-editor:1879): GVFS-RemoteVolumeMonitor-WARNING **: cannot connect to the session bus: org.freedesktop.DBus.Error.NoReply: Did not receive a reply. Possible causes include: the remote application did not send a reply, the message bus security policy blocked the reply, the reply timeout expired, or the network connection was broken.g_dbus_connection_real_closed: Remote peer vanished with error: Underlying GIOStream returned 0 bytes on an async read (g-io-error-quark, 0).
[code].....
My /etc/sysconfig/network-scripts/ifcfg-p2p1:
Code:
# New Fedora Core 15+ Ethernet naming convention: use "ifconfig -a" to find
# new port name
# Use "ethtool -p port_name" (ethtool -p p2p1) to blink LED's on backup of
# port jack to find which port goes to which name
[code]....
I performed an apt-get upgrade and now my SSH Welcome Banner looks like the following. You'll notice that the banner repeats itself. The bottom half is acutally "static" and doesn't change. The top part is what I would normally see. How do I remove the bottom portion of the banner? Or modify the banner? Using Ubuntu Server 10.04 LTS
[Code]....
I just upgraded to 10.10 via 10.04 from 9.10, and now I'm getting an odd banner when logging in via ssh. I checked my /etc/sshd_config and it looks like Banner is disabled by default (commented out), and PrintMotd is set to no.
Code:
myuser@mylocalbox:~$ ssh myremotebox
Linux myremotebox 2.6.35-22-generic #33-Ubuntu SMP Sun Sep 19 20:32:27 UTC 2010 x86_64 GNU/Linux
Ubuntu 10.10
[code]....
I recently was able to network 2 computers at home and I wanted to make my password more secure. When I try to edit my password via System>Administration>Users and Groups, it doesn't workI am able to edit my user settings. When I change my password I enter my old one and it accepts my new one. Problem is when I try to install programs, login and do other things it only accepts my old password. How can I change my password?
View 3 Replies View RelatedI would like to do the following: Create a banner for any user logging in through ssh which warns him/her about the number of processors being used already by other users (or conversely the number of free processors). For example, if a user logged in he would then see a message like: Warning! 7 out of 8 processors are in use.I already figured out how to do a banner and with ps -e -o pcpu I can get all processes' %CPU usage. I think I would like to count the number of processes which have more than 90% CPU usage and output this number ("7" in the example) in the banner
View 7 Replies View RelatedThe file browser Nautilus displays a banner with a statement about what type of media is connected, what files are stored on the media (music on a CD, movies on a DVD, photos on a camera, etc.) and a button to open the suggested application when I insert or connect media to the computer and choose to open it in the file browser. I did not find this behaviour useful, yet. (There already is the pop-up window that is displayed when media is inserted or connected which asks what application to open.)In a specific case, where I connect my cellphone to the computer there are two notices:"The media contains digital photos [Open F-Spot Photo Manager]" and"These files are on a digital audio player [Open Banshee Media Player]"It is little useful. One is okay, but two notices take up too much screen space for displaying files.
View 4 Replies View RelatedI have modified /etc/issue with the following:
Code:
Today is d @
So when logging in locally you get todays date and time. I want this for SSH users as well
[code]....
configure SSH to display a warning banner at login
View 1 Replies View RelatedMy F12 is connected to a Xerox DC432 printer on the network. The problem I'm facing is that banner sheet cannot be disable. The configuration setting on Administration->Printing showed that banner is off by default. "/etc/cups/printers.conf" file also have "JobSheets none none". I had the same problem with F11. Is there any step I'm missing? It doesn't seem to be problem of the printer itself because I could do this on a Windows OS.
View 1 Replies View Relatedto be more secure, i would like to replace Debian Banner relating OS version etc by another one
View 1 Replies View RelatedI run apache on a non standard port(82).I just installed unity to play around with it and while I was playing with it I installed prixfixe through software center to edit the menus.While prixfixe was installing my computer was acting very slow which was odd, but not completely unusual.During this time I ran ps aux which showed that my apache server was taking up most of the processing power.I was about to stop my web server,but I waited just in case the web server was updating a few things (I run ampache).
My computer finished installing the software and then I ran some command with sudo (I can't remember what the command was), but it threw back some message saying "setid blabla". I restarted my computer and when I got to my gdm my normal user account did not show up. There were no accounts and the restart/shutdown buttons didn't work.Now I'm running on a livecd and checking out my apache access logs, apache error logs,and kernel logs,but nothing looks out of place..
I have cups 1.4.1 on ubuntu that act as print server that receive print request from Oracle Applications 11i on hp-ux and sends them to windows clients.
Clients printers are from different vendors like Samsung, HP and Kyocera.
Some printers print request with Cover Page with content of "job-id job-name job-originating-user-name job-originating-host-name job-billing" like Samsung ML-2250 or HP Laserjet 1100
but in Kyocera print without banner.
CODE:
cd /etc/X11/gdm
awk '/^#?Greeter=/
[code]....
I want to automate my System-installation. So i try to make a Script that will generate the /etc/motd. Now i have the Problem that the script has some variables and after the "Hostname, OS, HW, IP" the "stars" are anyware, but not there they should. The most problem is the $OS this string can verry long or verry short be. Fedora release 12 (Constantine) or RedHat 5.4 i can do that after the variables place the "stars" on the write position?
Script
Code:
#!/bin/bash
[code]....
I had some trouble with the netinst CD and I had to install lenny with the 6DVDs instead. My internet connection only works after I edit the interfaces and resolv.conf files manually. So my question is: can I do that from the netinst CD before it actually needs the connection to install everything? (otherwise I'll just need to use the DVDs.
View 4 Replies View RelatedHaving a little issue with creating a login message banner in RHEL6 that uses two buttons. One for Accept which logs the user in. The second for Cancel which immediately logs the user out. I've modified the /etc/gdm/PostLogin/Default file to have the script, posted below, and it worked perfectly fine in RHEL5. But in 6, when you click Cancel, the user is still able to log in. It even states in the system logs that the user cancelled the login.As you can see, I have the script using the 9th field of the user's env to get the PID, and using the kill command to end the process, which should be logging the user out right away if they click the Cancel button. This works in 5 without issue (though I used -f5 in RHEL5, had to move it to -f9 for RHEL6).
View 4 Replies View RelatedI do not, and will not, use this feature. This banner to open the configuration is just using up space.
I am sure that this is very simple but I can't seem to figure out how to get the bugger off of Nautilus.
sudo ssh -L 750:192.168.123.103:873 username@192.168.123.103It does exactly what it's supposed to do, but how do i edit / remove this rule?Is there some config file where i can alter the forwarding? How does it get stored?Im using Ubuntu 10.10Server Edition (allthough i recon it would be pretty much the same across all versions
View 5 Replies View RelatedI'm looking to edit my grub.cfg file to add the "pci=routeirq" code to the kernel line so I can configure my modem in Ubuntu. I'm happy with assigning a temporary permission to myself over the root file so I don't accidentally alter it later.
View 3 Replies View RelatedMy host is ubuntu 9.04 and the guest is winxp sp3. I need to use QEMU to monitor the network communication for security researches. But I failed to establish the connection between the host and the guest.
To build a TAP connection, I input commands as the following t.
How should I establish the TAP and Bridge connection in the QEMU?
Is there a way to use the firewall to essentially lock certain programs like firefox and transmission to my vpn connection-so that in the event that my vpn connection goes down these programs do not use my default ISP Internet connection.
View 1 Replies View RelatedI was hoping to set up a Kubuntu 10.04 Chroot on a PC with no internet access (I only have dialup anyway, not Broadband). All the information I have been able to find refers to downloading debootstrap in order to do this.I purchased a set of DVDs with all of the Ubuntu packages on them and created a single repository of them on my harddrive.Is there some way that I can create the Chroot using the packages on my hard drive without having to access the internet to download stuff as I do it?
View 6 Replies View RelatedI'd like to buy some stuff from the Software Center but I don't see how to confirm a valid certificate or see any indication of a secure connection on the screen where I enter my credit card info. Of course, I'm sure the page IS secure because who would design it otherwise (especially considering how our patron made his first fortune), and I could sniff out the network connection, but I don't see any information provided to the end user.
It seems like it could open up Canonical to all sorts of legal issues to not have security info and a privacy policy easily available in the payment section of the USC. Maybe it's there and I've missed it somehow. maybe it is on the next page, but I didn't press the "submit" button.