Ubuntu Security :: Hacker Accessing Remote Desk?
Aug 21, 2010
I had remote desk running on a machine and I went downstairs the other day, turned it on, and someone was controlling the machine. Of course that's partially my fault since there was -zero- rd password set. However, my question is how did this person figure out my IP and get past the router to the machine? I don't have any forwarding setup. My router admin password is (has always been) strong. I guess my question now is: Is there anyway to restrict rd access to the local network?
View 9 Replies
ADVERTISEMENT
Mar 17, 2011
I run a system that users may log into either remotely or physically. Multiple users may be logged in simultaneously because of the remote access, but only one user can be physically logged in at a time.With the current setup, however, if the physical user inserts a flash drive (which the OS mounts automatically) then the remote users gain access to the removable media.
View 6 Replies
View Related
Dec 2, 2010
I manage a dedicated webserver running OpenSuse 11 which is currently hosting about 30 sites. I have never had any big problems until these last 2-3 months. One site after the other was being hacked and the unwanted visitor installed all kind of php shell scripts followed by torrent servers, ... etc. All hacked sites were sites using Joomla, so what I did was to close down those sites one by one. Well, I guess we all know Joomla is not a great solution if you just install it out of the box like those users were doing.
When trying to trace the intruder only some african junk IPs and IPs from a company selling VPN connections thru paypal show up (yeah great, love those guys ... do they really think that serious VPN users will pay with paypal) I checked all apache and FTP logs (yes, he even managed to get some FTP login) but only those damn 'proxy' IPs come up. The weird thing is that the guy seems to know how the server was 'build' since he manages to copy stuff from one site to the other. That is why I am suspecting someone who worked for a clients company, but I need proof. One way would be to let him hack a site and try to feed him something that would make him traceable, but what?
View 9 Replies
View Related
Sep 4, 2010
Well, I was randomly taking a look at my vsftpd log today, and came across something unusual to myself. About a week ago a computer tried to connect to my computer repeatedly with bogus default usernames. There were many attempted connections with usernames such as 'user', 'root', 'linux', and 'login'. Probably about 1000 attempts, within about 2 seconds of each other.
View 9 Replies
View Related
Dec 4, 2010
I have a server connected to the internet placed in a DMZ that was running ProFTPD. A couple of weeks ago there was a security threat uncovered that would grant access to external users through a buffer overflow. Of course I patched my ProFTPD quite often after that to secure my server. Now my problem is that the servers of ProFTPD were compromised and that source code with a back-door was released. To make matters worse compromised systems notify the hacker they are infected. is there any way to ensure I don't have a root-kit installed short of reinstalling the system?
View 4 Replies
View Related
May 22, 2011
I would like to read and write to a folder in an Ubuntu VPS remotely via a Windows Explorer (Windows 7 Ultimate). Considering that my VPS has very little resources (128MB RAM), what program should I use?
View 2 Replies
View Related
Apr 30, 2010
I cannot access a remote server(Ubuntu) using ssh or even using sftp from my ftp client. I've been accessing this server regularly for many months with no problem until now. There is a web server running and that's OK, so no problems there. I asked the owner of the server if he could access using ssh from within his LAN, which he could! So openssl is working from within the LAN, but not ouside of the LAN. I access the remote server by using one of [URL] free domain names. I'm aware that this service requires renewal or activity at least once a month and as far as I know this is up to date and working OK.
Is this a router gateway problem? I suspect that port 22 has been blocked, but what could block this port? It's been working well for so many months. As far as I can tell the owner of the server/LAN has not been tampering with the router, so what could be blocking port22? I'm currently accessing the server using vnc4server.
Another really weird thing is that when I access the terminal on the remote server via vnc4server and I ssh back to the server using one of [URL] free domain names, it works! So as I understand ssh is accessing itself by going out of the LAN and back to itself. This would suggest that port22 on the gateway router is working. But when I try to ssh from a pc outside of the LAN, I just get timed out!
* openssl working from within the LAN but not outside of the LAN.
* sftp not working.
* domain name from dyndns.com working and up to date.
* Web server is working OK.
View 14 Replies
View Related
Mar 2, 2011
i have made a java web server which works on localhost.but now i want to capable it handling many clients at a time.so clients running on different computer need machine name or IP address of server computer.How can i do this in java?
View 1 Replies
View Related
Apr 10, 2010
I have been using the Centos 5.4 live CD to do volume resizing etc for root volume which can't be readily dismounted. I have also been using it to clone systems. It is a really great tool - even offering the same GUI interface I have come to know and love...One added feature which would be great for me would be to package "nx server" and/or "webmin" with it so it can be used to maintain remote and "headless" servers.
That way - when heavy duty maintenance is required on a remote system - the sysadmin (me) could ask the site owner to boot with the live cd - and do the rest remotely. Also it would make maintenance of headless servers easier.I'm not sure whether the live cd is inherited more or less complete from the upstream provider - or whether it is completely re-packaged at centos. I'm also not sure how technically difficult it is to re-package a live cd with extra services.
View 2 Replies
View Related
Jul 24, 2010
I would like to experiment a "green" idea of virtual desktop where multiple users are served by a single powerful machine.
I have a server running 24/7. The monitor of this machine is turned off most of the time and the OS is on the login screen.
Other users, in the same local network, use less powerful machines, which could be a thin client or an old Pentium 3 machine. They access their accounts remotely and work with the GUI as if they were sitting in front of the server. Each user sees their own desktop (different themes, screen resolution, etc.). And of course it can happen that several users could log in at the same time.
The usage is modest: mostly web browsing and the usual default applications (office, wine, gimp, etc.). In particular no games or any demanding applications. The users want to use their desktop in graphical mode only.
Question: How do we call this way of using a server? Is it possible with Ubuntu? And how to implement it?
View 3 Replies
View Related
May 22, 2010
I'm thinking of experimenting abit with my desktop and I want to create a hacker looking desktop and thought I'd do this by having lots of terminal apps, I'd like to hear some of your suggestions on the following stuff.
1. What WM should I use (I'm thinking something in a style of awesome wm,that is a tiling one)
2. What terminal client should I use (the gnome terminal doesn't look very good with the menubar, I guess I could remove it but still any alternative would be cool.
3. Some generic apps that are ran in the terminal (A nice media player, IM client (must have ICQ and MSN support), file manager, IRC client, mail client, generic gadgets like a clock for instance etc.)
View 9 Replies
View Related
Jul 6, 2010
I always use VNC to check my server for updates, and this morning I started the xvnc4viewer to vnc into my server and it keep asking for a password. I never setup a password because I do this local from my laptop, and I am the only one who uses my laptop. I had to go to my server and check the setting in System > Preferences > Remote Desktop and found them all changed. There was a password setup and there was a check mark in the you must confirm each access to this machine there some security update that changed all these setting? Sometimes when I do updates I don't know what is being changed on my server
View 9 Replies
View Related
Jun 8, 2011
I was looking for:how to access my Linux machine(OpenSuse 11.3) that is being hosted at my hoster company from my home Win Pc, I found TightVNC , but I am confused, should I install it on both systems ( viewer and server) ? .. what about the VirtualBox , can i Access with that tool or it is only for mounting the local Virtual Machines?
View 2 Replies
View Related
Mar 24, 2010
So I've read a bit and it seems that this is okay and secure. But I wanted to double check here with everyone, because I trust here more than just about anywhere. I've read about the hipporemote (which is pretty cool) and I have it working. Basically I want to make sure my system is still secure.
1. I had to open a port on my firewall for the VNC connection.
2. I turned on the Remote Desktop
2a. Checked Allow other users to view....
2b. Checked Allow other users to control....
2c. Checked You must confirm.....
2d. Checked for password, and put in a password
2e. Checked Configure network automatically to accept connectios
So with doing all of that, am I ok? I think so, especially since it says its only accessible on my local network. But I just wanted to hear from people who know more than I do that I don't need to worry any more than normal about others accessing my machine. I'm mainly thinking 2e, I don't fully understand what's going on there.
View 9 Replies
View Related
May 14, 2010
After trying Truecrypt, LUKS, and Ecryptfs I decided to try NTFS encryption. Now, on a dual boot computer from Ubuntu I can browse the encrypted folders but can not open the encrypted files. All attempts produce access denials yet the Unix file permissions appear to be "0777" (owner, group, and world readable-writable).
Is there someway to get Ubuntu's NTFS software to recognize and decrypt the encrypted files? Would a different NTFS package work such as NTFS-3g?
View 2 Replies
View Related
Jul 31, 2010
I have a drive that originally was used with a Linksys Network Storage Link (NSLU2), then stopped working with it. Now I'm trying to get the files off the drive. When I USB connect the drive to Ubuntu, I can see the files, but I'm unable to open them or copy them. The error message is: "Error Opening File: Permission Denied". I did have permissions set on the NSLU2. So far I'm not able to find a way to get around the permissions issue in Ubuntu.
I have used apps like EASEUS Data Recovery and Recover My Files. It appears that they are finding the files and are able to access them, so I know it can be done. I don't mind spending some $, but these apps are taking a *long* time to run. If I could properly access the files in Ubuntu long enough to copy the files, I think I'd be all set.
View 2 Replies
View Related
May 8, 2011
I'm trying to set up an unprivileged user on some field systems running 11.04 with the standard Gnome shell (rather than Unity), and ideally that user would not have access to the command line. The user can log in through GDM (but not the text consoles) with no password, so I need to provide the absolute minimum of privileges; basically the user should only be able to run one program.
I've already set the /desktop/gnome/lockdown/disable_command_line key with gconf-editor for that user, which successfully disabled the "Run Command" dialog. Unfortunately, even though the description of the key in gconf-editor says "prevents the user from accessing the terminal...", the terminal emulator is still accessible from the Applications menu, and I haven't been able to find a good way of disabling the terminal or removing it from the menu. The only thing that occurs to me is an ugly hack: replace the gnome-terminal binary with another that checks to make sure the user is not the unprivileged one and then starts gnome-terminal.
View 5 Replies
View Related
May 7, 2010
I want to restrict a user accessing my ftp site.
1) i can block the user in ftp configuration file
2) i can block the user in PAM or /etc/host.deny
i heard that if pam is denying the user and ftp is allowing the user the user can get the access it means that ftp conf file is stronger than host.deny
View 6 Replies
View Related
Jan 25, 2010
Occasionally my machine displays the following warning whenever left to itself for an hour or so. "www.windowsvistatestdrive.com:443 uses an invalid security certificate. The certificate expired on 09/16/2009 10:52 AM. (Error code: sec_error_expired_certificate)"
I am not trying to access this site. It is not always the same url. My machine, described below, is networked to an XP machine which recently had to be recovered after a viral attack. Since I am not usually interested I decline to use the certificate and the warning goes away.
View 2 Replies
View Related
Jan 25, 2010
If I enable Wi-Fi on my laptop and use a public Wi-Fi hotspot at an airport, will a firewall such as UFW be enough to stop hackers accessing my personal files which are NOT transmitted over the Wi-Fi connection?
View 9 Replies
View Related
Feb 3, 2011
I am trying to keep linhost274.prod.mesa1.secureserver.net (IP 208.109.14.77) from accessing my machine. Several times per evening (as far as I see) it connects to my machine, each time on a different port, and pushes up data transfer. I can't find what it does, it just pushes a GB or more over the line and then stops. I try to keep it out with UFW:
[Code]...
View 6 Replies
View Related
Aug 9, 2009
Today I noticed my sdl modem flashing away when I had no internet access programs active as far as I was aware. I did a 'ps ax' to see what was running. I saw nothing that warranted internet access. I didn't recognize the gvfsd-computer process and tried finding documentation about it on my system. I began to feel uncomfortable when I couldn't find anything showing what it was. Finally, I killed the process and the internet access immediately stopped. Research on the net showed that gvfsd-computer is a file browser. I find this very disturbing. Why was a file browser accessing my disk drive (the light was flashing) and why was it accessing the internet without my requesting such an action?
View 5 Replies
View Related
Jan 6, 2010
I have a packardbell pc desk top and the fan has stopped working. Is it an easy enough fix for me to do it myself it install a new fan? I dont have much experance so dont want to do any damage.
View 2 Replies
View Related
Jul 12, 2010
I have just reloaded 10.04 and its doing something ubuntu never did before if i leave computer for about 5min and come back it wants me to use password to get back onto desk top how do i uninstall this feature i know i have to at log in use password thats ok ,
View 2 Replies
View Related
Jul 6, 2011
i want to try UBUNTU but not give up my Mac OS yet. can i set up a UBUNTU desk on my Mac & keep it separate from my Mac OS ? (what are the green coffee beans about ? can i have green tea instead ?)
View 5 Replies
View Related
Jun 29, 2011
I was installed xming application on windows XP & Windows 7to access Linux server's GUI session and i was able to access it using root account but when ever iam trying to access GUI using normal account it is giving some error.I am testing this since it is a freeware.
View 7 Replies
View Related
Jan 30, 2010
Has anyone had or run into a problem with Very large (2.75sq) Icons on the desktop at boot up that you pretty much can not do any thing with anything. It happened just after a update and then it restarted, which was weird cause I can't remember the last time Ubuntu had to restart after an update. Sad thing is I can't recall what the update was but I do know that It asked me for permission to restart Mozilla then the whole thing shut down for a reboot
View 1 Replies
View Related
May 26, 2011
I want to sync several directories between my laptop and desktop both at home and away from home. It seems like the tool to use for this is unison (I use rysnc for backups, but union seemed, better for this sort of thing - let me know if I'm wrong).
I found several posts that appear promising, however I was little confused about the details as I don't have much networking experience up to this point.
[URL]
1) Is a reverse ssh connection the way to go? If I only wanted to do this on my home network I could just use ssh right, however in order to get around the router outside my home network the reverse ssh is necessary?
2) How do I handle changing IP address of my laptop?
View 1 Replies
View Related
Jul 2, 2010
It is really clear that someone spent a whole lot of time figuring out how to show the desktops in an animation when you switch from one to another. Unfortunately, that person did not think about how annoying that might be when one needs to switch back and forth between a couple of desk tops. I am forced to hold my thought for several annoying seconds while this unhelpful animation shows me the desktop path I have taken. Even worse, it also often leaves holes in my windows that remain obscured until I change window content. Sometimes, it is simply too inconvenient or even nearly impossible to refresh the content. So I have to live with this hole in the window. I searched for "switch" in my desktop settings and I've googled for "switch desktop animation", but I'm not thinking of the keyword that the inventor thought of. I don't know how to turn it off.
Brief version: How do I turn off this misfeature?
View 3 Replies
View Related
Jan 8, 2010
Were abouts is Desk 2, as in, right click program, move to another work space, Desk 2, so how can i find this desk 2?
View 2 Replies
View Related
