Ubuntu Security :: Make A Dongle To Access Install?
Apr 26, 2011
I'm a little security paranoid, there are a lot of times that my terminal is available to prying eyes and listless fingers. As a security minded individual, I would like to make sure to lock down my Ubuntu (11.04b3) install in one of the best ways I can think of, and require a dongle to access my box. Is this something any of you other security minded people have done?
What are other great ways to lock my terminal? I would like to make sure that not only the "average" user, but also the ABOVE average user will not be able to penetrate my system without a key. Let me know what you think, and other measures I can take.
View 9 Replies
ADVERTISEMENT
Oct 23, 2009
We use PAM to control access to our RHEL4 servers. We would like PAM to give a message, of our choice, when users who are not allowed to login try to login. PAM's default is to let the user try 3 times without any explanation.
View 7 Replies
View Related
Aug 19, 2010
I just erased WinXp and installed Ubuntu on old laptop. I intend to use it later ot connect to public Wi-Fi. Do i need to install a firewall GUI and make any special settings? I didn't encrypt home folder during installation. I probably should have done it. But i am already low on system resources (224MB ram, 1.2Ghz CPU). Would that use up any additional resources? Would it make computer run slower? Can i still encrypt the home folder after i installed the system?
View 3 Replies
View Related
Dec 13, 2010
I have installed Bind 9 on a new Fedora machine:
Code:
[root@***]# rpm -q bind
bind-9.7.2-1.P3.fc13.i686
It was yum installed and all went well without error but I'm not able to access bind on port 53. Selinux is disabled for this test, and the iptables have been saved to the below config in the INPUT chain:
Code:
target prot opt source destination
ACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED
ACCEPT udp -- anywhere anywhere udp dpt:domain state NEW
[Code].....
View 6 Replies
View Related
Jan 27, 2011
Objective: Create a guide to building the now orphaned pam_usb source for Laughlin and summarize the make/install process so that everyone can easily do their own make.
Sources:
http://pamusb.org/
1) Downloaded latest version:
Soundforge pam_usb
2) Resolved Dependencies:
sudo yum install libxml2-devel pam hal pmount python pam-devel hal-devel dbus-devel
3) Tried first make: cd ~/Downloads/pam_usb-0.4.2
[Code]...
View 2 Replies
View Related
Apr 7, 2009
I'm just curious as to what security measure's I should be taking to make my box a little less vulnerable? I'm still experimenting/playing with Linux, use the net, IM, download this and that and was wondering how secure fedora 10 was out of the box?
View 12 Replies
View Related
Mar 28, 2011
I have a CNet CWU-906. Stuck the installation disc in and nothing. What do I do?
View 2 Replies
View Related
Jan 19, 2011
After connecting the dongle, nothing shows up to let me know the dongle is connected.
The software downloaded can not be started.
View 7 Replies
View Related
Apr 13, 2011
I:m trying to install the module RTL819CU onto my kernel so that I can use my wifi usb dongle. When I try to install it I get a make error 2.
[code].....
View 2 Replies
View Related
May 2, 2010
i installed a mail server in RHEL 5 with postfix, dovecot, openwebmail, but i failed to install chpasswd 2.2-4 i have ./configure, make, make install, but nothing happens can any one help me with some documentetion for chpasswd for changing password for mail account
View 5 Replies
View Related
Aug 31, 2010
how to make tor run without the gui i would like to run it on a seperate machine that doesnt have GUI but it doesnt want to start with out a X
View 9 Replies
View Related
Jun 20, 2011
I just installed Gnome Shell in Ubuntu 11.04 through UGR Linux and everything works fine! The only problem is that I cannot run make and make install. I get the following errors:
Code:
alexandros@Autobot:~/gnome-shell/source/gnome-shell-extensions$ make && make install
Making all in extensions
make[1]: Entering directory `/home/alexandros/gnome-shell/source/gnome-shell-extensions/extensions'[code]........
View 3 Replies
View Related
Jun 7, 2011
I just installed Ubuntu 11.04 in my new netbook. I ran synaptic once, and pressed the refresh button. But while the package list was being downloaded, I tried to moved to a better location to get a better wifi signal, and my connection quit.
I tried again, but this time I had logged in to a network that had no Internet connection automatically. I tried downloading the package list again, before realizing I was logged on to the wrong network.
I logged on the correct network and tried again. Synaptic gives me the following message. There is not way through this. When I close the message synaptic quits.
E: Encountered a section with no Package: header
E: Problem with MergeList /var/lib/apt/lists/us.archive.ubuntu.com_ubuntu_dists_natty_main_bina ry-i386_Packages
E: The package lists or status file could not be parsed or opened.
E: _cache->open() failed, please report.
What's going on? How can I fix this?
View 9 Replies
View Related
Apr 14, 2010
I'm involved in a project to students set up a network security training lab using vmware. I want to simulate (in a very rough way) scanning through a poorly configured router or firewall. The easiest way I can think of to simulate this is to use a linux vmware image with two virtual nic cards to act as a firewall with the attacker on the outside network and a domain controller, web server, and database server on the inside network.
I would like to start students off with a firewall script that exposes everything on their internal network to the attacker. Is there an easy way to (mis)configure iptables to do this?. The model I'm trying to replicate is something like this. Attackers were on a 10.10.x.x network, defenders were on a 192.168.x.x network. As an attacker I could nmap 192.168.x.x and see every machine and every service on the defenders side even if they moved a service to an unexpected location. how I can implement a similar configuration using a linux image as firewalls/routers in vmware?
View 1 Replies
View Related
Jul 21, 2010
When I go the the Change Password dialog box and type my new password, the box seems to stall forever when I try to change my password. The Authenticate and Change password buttons are grayed out but the Close button still works and when I click on it the box will close without changing my password.
View 5 Replies
View Related
Dec 9, 2010
I have very little security and networking experience. What can I do to make my computer more secure?
View 5 Replies
View Related
Apr 3, 2011
I am running a ubuntu server for home use and am currently hosting a website for testing urposes I am worried because I have to leave my port 80 open for this to work. an Idea I have is to make it that port 80 is read only.
View 9 Replies
View Related
May 3, 2011
I got BT's repo's set and ready to install, tho I haven't installed them all just yet cause I not wanna crash the system, so I guess what I am asking has anyone sucecfully done this and what are the specific risks here. I have uploaded crunch and that works fine if I do it manually from the command line. the kernal seems to be update-able as well to BT's Kernal, I am not sure if I should do this or not in fear it might crash the Ubuntu system somehow. I guess what I might do next is install everything but the Kernal and install the executable links to the drop down menu by hand per the menu structure.
What I would ideally want is to have all the functionality of BT in Ubuntu which is pretty close to where I am at. Also, when I am done I want to make a live CD of this system so that I not have to do this ever again as it is very time consuming. What program would be used for that? Would any of my user data transfere? I don't want my user data to be transferred to the live CD just the raw system data etc. Anyone done this and would like to chat via skype? that would be best, but I'll take any help I can get at this point. I am using Ubuntu 9.10 for all this.
View 1 Replies
View Related
Aug 2, 2011
Is there any software i need ,to make it safer......
View 5 Replies
View Related
Aug 16, 2011
i use SHA-512 algorithm in the /etc/shadow File But i Want to use my lgorithm ..
how i can remove the sha-512 and use my algoritm ? Because no one can des encrypt it !! He Not Know the algorithm method
View 7 Replies
View Related
Mar 12, 2010
Is there anyway to make the lock screen password (accesible when clicking the power icon) different from the username password ?Or to lock the screen, with a different, User defined password, seperate to the Default one ?
View 3 Replies
View Related
Sep 11, 2010
I was trying to make my grub2 password enabled. So I went through several blogs and forums(every thing has same way). What I do is I add following line this the /etc/00_header file
[Code]....
View 2 Replies
View Related
Sep 26, 2010
I have Ubuntu 10.04 installed on my laptop which is wirelessly connected to the router. I have a PC which is Windows XP that is connected wired to the router.Now - I understand that Ubuntu is secure out of the box and so there is no need to worry about configurations. However, a past couple of updates in Ubuntu and I am seeing updates for Samba.I understand that Samba is used for file transfer between Windows and Linux.
Is Samba turned off by defult when Ubuntu is installed - despite having a WinXP computer connected to the router? Is there any way to make sure that Samba is turned off on my Ubuntu laptop?I don't want to transfer any files between my laptop and WinXP. If Samba is enabled, then a Firewall is needed to be configured (I assume), and to me that is sort of pointless with Ubuntu.For arguments sake, if Samba was enabled on my Ubuntu laptop - what would happen to my security?
View 2 Replies
View Related
Dec 20, 2010
Got PGP 6.5.8 for Linux working with Ubuntu 10.10. It involved converting two .rpm files to .deb with the alien utility and then installing by simply double clicking on the .deb files in the file browser invoking the Ubuntu Software Manager. I put the two .deb files in a tarball (tar.gz) and would like suggestions as to how to make the tarball available for other Ubuntu users to download.
View 3 Replies
View Related
Jun 15, 2010
I currently have a user on my Ubuntu server that I want to block completely from login. I know right now they login with SSH keys so they don't need to enter their SSH password. Can anyone tell me how to remove the SSH key login for their username and root user which I believe they use too and block SSH access alltogether.I will then just change the root SSH password.I'm terrified they will do some harm so I need them blocked out ASAP.
View 7 Replies
View Related
Mar 1, 2011
I am using Locked Lynx 10.04r1 on my
Pentium D 3.0GHz
512 RAM
[URL]
UPR does not access the HDD then from where am I getting Swap 245.3 MB in my System Monitor? Not only that it even uses it.
View 5 Replies
View Related
Jun 14, 2011
I am used to, on starting Ubuntu on my Netbook, being prompted with a password challenge to open my Keychain required to authenticate against the WPA enabled WiFi network.
Now, Ive recently installed Ubuntu on a desktop PC, along with some dev tools (Code::Blocks etc.) but it gives me a keychain access challenge about 4 times on startup. I can't seem to figure out which app is trying to (get my permission to) access my keychain, and for what Purpose.
(By contrast: on my Mac, when an application tries to open the keychain, the application, its certificate, and the search data of the matching key that will be accessed are all displayed making it much easier to determine what app is being naughty) How do I do simular diagnostics with Natty?
When I cancel these requests, nothing "breaks".
View 4 Replies
View Related
Jun 24, 2010
I have Ubuntu Studio installed on a separate drive. I recently built a new system and installed Windows 7 with Ubuntu Lucid (not Studio) onto a new and faster drive. I need to access the data on the Ubuntu Studio drive but all I get is the grub and lost+found directories along with a number of preempt files.
The drive was originally setup with LVM.
I mainly want to get the contents of my home directory copied to some other drive but can't reach it.
View 8 Replies
View Related
Jun 27, 2011
Code:
cat /etc/group | grep www-data | grep chad
chad:x:1000:www-data
the user www-data should have read access to my folder but i am still getting a 403 forbidden error i have done this before without issue anyone see what is wrong? i have a folder i use for file transfers over IM it is more reliable than the messengers file transfer abilities
View 5 Replies
View Related
Mar 24, 2010
Running this software:
Linux 2.6 on a hacked LaCie NetworkSpace
installed SSHd 5.4
installed Samba 3.4
installed lighttpd 1.4
installed ProFTPD 1.3
I want:
Login with my account and same password on all of those. When i use passwd, the change should be reflected on all of them.
I have:
Samba uses encrypted passwords, and i must change passwords for samba with smbpasswd.
lighttpd uses separate password file, must change by hand.
ProFTPD and SSH use system login (/etc/shadow).
So far i found two possible solutions, but can't tell if i understood them right or how to achieve them: use LDAP as auth backend If i could make LDAP my auth backend, provided this is possible at all, lighttpd would use this directly, and PAM would use it for system login. Nevertheless, actually this can't work as Samba uses encrypted passwords. Correct? use Samba password backend, then make LDAP use that If passwd, login, etc would use Samba, i would work everywhere with MD4 hashed stuff. Lighttpd would send plain passwords (HTTP basic auth), and query LDAP, which in turn makes an MD4 hash, and tests for Sambas passwd. Will this work?
View 1 Replies
View Related
