Ubuntu Security :: Software Removal For Hardening Desktop?
Sep 1, 2010
I use my desktop (VM) for online transactions only (it has no other purpose) & have removed most software. In adidtion want to remove Archive Manager, Calculator, Multimedia systems selector, Printing, sound recorder, Terminal (gnome-terminal), terminal server client, Ubuntu One. When I attempt to remove the listed software, I receive a waring message "no future desktop updates will include if you remove this". I want to know if this will impact the updates for Firefox as this is the only app I need. Can you please advise on any other consequences if I proceed with the above?
View 2 Replies
ADVERTISEMENT
May 25, 2010
I started an upgrade from Ubuntu 8.04 to 10.04 and it stopped with the message: Ubuntu desktop is listed to be removed but is on the removal blacklist. Then it restored back to 8.04. I don't know how to resolve this - it would be alright to remove the old Ubuntu desktop.
View 1 Replies
View Related
Jul 16, 2010
I just ponder can anybody shed some light to me how to manually disable service such as FTP,SSH,etc in which Bastille is doing.If all the services can be manually disable,which mean Bastille is just a tool to help newbies like me to use it.
View 9 Replies
View Related
Aug 14, 2010
I have a VPS (Ubuntu 8.04 server eition) and as such am stuck with using a software firewall.
i currently have UFW installed.
I would ideally like to have my firewall be a little rude, or rather just not polite. I know what i am asking will break the RFC, but i consider this ok due to the security benefits.
I would like to have my firewall
1) ignore (eg drop without responding)all packets that dont start with a syn flag
2)for all other traffic that is currently blocked, have it dropped (again drop it without responding)
If there are any other rules you can think of i would like to know them. I already have only the services i want open and the rest blocked.
View 7 Replies
View Related
Mar 22, 2011
When I google this I get a million results, most of which are either too in-depth to be practical or advertisements for one solution or another. Is there a general guideline for hardening a linux (kubuntu) system? A set of steps say, to close all ports and disable all listening services like you would do to a windows machine? I can hardly believe that there are NO vulnerable points of attack on a default kubuntu 10.10 install. I don't know very much right now so I'm looking for something to fill in the gaps and translate my knowledge of windows (in)security into a holistic view of how the penguin operates.
View 5 Replies
View Related
Mar 27, 2010
I'd like to limit ps aux command outputs to current user only(the one, who invoked "ps". I've recently saw this feature on FreeBSD systems and on at least one Linux system running on shell.sf.net. I run Linux 2.6.33, I wanted to know how to make that. Any advice? Googling around wasn't too successful, perhaps I don't know how to query that, recently tried with "limit ps outputs" "ps aux current user", etc... had no luck.
View 2 Replies
View Related
Nov 17, 2010
I run a compute cluster with only a few users. Occasionally a user will accidently run a job on the master node that runs out RAM/swaps then hanges up for a while.In /etc/security/limits.conf I have set memlock to 7.5GB (master has 8GB RAM) and maybe that is what lets the machine come back rather than hanging completely? Is this the right setting to physocally limit a single user from asking for more RAM than the system has and bringing down the system? Should I set this to 2GB or so or is there something else I can do??
View 4 Replies
View Related
Jan 20, 2011
Which is the best remote linux hardening GUI tool.Is it possible to use that tool from windows system?
View 8 Replies
View Related
May 31, 2011
So I was following the majority of this guideand sometime last night my computer went awry. First all my icons went blank, and I was unable to open anything. I had to reboot, and upon trying to log back in as a user I got an error /bin/bash: Command not found. I tried removing the user completely and starting from scratch but I am unable to remove the /home/user/.bash_history file. I even tried with root. I'm at a complete loss, confused. I know I did have to chomd 644 the entire /etc directory because I was getting some permission errors there.
View 11 Replies
View Related
Jul 6, 2010
I always use VNC to check my server for updates, and this morning I started the xvnc4viewer to vnc into my server and it keep asking for a password. I never setup a password because I do this local from my laptop, and I am the only one who uses my laptop. I had to go to my server and check the setting in System > Preferences > Remote Desktop and found them all changed. There was a password setup and there was a check mark in the you must confirm each access to this machine there some security update that changed all these setting? Sometimes when I do updates I don't know what is being changed on my server
View 9 Replies
View Related
Dec 7, 2010
Most of our machines have public facing and backend mgmt private nics(ie: 192 or 172 networks). I wrote a rule that matches source ip(our monitor on a 192 network) on udp 161 accept. I want to prevent listening on that port on the public. Is the source rule sufficient or should I match the interface and then source? I know there a many ways to do this. I need to verify from the public network with a port scanner?
View 2 Replies
View Related
Mar 24, 2010
So I've read a bit and it seems that this is okay and secure. But I wanted to double check here with everyone, because I trust here more than just about anywhere. I've read about the hipporemote (which is pretty cool) and I have it working. Basically I want to make sure my system is still secure.
1. I had to open a port on my firewall for the VNC connection.
2. I turned on the Remote Desktop
2a. Checked Allow other users to view....
2b. Checked Allow other users to control....
2c. Checked You must confirm.....
2d. Checked for password, and put in a password
2e. Checked Configure network automatically to accept connectios
So with doing all of that, am I ok? I think so, especially since it says its only accessible on my local network. But I just wanted to hear from people who know more than I do that I don't need to worry any more than normal about others accessing my machine. I'm mainly thinking 2e, I don't fully understand what's going on there.
View 9 Replies
View Related
Nov 24, 2010
What are best freeware tools available for benchmarking and hardening of the Linux Server?
View 8 Replies
View Related
Mar 21, 2010
Today I noticed my Desktop was being controlled remotely from over the Internet even though I had it set for 'local network only'. Foolishly I relied on this setting and hadn't specified a password or other security. The remote user had opened my Firefox passwords page and was perusing this when I pulled the plug.
All external checks confirmed that my router/firewall is actively blocking correctly. How could this happen? How can I prevent this in the future? I had recently install the Firefox extension for Weave Sync and wonder if that had anything to do with it?
View 9 Replies
View Related
Nov 26, 2010
I just had a window pop up on my desktop saying my pc was being remotely controlled. Ubuntu 10.10The pc shutdown by itself, and I disconnected it from the net.I rebooted and uninstalled the remote desktop app.
View 7 Replies
View Related
Feb 16, 2010
I am attempting to set up a VNC with ssh tunneling for remote desktop between my laptop (opensuse 11.2) and my desktop (kubuntu karmic) and using the instructions here: [URL] and here: [URL] but I am having trouble getting remote desktop to work once I establish the ssh tunnel
I start out with
Code:
ssh <user@remotepc> -p <non22port> -L 5900:localhost:5900
That seems to wok and connect properly
The problem comes when I try to use a remote desktop client on the laptop to initiate the VPN desktop sharing and point it to
Code:
localhost:5900
Thats when I get a notification on the host saying:
Code:
Refused uninvited connection attempt from 127.0.0.1
And on the laptop I get:
Code:
VNC server closed connection
I have tried messing with the few settings in Krfb, but none seem to have any impact. How do I open localhost:5900 and allow VPN tunneling to the host machine?
View 2 Replies
View Related
Mar 12, 2010
How to detect intrusion in my desktop ubunta 9.10 version ? which command that could direct tell me about any change in my files ? I would like the procedures that protect my system from intrusion , i am using firestarter and keep tracing the network by using netsta -tap ?
View 2 Replies
View Related
Mar 27, 2010
I installed ubuntu a few days ago, today I got like 250mb of security updates to I let them run, then restarted, now it keeps running in low graphics mode, everything looks rubbish and I have no desktop effects, the sound has also stopped working. Everything was great prior to this, I was beginning to love the switch from ms to ubuntu. The sound/video are both via hdmi so I am imagining its something to do with the graphics. I would wipe the system and start fresh but it took me so long to get my sound and wireless working.
View 4 Replies
View Related
Mar 1, 2011
Which is more secure, webmail email providers such as Yahoo or Linux desktop email clients such as Evolution?
View 9 Replies
View Related
Jun 5, 2011
I was sitting watching a TV show on the internet (streaming from channel 4) and all of a sudden I get a request from an unknown IP address, outside of my local network attempting to access my ubuntu desktop, I obviously declined straight away and stupidly didn't take note of the IP I've checked my firewall settings and no ports are being forwarded, everything is as it should be. I am running Ubuntu 11.04, and a little bit concerned. As of now I have completely disabled remote desktop on my laptop.
View 1 Replies
View Related
Aug 1, 2011
I have been using Remote desktop on Windows 7 to view and control my Ubuntu machine in the office quite happily over the office network. No problems there. I wanted to access it from my home connection so I read that I could do this by opening a port on the ubuntu machine's firewall. So I installed a firewall. Didnt see any way to open a port easily so I uninstalled it and installed another one. Same issue so I uninstalled that and then left it. I then tried to Remote Desktop the Ubuntu machine from my Windows 7 laptop and ERROR I can no longer connect.
View 6 Replies
View Related
Apr 27, 2010
I was working on my desktop under Ubuntu 9.10 when I got a message in the the upper right telling me that my Remote Desktop Connection had been activated. I don't know who it was, but they proceeded to open up a terminal and start typing a bunch of stuff. This scared the living @#$^ out of me, so I didn't really pay attention to what he was doing and immediately dove for the reset button. I disconnected my network from the web and found that RDC was NOT password protected.
Now, I probably did this a little while ago while I was playing around with it, but I also set up an account with dyndns.org. Would this possibly increase the number of attacks on my network? Just in case, I have removed my listing. Also, would any of this incident be logged somewhere? How/Where would I look to see if I'm being poked and prodded for another security hole?
View 6 Replies
View Related
Jul 10, 2010
With Synaptic I can not "Mark for Removal". In terminal I tried "sudo synaptic", "gksudo synaptic", it doesn't work. What is wrong?
View 1 Replies
View Related
Aug 31, 2010
I just installed ubuntu 10.04 on my spare computer.Everytime I try to install or remove something (through the ubuntu software center) I get to 90% and I get an errormessage. The software seems to be installed, so I'm not sure what the deal is.The programs I tried to install:- chromium- skype- thunderbird- ubuntu restricted extrasThe programs I tried to uninstall:- evolution
View 8 Replies
View Related
Oct 26, 2010
I have installed the newest version of Peppermint Ice (Ubuntu derivative) on my Eee PC 701's internal HD and would like to get some more space on the drive (2GB total) by removeing packages like hunspell-en-ca, but synaptic warns me that language-support-writing-en will be removed. How can I force removal of this and similar packages like myspell-en-au, without uninstalling English language support?
View 2 Replies
View Related
Jan 12, 2011
I've been having problems with AWN's shiny switcher (the desktop switcher app for AWN). On startup it often, but not always, appears as two identical switchers side by side. After changing any of the preferences of the switcher it returns to normal. After restarting the problem continues. I have tried complete removal of the program, deleting any files or folders that look like they have anything to do with AWN settings, and restarting. But after reinstalling it seems that all the settings stay the same. Where exactly are AWN settings saved, specifically the settings for applets? I will try to post a screen-shot of how the applet appears when I restart later.
View 6 Replies
View Related
Jan 14, 2011
I have recently installed what I thought was going to be Ubuntu client on to my laptop but it turned out to be server 10.04. I kept meaning to uninstall it and install the client version but have left it so long that I have forgotten the username and password. Is there any way around this and how do I go about uninstalling the server edition to install the client?
View 9 Replies
View Related
Aug 14, 2011
I have a Toshiba Satellite L300 with 160GB HD dual booting 11.04 and Vista. I have now got VB working to run the two programmes I only need windows for. So my HD has 90GB for Vista and the rest is for 11.04, what is the best way to remove Vista and leave the HD free for Ubuntu only? Do I just back everything up to an external HD and reinstall?? (But I have a few problems get some things to work) So not sure if this is the right option for me or is there another way?
View 4 Replies
View Related
Mar 31, 2010
I now run 9.10 but I used to run 9.04. Accidentally made my 9.10 pretty small, and I was basically being lazy and leaving it, but I now want to free up the 80 GB I left on 9.04. Is there any way to just delete the partition, I have all I need from it.
The path from what I can tell for it is /dev/sda1
View 12 Replies
View Related
Mar 25, 2010
I am at my own desktop and I have root access on my own desktop.
I also have root access on a Desktop Ubuntu system (192.168.5.10) on the LAN. I need to create another desktop user account on that 192.168.5.10 system.
So I logged into that system with: ssh -Y myself@192.168.5.10
Then I did: sudo users-admin
This brings up the Users Settings but the Add User and Unlock buttons are disabled. How do I enable these buttons?
View 5 Replies
View Related
