Ubuntu Security :: Which App Is Trying To Access My Keychain
Jun 14, 2011
I am used to, on starting Ubuntu on my Netbook, being prompted with a password challenge to open my Keychain required to authenticate against the WPA enabled WiFi network.
Now, Ive recently installed Ubuntu on a desktop PC, along with some dev tools (Code::Blocks etc.) but it gives me a keychain access challenge about 4 times on startup. I can't seem to figure out which app is trying to (get my permission to) access my keychain, and for what Purpose.
(By contrast: on my Mac, when an application tries to open the keychain, the application, its certificate, and the search data of the matching key that will be accessed are all displayed making it much easier to determine what app is being naughty) How do I do simular diagnostics with Natty?
I recently configured a server that I would like to access remotely. I want to start x through ssh and then log in through vnc, but I get prompted to type in my password in gnome before I have a change to login. Which is a problem because you need to be at the box to enter the password. Is there a way to authenticate this through ssh or give vnc automatic keychain access?
I realise that passwords are a good thing but I'm getting fed up having to enter a password just to get my wireless network to work every time I switch on Ubuntu or when I log out and back in again.
Seeing as there is nobody in the house that I want to keep away from the computer, is there a way to automatically sign-in to my wireless network without having that annoying key-chain popping up every time?
I've got a recurring problem on the latest install of Ubuntu 10.4 64 Bit. Everytime I log in, in order to use establish a wifi connection I have to enter my password again to unlock the system keychain. Until I do this no Wifi connection is established.
I've got the system setup on an Acer Aspire Revo which has an RaLink rt3090 card in it. I was using the 2.1.3 driver but have updated to the latest .7 driver and still have them same problem but I suspect this is some sort issue with Ubuntu rather than the driver.
The machine is setup as an HTPC to logs in automatically and boots up Boxee which needs an internet connection so it'd be great to get the internet working from the get go rather than having to enter the password again.
Anyone got any ideas why I'm being asked to unlock the key chain again and to stop this from happening so the wifi works immediately after logged in.
I currently have a user on my Ubuntu server that I want to block completely from login. I know right now they login with SSH keys so they don't need to enter their SSH password. Can anyone tell me how to remove the SSH key login for their username and root user which I believe they use too and block SSH access alltogether.I will then just change the root SSH password.I'm terrified they will do some harm so I need them blocked out ASAP.
I am using Locked Lynx 10.04r1 on my Pentium D 3.0GHz 512 RAM [URL] UPR does not access the HDD then from where am I getting Swap 245.3 MB in my System Monitor? Not only that it even uses it.
I have installed an Ubuntu server and it running OK. Before making it a production server, I want to make sure one day if the OS corrupts accidentally, I can still access the users' files on the hard disk.
I burned a Ubuntu desktop live CD, and booted it with this machine. There are 2 hard disks on the server, both could be mounted automatically. However, I can only access some folders like lost+found.
The questions are:
1. how can I access the other folders, given I have the root password of the server.
2. is there a way to access all folders without knowing the users + passwords?
how i can remote access my pc at home from work ? on different pc that has access to INTERNET. what software shall I install on my pc at home ? I want to be able to install software on my pc at home from my work place, my home pc has unbuntu Linux ubuntu 2.6.31-17-generic #54-Ubuntu SMP Thu Dec 10 17:01:44 UTC 2009 x86_64 GNU/Linux
I am setting up a new ubuntu server, and I am quite new to linux. This server will be used as code repository for a project I am going to be working on. I plan to setup 3 groups for users: dev, test, doc
- for various developers, testers and documentation users.
I would like to setup the following permissions on the main code repository directory:
dev - write permission test - execute permission doc - read permission public (anyone outside these groups) - deny all access
I am unsure what chmod setting to use, or if this is even possible in ubuntu.
I'm using Ubuntu x64 (dunno which version, but I don't think it matters) and I'm concerned about security with PHP.I remember using lighttpd and I had some mystic configuration and the secuirty was perfect for me - if one website gets hacked then the others are still safe (kinda).Now with apache2 if I enable safemode I'm still able to go outside web directory and actually I can go really far untill user/group matches.I tested the system with r57shell and I was able to mess up other websites.Is there a way to disallow access to other websites?
I have a dual boot machine and recently did a fresh install of 10.4. It no longer asks for a password to access the Windows partition and I full access to it. This seems insecure to me and was wondering if someone else came across this. I thought I saw this topic discussed before but I can not seem to find it now. Is this a bug or a new unpleasant feature?I don't think it makes a difference but I do have a separate encrypted home partition on this fresh install. I have also done two fresh installs. (Well three...once testing out KDE but didn't try the Win partition. )
I happened to be looking at my Apache-2.2.8 log on an Ubuntu LTS 8.04.4 system, and noticed a few lines like this: Code: 61.160.212.242 - - [06/Mar/2010:07:04:41 -0800] "GET http://218.30.115.246/ HTTP/1.1" 200 295 "-" "-" 61.160.212.242 - - [06/Mar/2010:07:05:29 -0800] "GET http://218.30.115.246/ HTTP/1.1" 200 295 "-" "-" xxx.xxx.xxx.xxx - - [06/Mar/2010:07:56:15 -0800] "GET http://218.30.115.246/ HTTP/1.1" 400 290 "-" "-"
(The third line is me telnetting to the server and trying to issue the same request. Note that I got a 400 error response, while the guy coming from 61.160.212.242 got 200s. Also, if you just open the http://218.30.114.246/ URL, you get back "hello" (nothing else, just 5 characters). I'm presently putting together a bootable CD with chkrootkit to run on the machine. (I found a thread that mentioned in passing that this was related to PHP, which I have running on that Apache server, but my Google-fu isn't strong enough to track down the original thread.) (After checking with chkrootkit: nothing unusual found.)
it's driving me nuts. Done a few things now, including this last: [URL]that didn't work. All the other comps in the house are windows 7, and I want this box to be my file server, with two 1 TB HDD plugged into it via USB, but I can't get the damn samba to allow access to everyone. Here's the path in the config file:
[data] comment = Test sharing path = /media/Shared
Is there a way to identify exactly what application is asking for keyring access at the given time? I get this query every boot and it's getting annoying. The annoyance is there, but more importantly and from a personal security standpoint on desktop systems, it's pretty bad that it doesn't say what application want's the access.
I temporarily placed a Back in Time backup into the root partition, by running it as root.However, I couldn't get it back out on the Desktop, so I opened a terminal window and ran 'sudo nautilus', which I now know should be avoided. I couldn't bring up "Properties" of the root folder, but I was able to open it and see the backintime folders. I then clicked on root, which was in the toolbar row "< root backintime" and was able to get full access to properties. I flipped folder access to "create and delete files" for Otherter disconnecting from the network, and moved the folder to the Desktop. So, is this correct or is it inconsistent that I could open root from the toolbar and not from the folder listing when opening 'filesystem'?
I'd like to be able to limit access to a particular website, based on the time of day. I would also like to be able to password protect this if possible.So for instance, from 7am until 10pm daily, I can access URL... but after 10pm it redirects to 127.0.0.1 or something. And this configuration be protected by only allowing a certain user (other than root) to change the config?
Is it possible to remotely access, inject, manipulate files and/or folders in the Windows NTFS partition when logged into Ubuntu?
I'm either logged into Windows or Ubuntu but NOT both -- ever. Therefore, while logged into Ubuntu, would it be possible for someone to crack into Windows via Ubuntu using Wi-Fi or modem?
I would like to use a wireless network, I type in the correct password but suddenly a new window pops up saying: 'an application wants to access to the keyring 'Vorgabe', but its is locked password:'
But I don't know what password it's talking about I went to Password and Encryption keys, there are two folders 'password: vorgabe' 'Password: login'
At our company we have a central server with client files. This server has a SSH server installed, and through Nautilus all employees can access the files. However, I have a few questions:
1. Most employees need access to all folders, because they might use them at some point in time. However, I want to make sure they are not accessing things they do not need. How can I do this? For instance, if somebody copies all of the folders to his/her computer, I want to be able to see this in some sort of log. Can this be done? Copying and accessing in general is what is of my concern.
2. Some employees only need access to specific folders. Can this be easily configured with SFTP?
3. Some also use SSH and type commands which I want to check every now and then (e.g. to make sure an intern is not again copying information or accessing folders they should not be in). What is a good way to do this?
allow sftp access to my Ubuntu system (happens to be desktop as it's also my main system) using accounts that are not able to login normally. (I have already managed to create such accounts.) These accounts need to be chrooted (also already accomplished with the openssh daemon settings.) Where I run into problems is that I want to give them (read only) access to files outside the chroot (on another partition in fact) and the matter if made more difficult because the directories to be shared are on NTFS-3G partitions (as they are a shared linux / windows storage drive). Is this possible and if so, what do I need to do?
Edit - Forgot to include versions Ubuntu 10.10 openssh 1.5.5p1-4ubuntu4 (the one that comes with 10.10)
I have just installed webcontent control following these instructions - [URL] It has blocked the content that I wanted blocking but also when I try to access the ubuntuforum site, all I get it a white screen.what I need to adjust in the configuration so that I can access the forum with content control enabled.
What should I do if I want to allow access to USB flash drive selectively - Say for e.g. All permissions for "root", "Read/Write" for user "A", Only "Read" for user "B" and user "C" shouldn't be able to access or mount (no permissions) the USB flash drive at all.Also I want to do it by modifying entries in some files or by some commands (so that it can be done programatically if needed)
I'm a little security paranoid, there are a lot of times that my terminal is available to prying eyes and listless fingers. As a security minded individual, I would like to make sure to lock down my Ubuntu (11.04b3) install in one of the best ways I can think of, and require a dongle to access my box. Is this something any of you other security minded people have done?
What are other great ways to lock my terminal? I would like to make sure that not only the "average" user, but also the ABOVE average user will not be able to penetrate my system without a key. Let me know what you think, and other measures I can take.
I managed to make an old parallel port scanner work in ubuntu 11.04 with SANE. Everything's perfect but one thing: scanner applications work only if they are executed as a root.After further researching, I've found the cause is that only the root has read and write permissions on the device /dev/parport0 which is my parallel port. If I set the right permissions giving sudo chmod a+rw /dev/parport0 I solve my problem, but just untill next reboot... the system resets root only permissions at each restart. I would like to make that change permanent... what can I do?
i installed many security programs as a switching from windows guy and decided to get rid of them last night. I uninstalledgufw, clamav(and all based packages), firestarterusing synapticbefore i rebooted the system the internet was well and working. but after i rebooted i had no internet access;firefox couldn't retrieve, update manager and apt-get couldn't connect.the computer knows it's connected to the router i see the connection established sign but I can't even connect to the router by typing "192.168.2.1".the computer can ping itself(127.0.0.1) but can't ping itself in the network (the dhcp address is 192.168.2.3) and replies "operation denied" or something like that.I rebooted using live-cd and connected with no problems; the my internet connection is fineany thoughts will be appreciated P.S.: I did a fast check on the forums and couldn't find anything related; i didn't check thoroughly though.
I was sitting watching a TV show on the internet (streaming from channel 4) and all of a sudden I get a request from an unknown IP address, outside of my local network attempting to access my ubuntu desktop, I obviously declined straight away and stupidly didn't take note of the IP I've checked my firewall settings and no ports are being forwarded, everything is as it should be. I am running Ubuntu 11.04, and a little bit concerned. As of now I have completely disabled remote desktop on my laptop.
