Ubuntu Security :: Metasploit - Ruby-openssl Library Not Installed
Apr 20, 2010
I just installed it by following steps in [URL]
but when I run "msfconsole", I got the following error messages telling me that ruby-openssl is not installed. I installed it "apt-get install libopenssl-ruby" but same message still comes again. I'm running Ubuntu 9.10.
root@qa-ud910-32-1:/opt/metasploit3/msf3/external/ruby-lorcon2# msfconsole
*** The ruby-openssl library is not installed, many features will be disabled!
*** Examples: Meterpreter, SSL Sockets, SMB/NTLM Authentication, and more
[-] ***
[Code]....
View 6 Replies
ADVERTISEMENT
Jun 28, 2010
Does anyone know how to install Metasploit (on 10.04)? And does anyone know of they still support a GUI or if they dropped that? I heard they were gonna drop it after 3.-something.
View 9 Replies
View Related
Mar 27, 2011
I am using BackTrack 4 RC 2, Metasploit and Armitage. I am not able to see my target computers in the target area of the Armitage application after performing an Nmap quick scan (OS detect) on my wireless network (I have several computers connected to the wireless network).
Furthermore, I got the following warnings when trying to do the Nmap quick scan (OS detect):
Quote:
What do these warnings mean?
I was following these steps (as seen in this video: [url])
Code:
View 4 Replies
View Related
May 3, 2010
My current gem env returns:
RubyGems Environment:
- RUBYGEMS VERSION: 1.3.6
- RUBY VERSION: 1.8.7 (2008-08-11 patchlevel 72) [x86_64-linux]
[code]....
View 2 Replies
View Related
Jun 18, 2011
I'm dual booting - windows7 and Ubuntu 11.04. I've found that I'm doing a lot less "dual'n" lately though. Compaq Presario Notebook. I've been installing new software and I've noticed that some of them are not showing up in the App list. I'm showing 92 when I've actually downloaded more. They aren't showing in the Installed Software either, but when I go into the center to make sure I did install it, it says installed. So, I'm guessing there is something simple I'm not familiar with yet to make these programs show up. I installed 7zip and couldn't find it either, however when I click on a zip file to unzip it, it does use this to unzip. I cannot find Ruby-full install or Docky. Plus several others.
View 5 Replies
View Related
Apr 26, 2010
I've been using rubyripper quite happily on Karmic, now I've moved to Lucid and discovered a bit of an issue. rubyripper will pause for several minutes between tracks with ruby 1.8. If I upgrade to ruby 1.9.1 the gui client won't run due to an issue with libgtk2-ruby not being available for 1.9.1.
The cli version of rubyripper under 1.9.1 is blazingly fast, so that is what I'm using at the moment, but I do prefer the gui.
Anyone have any insight into this? Googling suggests there may be a bug in ruby 1.8.7 that caused the long pauses, but it was supposed to have been fixed in 1.8.7.249 i.e. the default Lucid version.
View 8 Replies
View Related
Jan 18, 2011
I inherited a project that someone built in lampp, and I need create new SSL certs.
So I go to do so and it says that OpenSSL is not installed and to apt-get and install it.(Ubuntu by the way)
So before I did so, I wondered if it would cause any problems...since it was supposed to be part of the lampp stack.
View 3 Replies
View Related
Dec 10, 2010
i have a encrypted file using .aes256. I'm trying to decrypt but it fails. This is the command i used
Quote: openssl enc -d -aes256 -in insurance.aes256 > /media/DATA/out.dec And here's the error:Quote: enter aes-256-cbc decryption password: bad decrypt13930:error:06065064:digital envelope routines:EVP_DecryptFinal_ex:bad decrypt:evp_enc.c:330:
View 3 Replies
View Related
Mar 29, 2010
i need to know more about openssl.In particular i'm having problems with some basic coammand-line stuff to do with signing and base64 encoding.You'll have to excuse me but i'm a security n00b. What is the command for signing some text file with a given private key and then after that base64 encoding the same file.Can this be done with a single command? what's wrong with:
Code:
openssl rsautl -sign -in textfile -inkey privatekey.pem enc -base64 -in textfile
or should that be:
Code:
openssl rsautl -sign -in textfile -inkey privatekey.pem | openssl enc -base64 -
View 1 Replies
View Related
Mar 30, 2010
I tried to compile C program that uses Openssl libraries on shell but got this error. I guess libraries are not linked properly.
undefined reference to SSL_library_init()
View 1 Replies
View Related
Oct 22, 2010
There are a few things not working properly. Ruby version manager seems ok but untill i get working with ruby i don't know if it is working properly. One thing that is not there is irb Interactive ruby is not available according the the message i get.
Well i have no idea what readline is but i did everything that is on that webpage referance page [url]. I have got a lot of progress and learned heaps about linux shell and bash terminal. The thing is i need to get this going and have tried feenode but it is very foreign and how it works i do not have a clue. I have got 2 things resolved so far through this forum but using other threads in it. i need to get irb going before i can progress to using ruby on Rails properly.
I am using a Eeepc running ubuntu easy peasy its version 9.04 of ubuntu. I need the whole of rails to work and want to get a handle on using ruby version manager along with the apache stack with mysql/phpmyadmin and am using this as a dummy run for setting up a development system.
View 2 Replies
View Related
Feb 11, 2011
When I do a "openssl x509 -in server1.pem -issuer -noout" after I've supposedly signed it with the CA, the issuer is, for some reason, the DN string of server1. If server1 generated the CSR, and it is coming up as issued by server1, doesn't that indicate a self signed cert? How could the CA be producing a cert that has an issuer of another server? Am I just completely off base? Sorry, I'm a bit of a newb with the SSL pieces.
I hope this is the right place for this, but I'm having some difficulty using the java keytool and OpenSSL tool on a Solaris system.
I have a server (CA server) with OpenSSL installed that I would like to use as a Certificate Authority. The second server (server1) is a WebLogic server with JDK 1.6.0_21. I'm trying to configure it to use a certificate that has been signed by server1.
For some reason it keeps giving me this error when I try to import the signed SSL certificate: keytool error: java.lang.Exception: Public keys in reply and keystore don't match
Am I doing something wrong in this whole process?
1) Generate the Private Key for the CA server
openssl genrsa -out CA.key -des 2048
2) Generate the CSR on the CA
openssl req -new -key CA.key -out CA.csr
3) Sign the new CSR so that it can be used as the root certificate openssl x509 -extensions v3_ca -trustout -signkey CA.key -days 730 -req -in CA.csr -out CA.pem -extfile /usr/local/ssl/openssl.cnf
4) On server1, create Server Private Key KeyStore keytool -genkey -alias server1 -keysize 2048 -keyalg RSA keystore server1.jks -dname "CN=server1.domain.com,OU=Organization,O=Company,L=City,ST=State,C=US"
5) On server1, create a CSR from the recently created Private Key
keytool -certreq -alias server1 -sigalg SHA1WithRSA -keystore server1.jks -file server1.csr
6) Transfer the CSR over to the CA (server1) so that it can be signed openssl x509 -extensions v3_ca -trustout -signkey CA.key -days 365 -req -in server1.csr -out server1.pem -extfile /usr/local/ssl/openssl.cnf
7) Transfer CA Public Cert to server1 and Import into keytool keytool -import -trustcacerts -alias CA_Public -file CA.pem -keystore server1.jks
8) Import recently signed CSR to app server keystore (This is where I receive the error) keytool -import -trustcacerts -alias server1 -file server1.pem -keystore server1.jks
View 1 Replies
View Related
Aug 10, 2010
Quote: Security expert Georgi Guninski has pointed out a security issue in the 1.0 branch of OpenSSL that potentially allows SSL servers to compromise clients. Apparently the hole can be exploited simply by sending a specially crafted certificate to the client, causing deallocated memory to be accessed in the ssl3_get_key_exchange function (in ssls3_clnt.c). While this usually only causes an application to crash, it can potentially also be exploited to execute injected code.
View 1 Replies
View Related
Jul 8, 2010
I recently got a nice, lightly used IBM Thinkpad laptop. It has wireless capability for the Internet. Linux is the only OS in the laptop. At home, I don't have wireless-- I have a wired DSL connection for my laptop and for my IBM desktop (which also only has Linux as OS).
When I took the laptop to the public library, wireless is provided there for free and I had no trouble connecting to the system there. But since I'm new to wireless, what do I need to have installed to have a secure laptop when in the public library (or when I'm anywhere else that offers free wifi) using the wireless connection? [I use Firestarter as my firewall in the laptop and in the desktop.] Do I have to install some software to make sure my laptop is secured from spying and invasions when in the library or is the Firestarter enough? If Firestarter is not enough, what is that wifi security software by name?
[My OS is MEPIS 8.5, a Debian-based distro.]
View 2 Replies
View Related
Jan 14, 2010
I've PHP5 installed on my server, and just recently I installed a new application that requires gd library.
understand that I can have gd library installed via apt-get install php5-gd command.
Question: do I need to remove php5 instance (which was installed together with apache2/mysql using tasksel command) prior to installing php5-gd?
View 1 Replies
View Related
Feb 24, 2011
A certain program I use requires pango and gtkglext in 32 bit. I had already installed both of these in 64, and just now I downloaded .rpms for them in 32 bit and used rpm2tgz to turn them into .tgz files. The application i needed them for now works fine, but I'm wondering if installing precompiled packages like I did may mess with the 64 bit installs I already did, or if they can both be installed at the same time without any issues.
View 3 Replies
View Related
Nov 24, 2010
Is there a way to find out with what options a library was configured with when it was installed? I am trying to install a library on my system that depends on gasnet and it requires me to configure it with the very same options that gasnet was configured with. Gasnet was not originally installed by me, so I cannot tell. I can see bin/, include/, lib/ and share/ directories in the gasnet folder and no other information in it. To be specific, I need to use the same CFLAGS that were used during installation of gasnet. For example, if it was installed using '-g -O2', I have to make sure I use the same CFLAGS here.
View 4 Replies
View Related
Dec 13, 2010
I am using Slackware 13.1 with the uname -a output:
Quote:
Linux darkstar 2.6.33.4 #2 Thu May 13 00:27:45 CDT 2010 i686 Intel(R) Atom(TM) CPU N450 @ 1.66GHz GenuineIntel GNU/Linux
When the binary smbpasswd is executed it gives the following output
Quote:
smbpasswd: error while loading shared libraries: libwbclient.so.0: cannot open shared object file: no such file or directory ldd /usr/local/samba/bin/smbpasswd has this output
Quote:
linux-gate.so.1 => (0xffffe000)
libldap-2.4.so.2 => /usr/lib/libldap-2.4.so.2 (0xb7220000)
liblber-2.4.so.2 => /usr/lib/liblber-2.4.so.2 (0xb7214000)
libresolv.so.2 => /lib/libresolv.so.2 (0xb71fd000)
[code]....
I do not know how to direct the binary to the missing library.
View 7 Replies
View Related
Apr 8, 2010
I've been looking awhile now, but no patch for this is yet to be found. Does anyone have more info, or better, a fix? Last version from GNU's ftp server is also vuln as of this writing.
View 3 Replies
View Related
Aug 25, 2010
Is there a way to to check if the system has the available security updates installed? Specifically, I am looking to do this programmatically.
View 1 Replies
View Related
Apr 16, 2010
I need to write program (preffer Python) to change range for users. Does anyone know some library which can help me to do that? Maybe someone has written program like that?
View 5 Replies
View Related
Apr 26, 2011
How to install tar.gz files. I am trying to install metasploit and I followed the instructions here [URL] Metasploit Framework
Once the dependencies have been installed, download the Unix tarball from the download page and run the following commands:
$ tar xf framework-3.X.tar.gz
$ sudo mkdir -p /opt/metasploit3
$ sudo cp -a msf3/ /opt/metasploit3/msf3
$ sudo chown root:root -R /opt/metasploit3/msf3
$ sudo ln -sf /opt/metasploit3/msf3/msf* /usr/local/bin/
When you've completed this step, you should have a working installation and be able to run modules, pivot through compromised systems, and use most of the Metasploit Framework's features. The following optional installation steps will give you extra functionality.
View 9 Replies
View Related
Sep 17, 2009
I downloaded the metasploit framework tarball on my Fedora 10 and on unpacking, there were executables like msfconsole, msfgui etc, but these wouldn't run... the same error is reported everytime:
================================================== =================================
[root@localhost framework-3.2]# ls
data external modules msfconsole msfelfscan msfgui msfopcode msfpescan plugins scripts
documentation lib msfcli msfd msfencode msfmachscan msfpayload msfweb README tools
[code]....
View 2 Replies
View Related
Jan 18, 2010
Getting error while updating metasploit usind 'mafupdate'
The error:
Quote:
Tried to run 'svn cleanup' (without even knowing what actually it does )
Gave me
Quote:
View 3 Replies
View Related
Jul 3, 2010
I recently started using a backtrack tool know as metsploit console on my fedora o.s,i just wanted to clarify two this ,first of all can you update metasploit 3.3 to 3.4 using yum command?(file place in /usr/bin/msfgui) secondly i wanted to know whether metasploit is applicable only under a lan network?
View 3 Replies
View Related
Apr 12, 2011
I want to install Metasploit on Fedora14. I am new to linux.These are the steps I have done after downloading the .run file from metasploit
$ chmod +x framework-3.*-linux-x86_64.run
$ sudo ./framework-3.*-linux-x86_64.run
It runs a UI for Installation till it finishes but m not able to see metasploit installed or where it is?
View 3 Replies
View Related
Jun 5, 2010
i am using fedora12,i have downloaded the metasploit framework and it is in tar.bz2 form,i wanted to know how i could install it in fedora? i tryed it in windows ,worked smoothly since it was in .exe form! bt here in fedora i am not sure on how i could install it!
View 9 Replies
View Related
Apr 7, 2011
correctly install Metasploit on
Code:
Red Hat Enterprise Linux Server release 5 Tikanga
I have updated my ruby version to :
Code:
ruby 1.9.1p243 (2009-07-16 revision 24175) i686-linux
Now that all the Ruby errors that i had before disappeared
when i run the msfconsole it just hang there!
View 5 Replies
View Related
Aug 4, 2011
./configure script fails to configure libsf. Please check the following last few lines of configure script error.
But find command shows the following;
It seems the file libdb does exist. man dbopen displays man page for dbopen. I also tried to ln -s /usr/lib/libdb.a and libdb.so /lib dir but all were in vain.
View 6 Replies
View Related
Sep 18, 2010
i am running fedora core 13 and have some probs with fast-track / metasploit when i use fasttrack and metasploit starts i get this
Code:
msf > db_driver sqlite3
[-] Unknown command: db_driver.
msf > db_destroy pentest
[-] Unknown command: db_destroy.
[acode]...
fasttrack is installt corectly and installt metasploit with the rpm packige,
View 2 Replies
View Related
