using ufw in the ubuntu 10.04. I just notice now that my ufw is not working if i block the ports. i used the gufw which deny all incoming and outgoing but still my applications like firefox ,chrome still got connection. i try on firestarter lock down and works. why my ufw doesn't working.
View 3 RepliesI'm having trouble getting CSF working with Hamachi. I know Hamachi uses ham0 but has to use eth0 to establish a connection to the VPN servers. When I turn on CSF, hamachi seems to die but I opened the ports in CSF (443,12975,32976,17771)... I keep getting login fail when start Hamachi up. I'm guessing this has to deal with CSF/iptables but no clue on how to setup those rules to work with Hamachi.
View 2 Replies View RelatedI have three computers on my lan. I have installed authorized_keys entries to enable no password between two of these machines, but the third will not go there. The sshd_config is identical for all machines.
View 7 Replies View RelatedI recently installed Avast on my PC bcz of M$ Windows taht I also have as 2nd OS which loves Viruses It was having the virus database of 2006,So I decided to update it After the updatation completed,I clicked on Application>Accessories>Avast!Antivirus. But Avast is not coming anywhere,whereas it was earlier coming Can somebody guide me where it has gone & how to bring it back to save my PC..
View 9 Replies View Relatedsee many threads / websites about how to configure iptables. They say if you use these
rules it will allow http traffic. But they don't work. I like to deny all then allow specific ports open for traffic.So far I tried the script to flush and update my iptables rules, trying to open port 80 and 53 for http and DNS traffic:(I made the script executable, with $ iptables -L -v I can see that the rules are changed after I run the script. )
Code:
#! /bin/bash
iptables -P INPUT DROP
[code]...
So I activated the Firefox profile:
Code:
And restarted Firefox (even rebooted), but it doesn't seem to be working. When I open Firefox I am able to perform a "Save Page As" in locations I shouldn't be able to, like my Desktop or Pictures folder.
The following command says the Firefox process is in enforce mode:
Code:
Of the following lines, the only directory which is "rw" is /Downloads, why am I still able to write to other places?
Code:
OS: Ubuntu 10.10
Can someone with an active Firefox profile do this simple test for me? Click File -> Save As and try to save somewhere the Apparmor profile shouldn't let you, and let me know the results.
I recently upgraded to Ubuntu 10.10. This was a clean install, so all packages are up to date.
I'm using Thunderbird 3.1.6 with Enigmail 1.1.2.
Thunderbird works OK, but if I try to create an encrypted message, I get an error saying that the Enigmime module is not available. When I checked the Enigmail 'About Open PGP' details, it showed the following message:
Running Enigmail version 1.1.2 (20100630-0917)
Warning: Enigmime module not available
ERROR: Failed to access Enigmime service!
Enigmime Service not available
a cup of days I'm trying to find any working free VPN service. Without success. [to run Windows in VM and use service which works in Windows is no solution for me - it is pathetic and it takes too much system resources] Everywhere are many questions. but no answers. All tutorials I read are old and nothing works.
View 9 Replies View RelatedI just recently installed Tor again on my new Natty install along with Vidalia. It was working initially, but for some reason it has ceased to function within the last 24 hours. When I start Tor (either from the command-line or Vidalia) and go to check.torproject.org, it says that Tor isn't running. (I don't use Torbutton with Firefox, if that makes any difference. I use FoxyProxy, but the settings look fine to me. It was working only yesterday.) I've checked the config files for Polipo and Tor, and I've checked my Vidalia settings more times than I can count. It all looks perfectly satisfactory.
I'm sure that it's not my firewall, Tor/Polipo configurations, or Vidalia settings. When I launch Tor with Vidalia and check the logs, everything works just fine and it says I'm connected. The only thing I can think of is that it might be a FoxyProxy issue or a problem with check.torproject.org, but the settings for FoxyProxy look okay and check.torproject.org hasn't malfunctioned in the past.
I've purged and reinstalled Tor, Vidalia, and Polipo and restored their config files and settings to the defaults, but still to no avail. My current malfunctioning Tor configuration is identical to my old and functional one, so far as I can tell.
I followed this thread:[URL]...When I get to this part:sudo genprof firefox it does not work in the terminal. Is this still supported for Ubuntu 11?
Also, I installed the profiles. Is something supposed to happen now or do I need to configure them?
sudo apt-get install apparmor-profiles
A while back there was a lkm called sebek, which is designed to work in a honeypot for finding and studying internet hackers, but its very outdated and wont work with newer 2.6 kernels. Anyone know of any projects currently in the works to mod the kernel source to get it it work again? I know it's easily detected but thought that someone might still be working on somewhere.
View 1 Replies View RelatedMy master password is not saving any passwords in Firefox. I use this also in Windows XP, and all my passwords get saved. Furthermore, is this even a good idea to begin with? Can the passwords be stolen easily?
View 9 Replies View RelatedI'm running Maverick Meerkat 10.10 x64, and I'm trying to set up a Samba share with user security. In other words, when accessing the share, I want to be prompted for my username and password. Everything in my smb.conf file looks ok to me, but the shares are still accessible with no user security, and I don't know why. The smb.conf file is below:
#
# Sample configuration file for the Samba suite for Debian GNU/Linux.
#
#
[Code]....
I'm trying to limit the number of the ICMP packets reaching my server, so I'm using the limit module of iptables, unfortunately it seems the limit I set is totally ignored as I can easily send tens of ICMP packets and get a reply in less than 0.3 second Quote:
m3xican@m3xtop:~$ sudo ping -i0 -c20 x.x.x.x 20 packets transmitted, 20 received, 0% packet loss, time 230ms
rtt min/avg/max/mdev = 184.969/185.895/189.732/1.301 ms, pipe 16, ipg/ewma 12.138/186.232 ms This is the rule I'm using to accept ICMP packets (default setting is DROP)
Code:
iptables -A INPUT -p icmp -m limit --limit 1/s -j ACCEPT
And these are the kernel modules related to iptables
Code:
Module Size Used by
xt_limit 1382 0
[Code]...
I've been using ssh for a LONG time to connect my laptop to my desktop with no problems. I use a non-standard port (nnnnn) and keys. After a power outage that caused a shutdown and reboot, I can no longer ssh into the desktop. The only changes I've made are updates (laptop and desktop both running ubuntu 10.04).
$ ssh -p nnnnn Desktop
ssh: connect to host Desktop port nnnnn: Connection refused
No messages are generated in any of the logs on Desktop!
$ /usr/sbin/sshd -T
port nnnnn
protocol 2
addressfamily any
listenaddress 0.0.0.0:12023
listenaddress [::]:12023 .....
My server (Ubuntu 10.04 desktop) was hacked. I had my ethernet plugged in to an Intel 82557 Ethernet Pro card (Pulse) when my server was first attacked. After it was attacked I reinstalled the system but my ethernet card still would not work. Ubuntu recognized it, but it is continually disconnected and the little status lights on the card do not light up anymore.
So then I plugged the ethernet to the mother board itself. Well, my server was hacked again and now the ethernet on the motherboard does not work. Again, Ubuntu (after a reinstall) recognizes the hardware but nothing happens when I plug the etherent in. The motherboard is a BioStar P4M900 VIA chipset. I have a few of the system logs here [URL] which I saved right after the first attack.
Some how I seem to be locked out of my desktop computer. My password isn't working. For some reason all of a sudden it seems to have stopped working. I tried to reboot and now I'm locked out, I can't login. And I'm the only sudo user. How can I fix it or even reset my password
View 2 Replies View RelatedI get the following error in the logs when i run 'at now -f task' as root. atd[4737]: Failure setting user credentialsI am trying to auto shutdown the PC but, it fails.I am also pasting the /etc/pam.d/atd config file which
# The PAM configuration file for the at daemon
#
#
[code]...
I've set up two security associations(in and out) on two hosts, and then set up two policies per host that should filter traffic to those SA's. Yet when I try to ping one host from the other I get no response, meaning that the filters on one side work and drop unprotected packets, but both hosts are configured to communicate using ipsec. Can anyone point me in the right direction?
Code:
ip xfrm state add src 192.168.77.23 dst 192.168.77.24 proto esp spi 0x53fa0fdd mode transport reqid 16386 replay-window 32 auth "hmac(sha1)"
[code]...
I am facing a problem when I tried to set policies on the firewall with following commands:
iptables -A INPUT -p TCP -s 0/0 --dport 53 -j ACCEPT
iptables -A INPUT -p UDP -s 0/0 --dport 53 -j ACCEPT
iptables -A INPUT -p TCP -s 0/0 -j REJECT
[code]....
Here, I want to deny all traffic except DNS traffic, it should be permitted. I tried to log the traffic but I did not find any update in /var/log/messages.
I forgot my new password. I followed the guide on how to recover the password but in recovery mode my keyboard doesn't work, I have tried a usb and a ps2 keyboard. What is going on? Or is there another way to reset my password?
View 4 Replies View RelatedI'm migrating my file server from Fedora 9 to Fedora 11 (clean install), and I'm having a horrendous time trying to get key based SSH logins working. I've set it up before, and I can't figure out why it won't work now. I copied my public key into ~/.ssh/authorized_keys2 and set the folder permissions for 700 and the file permissions for 600. Then I restarted sshd. Now unless I remember wrong I thought that's all you have to do. It didn't work. So I rebooted just for good measure. Still didn't work. So I made sure that my client was still sane. I can log into my OpenBSD machine just fine. I compared the sshd_config from OpenBSD to the Fedora one, and the options seem pretty close.
At that point I had nothing to lose and just started messing with the Fedora sshd_config. I also noticed in the config that the commented AuthorizedKeys file had dropped the 2 off the end, so I tried changing that as well. Still nothing. Password based logins work, but I really don't want to go that route. Now I can only think of two possibilities. One, some sshd_config setting is wrong and I don't know what it is. Two, there's some package that's required for key based logins that I accidentally unchecked during the install process. That's about all I can come up with. Here's my sshd_config, I tried to just set everything back to default.
Code:
#Port 22
#AddressFamily any
#ListenAddress 0.0.0.0
#ListenAddress ::
# Disable legacy (protocol version 1) support in the server for new
# installations. In future the default will change to require explicit
# activation of protocol 1
Protocol 2 .....
I've recently installed the latest release of Archlinux. Setup is fine, but i'm having trouble setting up the wireless connection. Let me just start by saying I can get the wireless working without any security at all, so I know it's working fine. When I installed Arch I selected the base packages and the base-devil? base-daemon? packages, and made sure that every package relating to the internet or wireless was selected and installed.
Setup:
ASUS Pro50n series Notebook
Wireless Security: WPA-PSK
I have read the beginners guide wiki, and from that I have read the wireless setup wiki, which lead me onto the wpa_supplicant configuration for WPA-PSK security. In my /etc/wpa_supplicant.conf file I have the following:
[Code]....
There is this one server running CentOS5.4 Final which has certain application like Bugzilla. I have setup ssh on it and setup is for password less authentication. Have also setup PasswordAuthentication to no. So with password authentication should succeed. But it is. Though password less authentication is working fine, but I am also able to login using password.
Code:
RSAAuthentication yes
PubkeyAuthentication yes
PermitEmptyPasswords no
PasswordAuthentication no
My /proc/sys/kernel/random/entropy_avail went from 2200 to <200 after ssh-keygen. The generated key pairs also doesn't work (ie I'm asked to provide a password). Anyone knows what is the minimum before and after entropy number I should see in order to have the keys generated properly?
View 8 Replies View RelatedI just set up denyhosts and it worked properly the first time adding lots of ips to the hosts.deny.I then set it to run every 12 hours noon and midnight.I wanted to see if ran properly and I got all this.Does it look like its working?
Code:
May 15 12:00:01 hyrule CRON[14286]: (root) CMD (python /usr/share/denyhosts/denyhosts_ctl.py -c /usr/share/denyhosts/denyhosts.cfg )
[code]...
I installed Pessulus on my workstation and I'm not able to lock other users profiles? I see the little wooden shield when I click on them, excpet it isn't blocking anything?
View 1 Replies View RelatedWith the disappearance of an OS monoculture, attackers would do well to find attacks that are neither OS or application specific. One way to do that, of course, is to target attacks at hardware, rather than software. Now research out of Frances Ecole Superiore d'Informatique, Electronique, Automatique (ESIEA) moves a step closer to that goal: identifying a method for isolating the processor used by anonymous systems for the purpose of subverting that hardware.
View 2 Replies View RelatedQuote:
Code:
I've used these commands to generate my new keys and immediately got my sshd server running.
However, I now have the problem where the password is not being recognized and is repeatedly asked for.
I have a problem with sshd daemon on a target linux system:The system has only one user (root) without password.The sshd_config looks like:
Code:
Port 22
Protocol 2
[code]...