Security :: Remotely Decrypting A Server - Authenticate A Decryption Mechanism Of Some Sort?

Sep 11, 2010

i need to find a way to securely authenticate a decryption mechanism of some sort where the authentication is provided remotely without any user-interaction. Right now i have a number of boxes that all inform a central server when they are online. When they do this an OpenVPN connection is set up between them and the server.

However, i have been given the task to ensure that the scripts involved in this process are encrypted by default. This requires some form of self-decryption, which to my mind kind of goes against the whole idea of encryption/authentication in the first place. I need some way to leave decrypted the bare essentials required to boot a box and securely connect to the central server automatically. Then the server would automatically send a key/passphrase and the rest of the files on the box would then be decrypted on the fly.

View 4 Replies


Fedora Security :: Remotely Decrypting Or Removing Encryption?

Jun 14, 2011

I have a computer running Fedora 14 and when I installed it, I chose to encrypt the drive.

I've recently changed the way I have things set up and don't want the encryption any more. From what I've read there is no way to simply and easily remove the encryption, so what I would like to do is input the pass phrase remotely.

so, Is there anyway I can type in the pass phrase remotely, or remove the encryption?

View 2 Replies View Related

Ubuntu Security :: Decrypting Document Encrypted On Smartphone?

Feb 26, 2010

I'm an absolute beginner at encryption. gpg and keys still have me somewhat mystified, so please forgive me if the following seems like a stupid question. I'm looking at encryption software for my smartphone. I've found a Java program called TinyEncryptor that uses the TwoFish algorithm and claims to be a shell for the "Legion of the Bouncy Castle" libraries. It just uses a passphrase; there are no keys involved as far as I am aware.

Naturally, I would like to be able to decrypt files on my desktop that I've encrypted with this program. So far, I've not had any success with finding one.

View 3 Replies View Related

Ubuntu Security :: 10.04 Installed - Home Directory Not Decrypting

May 5, 2010

I have a major major issue with an encrypted /home directory. I had used encryption on my home directory when I installed 9.10. However, I had not noticed that I needed to store the automatically generated passphrase anywhere. Now, upon installing 10.04, my home directory would not decrypt. I checked my .encryptfs directory and the wrapped-passphrase file is GONE. I only have the Private.sig files from my 9.10 installation and of course know the login password I binded to the passphrase. I can see my .Private directory with filenames starting with ECRYPTFS_FNEC_ENCRYPTED. Now, my PhD thesis which I have to deliver in 2 weeks is in there. With no backups. How to recover my data. If no 'normal' method would work, is it possible to use a brute force attack and feed it my login password?

View 3 Replies View Related

Ubuntu Security :: Home Decryption With USB Drive?

May 4, 2010

I have my home partition encrypted and would like to take the decryption out of the system. Such as when booting the PC it would say it can't find the keys so stop and wait for me to put my usb drive in to continue (reboot and try again). Is there some way to get something like this set up?

View 2 Replies View Related

Fedora Servers :: Unable To Authenticate Through AFP From My MAC / Sort It?

Jun 15, 2009

I installed netatalk for Linux in Fedora 10. I managed to get the service starting correctly at every boot and from Linux side everything looks good. I even manged to tweak avahi-daemon to advertise my server on the network so would show in Finder sidebar (with a snazy tux icon). But when I try to connect to the server it asks me for username and password (as it should), but my password doesn't work. I changed my password, I even gave it a simple one to rule out possibility of "fat-finger"-ing. No success.
I tried many options in my afpd.conf file. Here is the latest code...

View 3 Replies View Related

Fedora Networking :: [F15] Can't Authenticate On WiFi Connection / Sort It?

May 24, 2011

I cannot authenticate on my wireless network. it keeps asking me the WPA key (which I correctly enter everytime it asks me to). I COULD do that before rebooting. Now I can't. Nice.
What can I do? I've read somewhere that in the RC there where problems with the network applet I don't know what... can this be reconducted to that?

View 2 Replies View Related

Ubuntu Security :: Diffetences Between The WD Hardware Decryption Or A Truecrypt Container/drive?

Jul 20, 2011

Now since 1TB 2,5" hard drives have been released and are payable I've thought about buying one. The most improtant issue for me when using a protable drive is security and data security. I found the "Western Digital My Passport Essential" with hardware encryption but the description says that only Windows and MAC operating systems are supported not Linux in anyway. My question is are there any significant diffetences between the WD hardware decryption or a truecrypt container/drive? And is there another program out there better for this job? I want to use the drive on Windows and Linux systems.

View 3 Replies View Related

Ubuntu Security :: Encrypted Home Folders - Verify That It's Actually Performing The Encryption/decryption?

May 1, 2010

I ticked the box for this when I installed Lucid, but how can I verify that it's actually performing the encryption/decryption?

View 4 Replies View Related

Fedora Security :: Decrypting Fedora Drive From Windows?

Jul 10, 2011

I have a dual boot at home with W7 F15. The Fedora drive is encrypted because that's where all my important stuff is. On the rare occasion that I do boot into Windows, I wondered if there would be any way of accessing my encrypted Fedora drive? Is it possible to decrypt and mount from Windows?

View 1 Replies View Related

Fedora Security :: Set Up 2 Root Accounts And Need Both To Be Able To Authenticate?

Nov 20, 2009

fedora 10 and im trying to set up some user accounts on a computer. My current problem is that we set up 2 root accounts and we need both to be able to authenticate. So far this works on the command line but whenever i'm on the GUI it seems that it only allows root to give its password for things. How do i enable the second account to do that as a note, i am doing this for someone else so i have little to no control how this is set up, so please, i am not looking for reasons why this is not a good idea i would just like to figure this out

View 2 Replies View Related

Security :: Authenticate Webpage Using Domain Credentials

Oct 12, 2010

I have some important cgi files run on top of Apache inside cgi-bin directory.My requirement is to once user try to access the cgi file authenticate using Active Directory username/password. If user enter the correct domain credentials only user aloow access to the page in any time user trying to access otherwise not. I configured this using htaccess and htpasswd.But in this case I need to manually configure username/password for htpasswd file. Instead of this I want to authenticate with the Active Directory.

View 1 Replies View Related

Security :: How Can Authenticate Ethernet Users Before They Use Network?

Nov 22, 2010

is there any solution for authentication of ethernet users.something similar to daloradius for wifi.I dont want to use pppoe. is there any way to connect daloradius with dhcp server, so when certain mac address asks for IP first daloradius will look if it is allowed.

View 11 Replies View Related

Ubuntu Security :: Guest Account Able To Authenticate As Root

Jun 25, 2011

I am trying to use a guest account in Ubuntu 10.10 however I am unable to stop the guest account from authenticating as a superuser and gaining root permissions dispite removing all permissions from the user-group control panel. The new guest account I created is not part of the admin group. However, with my new guest account I am unable to start a guest session from the panel, AND if I use the guest session from the panel I dont have the problem with the guest session being able to authenticate. How do I prevent super user authentication from an account in this situation? It seems that any account can authenticate and my /etc/sudoers file looks like this:

# /etc/sudoers
# This file MUST be edited with the 'visudo' command as root.
# See the man page for details on how to write a sudoers file.

Defaults env_reset
# Host alias specification
# User alias specification
# Cmnd alias specification
# User privilege specification
root ALL=(ALL) ALL

# Allow members of group sudo to execute any command
# (Note that later entries override this, so you might need to move
# it further down)
%sudo ALL=(ALL) ALL
#includedir /etc/sudoers.d
# Members of the admin group may gain root privileges
%admin ALL=(ALL) ALL

View 9 Replies View Related

Security :: Allow User To Logon Remotely Using SSH?

Feb 10, 2010

Is there anyway to prevent a user from being able to logon at a machine (Terminal and XWindows) but allow that user to logon remotely using SSH? This user is for remote capture of logs only - on a private network (no internet access).

View 1 Replies View Related

Ubuntu Security :: Remotely Deleting A Router Log?

Nov 10, 2010

I have recently been the victim of identify theft and have coincidentally noticed that my router has been under attack for the past few days. I've been monitoring the log on my router (a D-Link DI-624+A) and suddenly while I was on Skype, my wireless connection was lost. I reconnected and found that the router's log had been erased. It appears from the log that the hacker has so far been unsuccessful. I have already done a 'whois' on several of the IPs this hacker has been using and have notified the respective ISPs.

Is it possible to remotely delete a router log?

Here's an example of my log before and after the delete:

Wed Nov 10 18:00:24 2010 Unrecognized attempt blocked from to TCP:8080
Wed Nov 10 18:08:24 2010 Unrecognized attempt blocked from to TCP:9415


View 1 Replies View Related

Security :: Properly Set Up Ssh To Only Allow One IP Address To Login Remotely?

Apr 6, 2010

properly set up ssh to only allow one IP address to login remotely

View 2 Replies View Related

Ubuntu Security :: View Browsing History Remotely?

Jan 9, 2010

What are all the ways you could think of that someone could view your browsing history, upstream from your machine? They don't have physical access, there's nothing on the computer itself and the person trying to hack has skill so I'm thinking like monitoring a proxy somehow, using the ip address somehow, compromising the modem in some way, possibly having access to google account etc. I am new to ubuntu and have really dug it so far but I want to figure how this is/was being done

View 9 Replies View Related

Ubuntu Security :: Remotely Creating A Desktop Account On Another System?

Mar 25, 2010

I am at my own desktop and I have root access on my own desktop.

I also have root access on a Desktop Ubuntu system ( on the LAN. I need to create another desktop user account on that system.

So I logged into that system with: ssh -Y myself@
Then I did: sudo users-admin

This brings up the Users Settings but the Add User and Unlock buttons are disabled. How do I enable these buttons?

View 5 Replies View Related

Server :: Authenticate Samba Server With Another LDAP?

Jan 11, 2011

How to authenticate Samba server with another LDAP Server.
- I would like to set up samba server(CentOS5 samba version 3.0.33)for sharing directory. WindowXP client will can access to samba if username and password match with username and password of another existing LDAP server.

- I only know URL and DN of LDAP server and can not modify anything on LDAP Server.

- Can I config at samba server for requirement above.

View 2 Replies View Related

Server :: Set Users To Authenticate From Windows ADC?

Mar 16, 2010

Im using linux (Suse 11.1) on my laptop in my new job, however I need to set up my accounts and any account to authenticate using the existing windows ADC server.

What do i need to do precisely. I have kerberos & Samba installed. Do i need both of them or can I just go ahead and set up one.

View 1 Replies View Related

Server :: LDAP Invalid DN - Authenticate Some Services

Jul 31, 2010

I'm using Ldap to authenticate some services in my company, but from a few days, i finds some errors saying


I'm using webmin to manage its servces.

View 4 Replies View Related

Server :: Samba Unable To Authenticate In NT Domain

May 3, 2010

We're still using an NT Domain Server, and Samba is already configured properly. But the problem is if the shared folder is configured in samba to be accessed by group and not the domain username, authentication fails even if the user is member of the group.

Example#1: (authentication successful)
valid users = domain+username

[sharedfolder] (authentication fails)
valid users = @domaingroup

Samba version is samba-3.0.33

View 2 Replies View Related

Server :: Sendmail Stopped Authenticate Users / What To Do?

Jul 7, 2010

I don't know what happened but sendmail suddenly stopped authenticate my users who tries to send mail.
I use slackware 13.0 and sendmail for SMTP with ssl and plain authentication. Imapd works fine.
There is nothing in logs just that the client did not issue MAIL/EXPN/VRFY/ETRN during connection.

View 9 Replies View Related

CentOS 5 Server :: H/A Samba Service - Won't Authenticate?

Feb 17, 2009

Set up a new cluster service for a cifs share. Has these properties:

Service name = cifs_cases
Autostart is checked
name=cases type=GFS Scope=shared


View 1 Replies View Related

CentOS 5 Server :: Getting SASL+Postfix To Authenticate?

Feb 19, 2009

I'm trying to expand my Courier+MySQL+Postfix+PostfixAdmin server to use SASL logins on Postfix so I can relay on my server. After following several guides I still can't get it to work: Postfix logs show the user transcript and end with "Authentication failure" but it does not tell me what told it that the login failed. The messages log show this:

Feb 19 22:48:55 sportlaan-server saslauthd[7254]: do_auth : auth failure: [user=berend] [service=smtp] [] [mech=pam] [reason=PAM auth error] Which I don't get because I don't think it should be using PAM... I think...

The setup is similar to this one:
My SASL config has this in it:
pwcheck_method: saslauthd
log_level: 3
authdaemond_path: /var/spool/authdaemon/socket
mech_list: plain login

View 2 Replies View Related

Ubuntu Security :: Truecrypt - Remote Mount Volume - Or Send Bash Script Remotely?

Apr 1, 2011

I have an Ubuntu 10.04 machine at home and apache setup on it (files are located in a Truecrypt volume). The reason for the web server being that I wanted to access my files wherever I'm at (i.e. hotel, work, hotspots, etc...). So far, it's worked out great for me seeing as a I can http download my files (or stream media files). However, I am often on a public hotspot and I know it's a matter of time before someone finds the webserver on my computer. I have the machine firewalled and password protected (via .htaccess), but either way I don't want people looking in on my computer.

The problem: I have used Truecrypt for a long time and completely trust using the program to encrypt/unencrypt a volume container to store my files. Usually, I would remote desktop into my computer and mount/unmount the volume when I needed it. However, after time it get's really annoying to do this. So I eventually figured out how to setup a bash script to automatically do this for me (which I put on the usb part of my phone). What I wanted to do was to be able send the bash script to my Ubuntu machine (via ftp from my phone) and have Ubuntu automatically run the script. Is this possible? What programs do I need on Ubuntu?

I was thinking about using something like cron, but that is for scheduled times. I don't really have a set time in which I need my files, it's pretty sporadic depending on how much I travel. Thus the need for being able to remotely mount the volume when I need it.

Summary: I need a way for Ubuntu to read a folder every minute or so to check for bash scripts to run. I want to be able to send the bash script via ftp from my phone, have Ubuntu run the script, then delete itself (so as to not store the password). I already know the script in which to mount the Truecrypt volume and how to send the file via ftp from my phone. It's really a matter of what program to use in Ubuntu to find and run the script.

View 8 Replies View Related

Ubuntu Networking :: Samba Server - Authenticate With Passwords?

Jan 2, 2010

True or False: If you have a user on your Linux/Samba machine with a password, example:
User = Bob
Password = Password0
And Bob is on an XP computer, where his username is also Bob and his password is also Password0, is it normal for Bob to go to:

\SambaServer, double click on Bob's share (valid users = Bob only) and Bob get RIGHT in without being prompted?

On my prior setup, the user HAD to log in. If they wanted auto login next time with their credentials, they had to check "remember password." But now it's as if Samba knows who they are. It's very strange. What's the normal behavior? Must EVERYBODY authenticate with passwords, or if the Windows credentials are the same as Samba does it just somehow auto-detect it and allow them through?

View 3 Replies View Related

Ubuntu Networking :: Cannot Authenticate With Routers BIOS From Server

May 14, 2010

I want to make changes on my router bios for my server I have to go to my windows booted laptop rather than just right here at my server. I only have to do a 360 in my chair and I am at my laptop but I don't want to. Everytime I type the gateway ip it reads off the name of my router and looks fine. But I enter my authentication info and it just returns the login window blank... something ubuntu-side?

WRT160v2 linksys wireless N router (Of course I have cat 5 running to my server)
Ubuntu 10.04 LTS running desktop ontop (because I am still learning how to navigate the console)

View 3 Replies View Related

Ubuntu :: Could Not Authenticate To Server: Rejected Digest Challenge?

Jan 27, 2011

When I run:Quote:mount -t davfs http://xxxx/webdav /home/USER1I get:Quote:Please enter the username to authenticate with serverhttp://xxxx/webdav or hit enter for none.

Username: USER1
Please enter the password to authenticate user USER1 with server
http://xxxx/webdav or hit enter for none.


View 2 Replies View Related

Copyrights 2005-15, All rights reserved