Most of us know the basic security practices on Windows:
Use a limited account Set a password Disable unused services Uninstall bloatware Antivirus / Antimalware etc.
I haven't ran linux as my main desktop computer before, so I don't know how to properly secure it. I have heard linux is supposed to be more secure than Windows, but I know that the default settings of anything are rarely secure. What are some things I should do as a new Linux user to secure my desktop system from attack?
Basically in addition to the first installation account on my system (my account) ive also set up another user alongside my own. Its not a admin account but 'desktop user' account but in the group id section this account comes as '1001'-what does this 1001 mean? Furthermore are there any risks i should know about arising from setting up another account on my pc?
I can't remotely access my desktop when the desktop is asking for a keyring password. Why does this happen? it means that remote access is useless because you would need to enter the password locally before you can vnc to it. I do not wish to disable the default keyring but is there a way of making vnc work so I can enter the password.
I recently created a new user account in ubuntu linux, and created a file called xsession so that I can boot directly into xmbc when I log into that account. Is there anyway to delete the home folder for that account. I can view the file but when I try to delete it is says I do not have apporite permisions to delete the file.
I removed the account and deleted the group but it still shows up when I type in the address /home/xmbc
Is there anyway I can delete this file. It also will not let me create any new user accounts is there any way I can fix these prolbems without totaly reinstalling the system.
I'm trying to setup backuppc to access using apache. I followed this guide: [URL]. Apache2 is correctly running on my pc. I used this command: htpasswd /etc/backuppc/htpasswd user and, as the guide says, I tried to access http://localhost/backuppc but I get nothing there. Is anything else I should do to access backuppc?
I encountered a question in the Redhat Skills Assessment regarding useradd: Which of the following cannot be defined when you create a user account with useradd? a* A password expiration date. b* The user's primary group. c* The user's default shell. d* The user's NIS or LDAP group. e* The user's home directory. Which is the correct answer? I have my own thinking which will be explained later.
I am an experienced Linux user, but have never used Salix before. I have a root account set up on my other Linux distros, but can not figure it out using Salix. The reason I want a root account in Salix because I believe in freedom of choice, and my choice always was and always will be to have a root account set up so I can login as root. I am aware of the risk involed in creating a root account.
i want to create a new account for vsftpd server, say ftpuser1 is userid and password is abc123...i want to give full permission to a directory /documents...where user can add,edit,delete document easily via ftp connection.rest no other ftp users i want to connect it. how best it can be achive what i need to do it.i have install ftp server in centos 5.5
I have a qmail server running, I want to create an autoreponder for one of my accounts using the autorepond for qmail, and I did that the problem is that I receive a very strange response
-It writes the subject inside the message. -It writes the From inside the message. -It does not show HTML when it append the original message.
So I want to have my subject written in the mail subject instead of RE:. Also I want to be able to show HTML inside the auto replay mail.
This is my .qmail file: Code: /home/vpopmail/domains/XXXXXXXX.com/freestuff/Maildir/ | /usr/bin/autorespond 86400 3 /home/vpopmail/domains/XXXXXXXX.com/freestuff/vacation/message /home/vpopmail/domains/XXXXXXX.com/freestuff/vacation
This is the replay I receive after I have removed the From and Subject from the message as you can see in the message file. Code: Thanks for entering our Free Stuff competition. We've got lots of fantastic free stuff to give away every week on www.XXXXXXX.com so stay tuned! All the best!
Original Message With the Subject : RE: test Also the HTML in the original message does not appear I have read that you should write the header in the message file but also does not work, it send them with the auto replay.
My desktop (the system AIDE runs on) is reguarly updated, and the file output can become enormous, making it hard, if not impossible, to track down out of place files. I have recently thought of uninstalling it since I can't tell what is out of place and what isn't, but before I do that I wanted to ask everyones opinion regarding what would be the best way to handle such a program on a desktop that has some core files changed reguarly. This sytem is running Gentoo, so updates affect a number of directories.
creating template (phpldapadmin 220.127.116.11). I create new template where im creating User Account (possixAccount) but i need to create Generic: Ldap Alias that will be created in other ou than account and i need both in one template.
I want to create an unprivileged user account, say 'shutdown', which can be used only to shutdown the system. I followed the instructions in ut when I login into the system, I get this error 'Cannot execute /usr/bin/sudo /sbin/shutdown -h now: No such file or directory'.These are the configurations that I did
/etc/sudoers: Code: shutdown localhost=/sbin/shutdown -h now
I have recently been the victim of identify theft and have coincidentally noticed that my router has been under attack for the past few days. I've been monitoring the log on my router (a D-Link DI-624+A) and suddenly while I was on Skype, my wireless connection was lost. I reconnected and found that the router's log had been erased. It appears from the log that the hacker has so far been unsuccessful. I have already done a 'whois' on several of the IPs this hacker has been using and have notified the respective ISPs.
Is it possible to remotely delete a router log?
Here's an example of my log before and after the delete:
Code: Wed Nov 10 18:00:24 2010 Unrecognized attempt blocked from 18.104.22.168:40245 to xxx.xxx.xxx.xxx TCP:8080 Wed Nov 10 18:08:24 2010 Unrecognized attempt blocked from 22.214.171.124:6000 to xxx.xxx.xxx.xxx TCP:9415
I posted about viewing desktops remotely (received no reply), as I have an "off task web-drifting" problem with some students in my classroom, due to the fact that I no longer have my old SynchronEyes program. I have Windows Vista Business/XP Pro machines (32 of them in all) and I cannot view desktops remotely, regardless of the fact that 1) the Remote Desktop Service is enabled, and 2) I know the IP numbers and the domain names. How can I view desktops remotely with the Remote Desktop Viewer tool in Ubuntu, with the fact that the IP addresses are correct and the Remote Desktop Service is enabled on all 32 machines?
Quote:One of the new features in Firefox 4 that we are very excited about is Content Security Policy, which is a mechanism that works behind the scenes to prevent some of the more severe web-based attacks against users and websites.Firefox users don?t have to do anything in order to gain this protection. Simply install Firefox 4 and you will instantly receive all of the benefits that Content Security Policy has to offer. Easy!
What are all the ways you could think of that someone could view your browsing history, upstream from your machine? They don't have physical access, there's nothing on the computer itself and the person trying to hack has skill so I'm thinking like monitoring a proxy somehow, using the ip address somehow, compromising the modem in some way, possibly having access to google account etc. I am new to ubuntu and have really dug it so far but I want to figure how this is/was being done
I have done a standard install of Ubuntu 10.4 Desktop. All I have changed is to edit the smb.conf to set the correct workgroup. Everything is working fine, except that I am not able to connect to Ubuntu from my Windows 7 pc using Windows' built-in tool. That should work, shouldn't it? Do I need to edit more settings?
Is there anyway to prevent a user from being able to logon at a machine (Terminal and XWindows) but allow that user to logon remotely using SSH? This user is for remote capture of logs only - on a private network (no internet access).
I came back to see on the screen a message requesting remote desktop control. So I said no and went into remote desktop and said never allow connection. I had recently hosted a PHP app on the home pc for testing purposes using apache. Here are some of the last logs entries:
I have won my fight and my father in law accepted to give gnu/linux a try as his server and to run on the computer of the new company he is starting. One feature he would like is to be able to access his work desktop (graphicaly) from home. On my side, I would like to be able to control his desktop from home if I need to show him things. I already can SSH in terminal to install and maintain stuff but, to move the mouse around and point him where to click or what to use would be invaluable.
I have a computer running Fedora 14 and when I installed it, I chose to encrypt the drive.
I've recently changed the way I have things set up and don't want the encryption any more. From what I've read there is no way to simply and easily remove the encryption, so what I would like to do is input the pass phrase remotely.
so, Is there anyway I can type in the pass phrase remotely, or remove the encryption?
I'm using Window-XP and need to remotely connect to a CentOS-5.X server.
UPDATE: I'm looking to visually, securely and with as small a footprint as possible manage a remote Linux system via an GUI. It's not clear to me if Linux has a default method for streaming the desktop. Before installing something on the remote Linux system, is there a grep or find I should run to see if there's existing support on the computer? looked at Xming, but couldn't tell what it's doing; meaning if like WinSCP it's just creating an interface on my end and running CMDs remotely, or if it's streaming the desktop.
In this particular example I am using NoMachine's NX, although the behaviour also occurs when running VNC for instance. I'd like to connect from my laptop (1 physical screen), to my desktop at work (2 physical screen) via NX. It all works but the following problem occurs: When I connect with my laptop to my desktop I (almost) always am connected to the 2nd physical screen, whereas all windows appear on this first screen. I can interact with my desktop, use the task manager etc, see which windows are running, but any application I start, starts on the first screen (which I cannot see) and for the life of me I cannot move them from screen1 to screen2 without dragging them (which obviously is impossible since I only see screen2).The obvious workaround is: *before* you connect disable the second screen via the display manager but for me this is a non-pratical work around because it requires a lot of actions before heading home. how I can connect from a single-head desktop to a dual-head desktop without crippeling my desktop experience?
I've been spending sometime trying to setup anclient on windowso access my fedora serverI'm currently using xming but there's no way whatsoeverme to make gnome available remotely. The closest I got was to open a standard X session with no icons but just a terminal.Is there any quick sanity check I can do before spending more time on this
I have an Ubuntu 10.04 machine at home and apache setup on it (files are located in a Truecrypt volume). The reason for the web server being that I wanted to access my files wherever I'm at (i.e. hotel, work, hotspots, etc...). So far, it's worked out great for me seeing as a I can http download my files (or stream media files). However, I am often on a public hotspot and I know it's a matter of time before someone finds the webserver on my computer. I have the machine firewalled and password protected (via .htaccess), but either way I don't want people looking in on my computer.
The problem: I have used Truecrypt for a long time and completely trust using the program to encrypt/unencrypt a volume container to store my files. Usually, I would remote desktop into my computer and mount/unmount the volume when I needed it. However, after time it get's really annoying to do this. So I eventually figured out how to setup a bash script to automatically do this for me (which I put on the usb part of my phone). What I wanted to do was to be able send the bash script to my Ubuntu machine (via ftp from my phone) and have Ubuntu automatically run the script. Is this possible? What programs do I need on Ubuntu?
I was thinking about using something like cron, but that is for scheduled times. I don't really have a set time in which I need my files, it's pretty sporadic depending on how much I travel. Thus the need for being able to remotely mount the volume when I need it.
Summary: I need a way for Ubuntu to read a folder every minute or so to check for bash scripts to run. I want to be able to send the bash script via ftp from my phone, have Ubuntu run the script, then delete itself (so as to not store the password). I already know the script in which to mount the Truecrypt volume and how to send the file via ftp from my phone. It's really a matter of what program to use in Ubuntu to find and run the script.
Is there any way to install a Ubuntu server and access the server remotely via a Ubuntu desktop environment instead of a SSH command line?
I will be installing a Ubuntu server in an office where the office manager will need to be able to do simple things like add/remove users, access filesystems, etc. She can handle these tasks in Ubuntu desktop/GUI, but it is impractical for her to have to learn how to use the CLI terminal to do this stuff.
Will I have to install desktop Ubuntu on the server to do this, or can I install Ubuntu server version and setup another computer Ubuntu desktop to remotely login graphically?
So I've got a backup server that has a daily cronjob to back up all my systems. My desktop PC is usually in sleep mode to save power. So my backup server has to wake up the desktop via wake-on-LAN to start the backup job. When the backup script is done, my backup server sends a shutdown command to the desktop to put it back in sleep mode.
The trouble is that SSH is timing out during the shutdown process and waits a ridiculous amount of time before giving up and allowing my backup server to move on to the next backup script. Here's the portion of my backup script for the desktop that does the shutdown stuff:
Code: ssh firstname.lastname@example.org '/usr/bin/shutdown -p +1'
Here's what cron sends me via e-mail:
Code: Read from remote host host.lan: Connection timed out real 164m46.280s user 5m16.160s sys 1m39.760s
Normally the entire backup job will only take about 5 minutes. But because of SSH timing out, it takes 164 minutes!
As a matter of detail, my backup server is running Ubuntu 9.10, and the desktop is Windows 7 x64 with Cygwin. The -p option for the shutdown command in Cygwin is for sleep mode.