-
We’re currently investigating an issue related to the forum theme and styling that is impacting page layout and visual formatting. The problem has been identified, and we are actively working on a resolution. There is no impact to user data or functionality, this is strictly a front-end display issue. We’ll post an update once the fix has been deployed. Thanks for your patience while we get this sorted.
Linux Box How Secure it is
- Thread starter Mir96TA
- Start date
eh...you have telnet enabled, your box is due for ownage soon....
welcome to 2006, telnet, rlogin, etc are ALL DEAD...use SSH, turn off all unneeded services, change standard port for SSH, use strong passwords,
I personally lock down SSH so that it requires keys to login, change it's port, chroot any services I can, lock down WHO can connect to that ssh port (what IP's) if it's work related, and use something with a sane package managment system (Deb stable is my preferred) to keep up to date on security.
welcome to 2006, telnet, rlogin, etc are ALL DEAD...use SSH, turn off all unneeded services, change standard port for SSH, use strong passwords,
I personally lock down SSH so that it requires keys to login, change it's port, chroot any services I can, lock down WHO can connect to that ssh port (what IP's) if it's work related, and use something with a sane package managment system (Deb stable is my preferred) to keep up to date on security.
Learning is great and all but if you follow nweaver's advice, you can still do remote logins, break it and fix it just like you want. The difference is you won't be so easily exposing your box to exploitation by nefarious people. Somebody could do a lot of damage by quietly taking control of your box without your knowledge.
InlineFive
Diamond Member
"Break it" shouldn't include placing it on the internet with weak services exposed.
Not to mention...with telnet, I can see EVERYTHING you type, passwords, commands, usernames...all passed across the internet in plain text. Not only are you running an insecure, out of date protocol, but you do it in plaintext (nature of telnet).
It's like bending over in the shower prison...
Fallen Kell
Diamond Member
You will be owned in a week or two with telnet enabled. Someone running a network snoop between you and the box will potentially be able to see all your passwords.
Looks like your host ip changed as well, or you are running HP-UX Unix and not Linux. And if that is your box, well, I hope you have ftp turned off because there are about 20 remote vulnerabilities in the HP-UX ftp program which allow remote root access, and unless you downloaded and applied the specific patches, you are vulnerable.
Looks like your host ip changed as well, or you are running HP-UX Unix and not Linux. And if that is your box, well, I hope you have ftp turned off because there are about 20 remote vulnerabilities in the HP-UX ftp program which allow remote root access, and unless you downloaded and applied the specific patches, you are vulnerable.
Bradtechonline
Senior member
You need to disable Incoming ICMP Echo requests (Pings). Also disable UDP/TCP/ ping requests. Ditch Telnet, and shutdown any service you are not using. If you have ICMP enabled you are going to get DoS attacked.
Nothinman
Elite Member
Not really, it'll cut down on some of the script kiddy traffic but that's it. And TCP/UDP 'ping requests' just involve a remote host attempting to connect and seeing if the remote host gives any kind of reply (i.e. port open or closed) so it's impossible to block them and still leave ports open for connectivity.
Hardly. And ICMP is required for certain error conditions, well actually they'll still work but they'll take a lot longer to time out as you won't be able to receive notifications about things like remote port closed, remote host unreachable, etc.
I want to get owned! Big time
Take over the Box......
On Worst Case All I have to de Rebuild
That is the Goal.
All I want in Retuen; If you were able to get in
Please tell me How you did! and If you can Create Dir "Dummy" if there is one already
Create DummyX X=1 or numbers.......
Box just a Simple Box
I got no Data which I care....... So go ahead do it what ever you Can 🙂
Take over the Box......
On Worst Case All I have to de Rebuild
That is the Goal.
All I want in Retuen; If you were able to get in
Please tell me How you did! and If you can Create Dir "Dummy" if there is one already
Create DummyX X=1 or numbers.......
Box just a Simple Box
I got no Data which I care....... So go ahead do it what ever you Can 🙂
RebateMonger
Elite Member
LOL. I was hoping you'd go first.
The IP appears to be Canadian, which probably makes it a matter for the Canadian antiterrorism police. These days, you could end up in an secret American-sponsored Syrian prison with electrodes attached to various sensitive parts of your body. :Q
InlineFive
Diamond Member
Erm, why do you need us to intentionally break it (while possibly violating a few laws) when we can just tell you what is wrong?
Your root password is "sg6c11-3".
I created the dummy directory, uploaded all my pR0n and MP3s to it, called the RIAA and the MPAA, notifying them of the infraction on your part, then had a buddy pull off the data a few hours later. Since then, we've deleted all traces of our activity, except for the remote login records you'll find in /var/log.
PS. I left a back door and keylogger, so I wouldn't do much more online banking/shopping, if I were you. Enjoy
I created the dummy directory, uploaded all my pR0n and MP3s to it, called the RIAA and the MPAA, notifying them of the infraction on your part, then had a buddy pull off the data a few hours later. Since then, we've deleted all traces of our activity, except for the remote login records you'll find in /var/log.
PS. I left a back door and keylogger, so I wouldn't do much more online banking/shopping, if I were you. Enjoy
Bradtechonline
Senior member
Well, I just ate up all your bandwidth because you won't disable incoming echo request. Your ping times are in the 1,000's right now. I got enough bandwidth to eat up almost all of yours.
Do yourself a favor, and block it.
Do yourself a favor, and block it.
First, blocking ICMP requests doesn't solve the bandwidth issue. If the data has made it to the firewall it's already in the pipe. If it's in the pipe, the pipe can be saturated.
Second, ICMP is important and shouldn't be blocked.
What does blocking icmp really do for you? It definitely isn't anything security related...
Bradtechonline
Senior member
Whenever I block ping requests, and try to packet a server with it. It does not effect the latency times. I've tried it, but when I try to do the same to an unblocked Ip it increases the latency times. I know this for sure because I messed around with a friends home IP when he was playing games as a joke. I then had him get a firewall, and block it. I then tried to do it, and it would not effect his latency times.
TRENDING THREADS
-
Discussion Zen 5 Speculation (EPYC Turin and Strix Point/Granite Ridge - Ryzen 9000)- Started by DisEnchantment
- Replies: 25K
-
Discussion Intel Meteor, Arrow, Lunar & Panther Lakes + WCL Discussion Threads
- Started by Tigerick
- Replies: 24K
-
Discussion Intel current and future Lakes & Rapids thread- Started by TheF34RChannel
- Replies: 24K
-
-
