security

  1. D

    fail2ban do not block ip correctly

    Hi all, hope this is the right forum and correct section. I'm new to fail2ban and have some problems to get it running or better that it works as I expect it to work. My system is Ubuntu 20.04. My fail2ban (failban-client is in version 0.11.1) service is up and running (also restarted after the...
  2. P

    How i've used a recent vulnerability in linux to gain root access and troubleshoot a fedora desktop machine

    Recently i was attempting to downgrade from fedora 36-rawhide to fedora 35-stable, and during this process i've lost the sudo command, and didn't have a pre-existing root account, so i've later on tried to access rescue mode by editing the bootloader options, but as i didn't have root account...
  3. R

    How to compile source code of new kernel specifically for my pc hardware with uefi secure boot.

    Hi I am Rupesh from India and I have pc i3 processor and h510 motherboard It has uefi. I have installed open suse tumblewood and all the packages have been updated. As the default kernel provided by open suse tumblewood is not working properly I want to compile source code of new kernel which is...
  4. M

    Is Linux Deepin trusted?

    As you may know Deeping is one of the most beautiful Linux distros but there are some doubts about using it among Linux community. What do you think about it? Is it 100% safe to install and use it? Is there any privacy concerns regarding Deepin?
  5. smooth_buddha

    Lets talk Linux security! What security programs, CLI tools, GUi tools do you use to keep you linux system secure?

    Would love to hear what security tools, apps and programs any of you use to keep your system secure and safe, also any other security measures that you take like sandbox'ing or virtualization, or specific security based distros you like or prefur???? I personally use clamav and clamtk ...
  6. smooth_buddha

    Wifi password shown in human readable text in /etc/wpa_supplicant/wpa_supplicant.conf ??????

    On my raspberry pi4 i was shocked to find that my wifi password was stored in /etc/wpa_supplicant/wpa_supplicant.conf in a human readble format! I was surprised it wasn’t encrypted like the system user passwords in the shadow file. Am I missing something here? does anybody know why it’s been...
  7. S

    How could a hacker accessed Admin's Home directory?

    I request everyone to read full and help me and, sorry for my English. I often got few text files (named as "New Text Document.tmp" / "WindowsUpdate..log", WindowsUpdate-1.tmp" / "0000001.tmp" / "0000001 copy.tmp" / "0000001 copy (2).tmp" ...) in my desktop while using Windows (7 & 10), even...
  8. S

    I think modifying ~/.bashrc and other alike files should require the password of the user or root privilege.

    Otherwise, the scipts could be easily modified by malicious software, such as this one: #!/bin/bash echo -e 'echo -n "[sudo] password for $(whoami): "\nread -s pw\necho I got your password: $pw' > /tmp/hack.sh echo 'alias sudo="bash /tmp/hack.sh"' >> ~/.bashrc If the user executes the...
  9. N

    How to limit root access?

    Hi. In an IT company that contains sysadmins, developers & database admins, how can we limit the sysadmin (root) access on a Linux server. For example: DBAs has special privileges to data bases. But the sysadmin (root) have the access to those files too even without their passwords, that we...
  10. BIgD63

    Security software advice

    I am needing to find a cost effective security endpoint software. Currently we are using BitDefender, but it gets expensive, and some servers we cant run it on. Here is what we need to be able to run it on: Ubuntu 16-20 (working on getting the 16's updated) Debian Amazon Linux 2 CentOS 7.7.xxx...
  11. Confused_nerd

    It shows GPT corrupted, should I be concerned?

    First of all, I use linux mint 20.1 ulyssa, but i decided to try out tails os. So i followed instructions here. But when I was live booting from USB stick, I began reading the text it shows, and the first line it said CAUTION: GPT corrupted, using it anyway. Recommend using encrypted drives. or...
  12. Confused_nerd

    Concerned about BitWarden and password managers..

    HI, I'm using linux mint 20.1, and wanted if using an external password manager like bitWarden is safe? Like, I can just store all my passwords offline, but if I do use BitWarden(or any other password managing tool), will they not also have access to my data? What tools do you guys use for...
  13. B

    I need help for installation

    Hi, i am newbies on linux and i try to install multiple secure linux operating systems on a usb stick and no one work same debian jesssie. i use a thinkpad laptop and when i try to boot them it make weird bugs or boot in text mode.
  14. S

    How to find out which script causes the CPU load

    Today I got into trouble and I catch this virus https://secure.wphackedhelp.com/blog/remove-wp-vcd-malware-wordpress/ I removed files like in tutorial, scanned with scanners, make firewall, blocked user (from screen) etc and my cpu loads decreased from 100% to 50-80% and thats is still problem...
  15. digitard

    We have problems

    https://news.softpedia.com/news/debian-linux-was-the-most-vulnerable-operating-system-in-the-last-20-years-529387.shtml https://www.techradar.com/news/windows-10-isnt-the-most-vulnerable-operating-system-its-actually-linux How someone could choose the most vulnerable operating system for...
  16. LorenDB

    Software review: Howdy

    I found Howdy a few weeks ago while browsing GitHub (that's what programmers do instead of Twitter). It is supposed to be a Linux alternative to Windows Hello. I installed it on my laptop yesterday in order to try it out. My impressions so far: Easy to use if you are familiar with the terminal...
  17. CoolerVoid

    Create your hidden firewall kernel module

    HiddenWall is a Linux kernel module generator for custom rules with netfilter. (block ports, Hidden mode, rootkit functions etc). The motivation: on bad situation, attacker can put your iptables/ufw to fall... but if you have HiddenWall, the attacker will not find the hidden kernel module that...
  18. CoolerVoid

    CodeCat - Tool to help in static code analysis

    Hi all, i am here to share my new open source tool... CodeCat is a open source tool to help you in static code analysis, to find/track sinks and bugs, this points follow regex rules... Current rules for C,C++,GO,Python,javascript,Swift,PHP,Ruby,ASP and Java.(you can create your rules) How...
  19. CoolerVoid

    Hidden Firewall in Kernel Module

    HiddenWall is a Linux kernel module generator for custom rules with netfilter. (block ports, Hidden mode, rootkit functions etc). The motivation: on bad situation, attacker can put your iptables/ufw to fall... but if you have HiddenWall, the attacker will not find the hidden kernel module that...
  20. G

    Is it right to use chmod 777 when this is the only option?

    Firstly good morning. I am a recent user of ubuntu, it must have been about two months that I use it, anyway, I started a WordPress course and in it we used xampp to not need to buy a direct host, however the problem is that WP cannot create new files, either when I download a new theme or...
Top