[es] - Linux internet cafe:)

codemaster
Dušan Jović
Leskovac/Novi Sad

Član broj: 17387
Poruke: 263
*.ns.ac.yu.

Sajt: swim.ee

Profil

^{03.05.2006. u 11:11 - pre 218 meseci}

Code:
Linux med-2 2.6.15-1.2054_FC5 #1 Tue Mar 14 15:48:33 EST 2006 i686 i686 i386 GNU/Linux

Sjajno

Nemam root password, sad pokusavam da poteram wget i fetchmail, da li uopste moze

Code:

[korisnik@med-2 ~]$ wget http://swim.ee/videos/shangai2006/mfre100sf1.mpg
--12:09:17-- http://swim.ee/videos/shangai2006/mfre100sf1.mpg
=> `mfre100sf1.mpg'
Resolving swim.ee... 195.222.13.16
Connecting to swim.ee|195.222.13.16|:80... Terminated
[korisnik@med-2 ~]$ hostname
med-2
[korisnik@med-2 ~]$ fetchmail -a -S $med-2
gethostbyname failed for med-2
Name or service not knownCannot find my own host in hosts database to qualify it!
Trying to continue with unqualified hostname.
DO NOT report broken Received: headers, HELO/EHLO lines or similar problems!
DO repair your /etc/hosts, DNS, NIS or LDAP instead.
fetchmail: no mailservers have been specified.
[korisnik@med-2 ~]$ exit
[korisnik@med-2 ~]$ fetchmail -u dusan pop3.info-net.co.yu
gethostbyname failed for med-2
Name or service not knownCannot find my own host in hosts database to qualify it!
Trying to continue with unqualified hostname.
DO NOT report broken Received: headers, HELO/EHLO lines or similar problems!
DO repair your /etc/hosts, DNS, NIS or LDAP instead.
fetchmail: removing stale lockfile
Enter password for [email protected]:

[korisnik@med-2 ~]$ dnsdomainname
dnsdomainname: Unknown host
[korisnik@med-2 ~]$ exit

Code:
[korisnik@med-2 ~]$ ping www.yahoo.com
PING www.yahoo.akadns.net (68.142.197.85) 56(84) bytes of data.

i stoji tako...

da li ima nade, ili da ostanem na firefoxu, wget i fetchmail se samo zakucaju, Terminated je by killall...
kad bih provalio root pass...;D

_{[Ovu poruku je menjao codemaster dana 04.05.2006. u 22:38 GMT+1]}

Sve je ovde.
Ti si sam.
Nemaš ništa.
Prihvati svoj život.

Odgovor na temu

codemaster
Dušan Jović
Leskovac/Novi Sad

Član broj: 17387
Poruke: 263
..mtsns-ns.customer.sbb.co.yu.

Sajt: swim.ee

Profil

Re: Linux internet cafe:)

^{04.05.2006. u 15:08 - pre 218 meseci}

niko nista ne misli?

Sve je ovde.
Ti si sam.
Nemaš ništa.
Prihvati svoj život.

Odgovor na temu

Borovic
Stefan Borovic
Beograd

Član broj: 80154
Poruke: 204
*.eunet.yu.

Jabber: borovic@elitesecurity.org

Profil

Re: Linux internet cafe:)

^{04.05.2006. u 16:52 - pre 218 meseci}

Ocigledno niko ne zeli da ti odgovori zbog:

Citat:

kad bih provalio root pass...:D

Razmisli zasto...

Odgovor na temu

mulaz
Ljubljana

Član broj: 47602
Poruke: 2239
*.dial-up.dsl.siol.net.

Jabber: mulaz@elitesecurity.org
Sajt: www.mulaz.org

+184 Profil

Re: Linux internet cafe:)

^{04.05.2006. u 18:14 - pre 218 meseci}

probaj da rekompajliras wget i promeni ime binary fajla.. i moli boga da ce da radi

ako je samo neka skripta tipa ` while true; do sleep 1m; killal wget; killall fetchmail, ..., done` . moglo bi da radi

_{[Ovu poruku je menjao mulaz dana 04.05.2006. u 19:14 GMT+1]}

Bolje ispasti glup nego iz aviona
http://www.mulaz.org/

Odgovor na temu

codemaster
Dušan Jović
Leskovac/Novi Sad

Član broj: 17387
Poruke: 263
..mtsns-ns.customer.sbb.co.yu.

Sajt: swim.ee

Profil

Re: Linux internet cafe:)

^{04.05.2006. u 19:38 - pre 218 meseci}

Citat:

Borovic Ocigledno niko ne zeli da ti odgovori zbog:

Citat:
kad bih provalio root pass...:D

Razmisli zasto...

Svasta:D Pa nisam mislio >>stvarno<<, provalite mi root pass, please, randome break the code, gojko udrii, znam da ne mogu nista da sredim zato sto nemam root access, zato sam i postavio temu.

Citat:

mulaz probaj da rekompajliras wget i promeni ime binary fajla.. i moli boga da ce da radi

ako je samo neka skripta tipa ` while true; do sleep 1m; killal wget; killall fetchmail, ..., done` . moglo bi da radi

Nije skripta, nesporazum, vec samo komanda script prosledi ono sto radim u konzoli (stdin valjda:) u typescript text file.

Sve je ovde.
Ti si sam.
Nemaš ništa.
Prihvati svoj život.

Odgovor na temu

codemaster
Dušan Jović
Leskovac/Novi Sad

Član broj: 17387
Poruke: 263
..mtsns-ns.customer.sbb.co.yu.

Sajt: swim.ee

Profil

Re: Linux internet cafe:)

^{04.05.2006. u 19:45 - pre 218 meseci}

probacu da instaliram iste programe u nekom svom folderu, nisam sad na Linuxu pa da proverim da li je moguce da se executable izvrsi bez onog

Code:
#chmod -7?? /bin/file

Sve je ovde.
Ti si sam.
Nemaš ništa.
Prihvati svoj život.

Odgovor na temu

mulaz
Ljubljana

Član broj: 47602
Poruke: 2239
*.dial-up.dsl.siol.net.

Jabber: mulaz@elitesecurity.org
Sajt: www.mulaz.org

+184 Profil

Re: Linux internet cafe:)

^{04.05.2006. u 20:07 - pre 218 meseci}

ne treba ti chmod..

samo skompajlaj sa ./configure --prefix=/tmp/codemaster ili nesto

Bolje ispasti glup nego iz aviona
http://www.mulaz.org/

Odgovor na temu

codemaster
Dušan Jović
Leskovac/Novi Sad

Član broj: 17387
Poruke: 263
..mtsns-ns.customer.sbb.co.yu.

Sajt: swim.ee

Profil

Re: Linux internet cafe:)

^{04.05.2006. u 20:14 - pre 218 meseci}

Ok, pretpostavio sam da moze. (taj nuxli je u citaonici na medicinskom faxu

Zamislite!)
Radi samo prepodne pa nemam kad ni da probam.

Medjutim, sta sa hostname?

_{[Ovu poruku je menjao codemaster dana 04.05.2006. u 21:16 GMT+1]}

Sve je ovde.
Ti si sam.
Nemaš ništa.
Prihvati svoj život.

Odgovor na temu

GPr
Gudović Predrag
Novi Sad

Član broj: 26904
Poruke: 63
*.cust.panline.net.

Profil

Re: Linux internet cafe:)

^{08.05.2006. u 11:52 - pre 218 meseci}

restartuj masinu kada ti se pojavi grub prekini automatsko ucitavanje pritiskom na bilo koji taster
zatim pritisni taster 'a' i dokucaj na kraju rec 'single'

startovace se u 'single' modu 'init 1' odma si ulogovan kao 'root'

ukucaj komandu 'passwd' i zadaj novu lozinku za 'root' korisnika otkucaj komandu 'exit'

nadam se da ce ti pomoci :)

Ako Kaniš Pobjediti Nesmiješ Izgubiti
www.apos.org.rs

Odgovor na temu

VRider
Marković Damir
(BGD/SD Karaburma)/Pirot

Član broj: 1510
Poruke: 4132
*.maksnet.net.

Jabber: damirm | gmail | com
ICQ: 134002435

+13 Profil

Re: Linux internet cafe:)

^{08.05.2006. u 15:47 - pre 218 meseci}

Ako je admin ovca, pomoci ce.

hint: sulogin

JaFreelancer.com

Odgovor na temu

codemaster
Dušan Jović
Leskovac/Novi Sad

Član broj: 17387
Poruke: 263
..mtsns-ns.customer.sbb.co.yu.

Sajt: swim.ee

Profil

Re: Linux internet cafe:)

^{15.05.2006. u 14:34 - pre 218 meseci}

Citat:

GPr restartuj masinu kada ti se pojavi grub prekini automatsko ucitavanje pritiskom na bilo koji taster
zatim pritisni taster 'a' i dokucaj na kraju rec 'single'

startovace se u 'single' modu 'init 1' odma si ulogovan kao 'root'

ukucaj komandu 'passwd' i zadaj novu lozinku za 'root' korisnika otkucaj komandu 'exit'

nadam se da ce ti pomoci :)

Pomoglo je;)) Kako da onemogucim single user mode, odnosno da, jednostavno receno, niko ne moze da promeni sada, moj, root password?

Sve je ovde.
Ti si sam.
Nemaš ništa.
Prihvati svoj život.

Odgovor na temu

VRider
Marković Damir
(BGD/SD Karaburma)/Pirot

Član broj: 1510
Poruke: 4132
*.maksnet.net.

Jabber: damirm | gmail | com
ICQ: 134002435

+13 Profil

Re: Linux internet cafe:)

^{15.05.2006. u 14:42 - pre 218 meseci}

Znaci, ne verujem!

Sada ti iskoristi moj hint (sulogin) i osiguraj single user mod. I stavi password na grub.

JaFreelancer.com

Odgovor na temu

codemaster
Dušan Jović
Leskovac/Novi Sad

Član broj: 17387
Poruke: 263
..mtsns-ns.customer.sbb.co.yu.

Sajt: swim.ee

Profil

Re: Linux internet cafe:)

^{15.05.2006. u 14:57 - pre 218 meseci}

Citat:

VRider: Znaci, ne verujem! :)
Sada ti iskoristi moj hint (sulogin) i osiguraj single user mod. I stavi password na grub.

Ne, ne zelim da zabranim ostalima da koriste Linux, nego samo da se obezbedim.
>Kako ide to sa sulogin?
>I koje su mi mogucnosti, osim sto mogu da radim sve sto pozelim sa tim kompom:), sta sa mrezom?
Server je IPCop 1.4, otovoreni su mu 22,53,80 portovi. Sutra cu postovati precizno, sada mi nije dostupan.

Sve je ovde.
Ti si sam.
Nemaš ništa.
Prihvati svoj život.

Odgovor na temu

codemaster
Dušan Jović
Leskovac/Novi Sad

Član broj: 17387
Poruke: 263
..mtsns-ns.customer.sbb.co.yu.

Sajt: swim.ee

Profil

Re: Linux internet cafe:)

^{15.05.2006. u 15:08 - pre 218 meseci}

Evo o sulogin.
Da li ovako:

Code:
If the -p flag was set, the single-user shell will be invoked with a dash as
the first character in argv[0]. That will cause most shells to behave as a login shell.
The default is not to do this, so that the shell will not read
/etc/profile or $HOME/.profile at startup.

ili

Code:
sulogin looks for the environment
variable SUSHELL or sushell to determine what shell to start. If the environment variable
is not set, it will try to execute root's shell from /etc/passwd. If that fails it will
fall back to /bin/sh.

secure sulogin

Code:
   So, setting up sulogin for single user mode would appear to
   make the system more secure, right? Wrong.

   The only thing sulogin accomplishes is that it requires you
   to enter the root password to log in when the system boots to
   single user mode. This doesn't really afford any extra
   protection, since with a root password you can do anything on
   the system - modify lilo.conf or inittab, and remove sulogin.
   If you do not have the root password, then you cannot modify
   or read lilo.conf (unless of course the admin really messed
   up).

So if the boot process is properly secured, they won't

   be able to get into single user mode, or use the "init="
   statement. Using "restricted" and "password=" in lilo.conf
   is much more effective for securing the machine against
   people booting into single user mode.

   Now the argument can be made that if the user brings the
   system down to single user mode (via "telinit 1" or
   "shutdown now," for example) and are dumped to a root prompt,
   they could do some serious damage. Local users should be
   given the ability to shutdown their computers (to save power
   at night, or if the power goes out, or whatever); sulogin
   is useful for this, but it is pointless to use sulogin on
   its own, since the user will just pull the plug on the PC
   and enter "linux init=/bin/sh" to get a root prompt.

==

    Summary
==

   Sulogin is a useful security measure, but is absolutely useless
   if not used in conjunction with other security measures.
   It's like putting an expensive deadbolt lock on your screen
   door. Used properly, with a secure LILO configuration,
   sulogin is very effective for preventing local users from
   getting access to a root prompt easily. Of course, even with
   a secure LILO configuration, sulogin, and every security
   patch, it is still possible for a local user to get a root
   prompt simply by booting the machine from a Linux rescue
   floppy disk (or other removable media such as CD-ROM).

To fix

   this you must of course put a password on the BIOS, and lock
   the boot order to C: first. Some BIOSes even let you set a
   separate password for booting off removable media. If this
   doesn't convince you that computer security needs to be
   treated as a complex system and not a series of seemingly
   unconnected problems, then I don't know what will. Oh wait,
   actually I do: Bruce Schneiers new book, Secrets and
   Lies.

I još

Code:
Or disable sulogin for single user mode by editting /etc/inittab

E sad, posto sam u Windowsu, i ne mogu da isprobam, moze li mi neko pomoci konkretnim primerom, da pastuje svoj /etc/inittab fajl? Resenje ce, koliko sam shvatio, biti da se dekomentuje linija koja definise runlevel 1 (single user mode, sulogin)??

_{[Ovu poruku je menjao codemaster dana 15.05.2006. u 16:41 GMT+1]}

Sve je ovde.
Ti si sam.
Nemaš ništa.
Prihvati svoj život.

Odgovor na temu