Linux - SecurityThis forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
I have a computer running SuSe Linux 7.0 Pro. There are some people who know a lot about linux, I am just a noob. Someone left a note saying they hacked into it and found the root password. I have changed this password about three times and I keep getting this note.
The computer is not on a network or even the internet. Theres nothing really important on the computer and I dont really care about it. I just want to win this game! lol
Do you know how they could be doing this and how to stop it? Thanks a bunch!
well, it seems taht he has fisical acces to the computer. It's quite easy to get the root pass in that way, or at least to enter as root. What u should do is to set a 15 chars long pass using dots or comas and especiall chars to make a bruteforce a bit dificult. It'd be good also to protect lilo against single user acces, and protect the bios conf with a password and disable floppy or cd booting. U also will have to protect the pc battery so it cant be romoved and the bios conf password will never disspaear.
All this sounds paranoic but this is the only way to be fuuuully secure
Distribution: FreeBSD,Debian, RH, ok well most of em...
Posts: 238
Rep:
did they leave hand written sticky note? or a file on the pc? I had an idiot where i work do that to me a few times till i figured out he was just full of crap. I did most of what ssobeht said but then also setup a webcam. Turns out he didnt do squat just lied and said he did.
ssobeht, thank you. I just finished doing all of what you said. No one will be at the computer untill wednesday, so I'll post a reply then. I'm not sure, but I think he is using single-user mode, so I changed a ton of stuff to fix that.
as for cyph3r7: lol. I know that the person did it - they had changed the password, but I made them change it back. You see, the "hacker" (who I know) and I have access to the comp different times of the day. This is just a little game we have going. We are not friends, but, well we know of each other if you know what I mean.
It is fun, but I am learning a bunch about Linux through the process which is great! Thanks to both of you!!!
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.