LinuxQuestions.org
Welcome to the most active Linux Forum on the web.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie
User Name
Password
Linux - Newbie This Linux forum is for members that are new to Linux.
Just starting out and have a question? If it is not in the man pages or the how-to's this is the place!

Notices


Reply
  Search this Thread
Old 10-17-2016, 08:37 PM   #1
joeeer
LQ Newbie
 
Registered: Oct 2016
Posts: 13

Rep: Reputation: 0
Exclamation Security help


My "friend" needed to do something via the remote access called team viewer. He said instead of using team viewer because it's a third party so they can see everything, he suggested I give him my IP and modem numbers and got all my protocol numbers and all that and went to terminal and put some additional commands with all this information now he can see what I am doing live 24/7. What do I do to reverse this? will getting a new modemn IP do the trick?
 
Old 10-17-2016, 09:29 PM   #2
sag47
Senior Member
 
Registered: Sep 2009
Location: Raleigh, NC
Distribution: Ubuntu, PopOS, Raspbian
Posts: 1,899
Blog Entries: 36

Rep: Reputation: 477Reputation: 477Reputation: 477Reputation: 477Reputation: 477
First thing I would do is disconnect the affected device. Even if you have to plug your computer directly into the Internet (be sure your computer firewall is enabled and blocks everything by default).

Can you give more details about your setup? Make/model? Custom firmware? If so, what firmware? If it's a computer then more details about what OS?

He got terminal access which isn't typical of consumer equipment. Providing more details is better. Descriptions like, "put some additional commands," make it hard for me to help you unless I know what commands.
 
Old 10-17-2016, 09:37 PM   #3
jefro
Moderator
 
Registered: Mar 2008
Posts: 22,178

Rep: Reputation: 3645Reputation: 3645Reputation: 3645Reputation: 3645Reputation: 3645Reputation: 3645Reputation: 3645Reputation: 3645Reputation: 3645Reputation: 3645Reputation: 3645
Hello and welcome to LQ.

I doubt a new IP will do it. Teamviewer generally has a program on your computer to track the changes.

So, you can ask your friend how to remove this if it is a friend. If this is some scammer then you may be in big trouble.

You should be able to use iptables to limit the access to teamviewer ports if it is really teamviewer. You might be able to find the program on your system that is running and remove it.

I'm sure others have ways to defeat this.

I assume you do have linux and may wish to just reload the OS to a current version and be sure to learn and use as many best practices as you can.
 
Old 10-17-2016, 09:56 PM   #4
joeeer
LQ Newbie
 
Registered: Oct 2016
Posts: 13

Original Poster
Rep: Reputation: 0
linux ubuntu 14.04 is in.

Not on teamviewer anymore. He got all my sensitive inforamtion and used that to configure tings also in terminal and can remote see everything without the teamviewer app. I have no idea how to reverse this
 
Old 10-17-2016, 11:28 PM   #5
sag47
Senior Member
 
Registered: Sep 2009
Location: Raleigh, NC
Distribution: Ubuntu, PopOS, Raspbian
Posts: 1,899
Blog Entries: 36

Rep: Reputation: 477Reputation: 477Reputation: 477Reputation: 477Reputation: 477
Quote:
Originally Posted by joeeer View Post
linux ubuntu 14.04 is in.

Not on teamviewer anymore. He got all my sensitive inforamtion and used that to configure tings also in terminal and can remote see everything without the teamviewer app. I have no idea how to reverse this
My highest recommendation is you should disconnect your computer from the Internet to prevent further access. Get a USB drive and back up your sensitive data (typically just /home/$USER). Completely reinstall your OS. There's no telling what that person did so it's best not to chance it. They could have installed a program capable of circumventing any fixes you attempt (firewall or otherwise).

If you don't feel you're capable then reach out to your local Linux User Group (aka LUG). Those folks are typically willing to help out people in your situation. Where are you located geographically?

Last edited by sag47; 10-17-2016 at 11:31 PM.
 
1 members found this post helpful.
Old 10-18-2016, 04:16 AM   #6
Habitual
LQ Veteran
 
Registered: Jan 2011
Location: Abingdon, VA
Distribution: Catalina
Posts: 9,374
Blog Entries: 37

Rep: Reputation: Disabled
Quote:
Originally Posted by joeeer View Post
linux ubuntu 14.04 is in.

Not on teamviewer anymore. He got all my sensitive inforamtion and used that to configure tings also in terminal and can remote see everything without the teamviewer app. I have no idea how to reverse this
You re-installed and used the same passwords?
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
LXer: The week in security: DDoS rising in Australia, US warns on IoT security LXer Syndicated Linux News 0 02-02-2015 01:02 AM
LXer: GCHQ grants security clearance to Samsung's Knox mobe security LXer Syndicated Linux News 0 05-17-2014 04:00 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie

All times are GMT -5. The time now is 10:18 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration