Linux - SecurityThis forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
Begin using a password vault. Set up passwords that are insanely complex and long. I start with the longest generated password my vault will create and work downward if it's too long for the web site. (Many don't tell you the maximum length so start big and shorten as needed.) Change the passwords in your vault every few months, say, every quarter.Don't save your passwords in your browser. Don't tell your browser to "stay logged in". It's a PITB to work this way but only at first. Then, as you get used to using the vault, muscle memory kicks in.
As for FB, you might be able to get in touch with them and have your account disabled for a period and work with them to get the password changed so your Russian [1] "friend" cannot get back in. Hopefully, you'll be able to repair any bridges that this miscreant has burned for you.
HTH...
[1] -- I wouldn't discount the "Russian" label the OP has put on his FB attacker. I live just down the road from Bolingbrook and there's a sizable Russian community out in Chicago's SW suburbs.
Not saying I do, but it's totally immaterial to the matter at hand. The OP has not provided (and will probably NEVER provide) any evidence/proof. This thread is very similar to all the other 'I've been hacked' threads that have cropped up in the past year.
Lots of hand wringing about letting others be 'victimized', the OP being 'freaked out', etc....funny with the evidence they have that they haven't contacted the police. Chicago has a cyber crimes unit, and the FBI has a field office there. Should be NO problem to turn over this 'evidence' to them, seeing as this totally inexperienced user seems to have all the IP addresses, locations, names, etc.
Which brings us back to "why bother opening a thread on a Linux forum?", when one has all that already?
Distribution: openSUSE, Raspbian, Slackware. Previous: MacOS, Red Hat, Coherent, Consensys SVR4.2, Tru64, Solaris
Posts: 2,800
Rep:
Quote:
Originally Posted by TB0ne
Not saying I do, but it's totally immaterial to the matter at hand. The OP has not provided (and will probably NEVER provide) any evidence/proof. This thread is very similar to all the other 'I've been hacked' threads that have cropped up in the past year.
My apologies if I was mistakenly urging you to do be more careful about passwords. (Intended for the OP.) Immediately changing passwords would be the first thing I'd do if I thought that someone had gotten onto one of my computers as part of any additional hardening. Using a vault makes it easier (for me, at least) to a.) make them disgustingly long and unguessable and b.) less likely that I'm going to reuse them across different sites.
Quote:
Lots of hand wringing about letting others be 'victimized', the OP being 'freaked out', etc....funny with the evidence they have that they haven't contacted the police. Chicago has a cyber crimes unit, and the FBI has a field office there. Should be NO problem to turn over this 'evidence' to them, seeing as this totally inexperienced user seems to have all the IP addresses, locations, names, etc.
Agree about contacting the authorities. Perhaps the OP is nervous about doing that. We'll likely never know. (What's on his computer that he might be embarrassed to have the FBI see?).
Quote:
Which brings us back to "why bother opening a thread on a Linux forum?", when one has all that already?
It's a place to start, I guess, if the OP was looking for a DIY solution to his problem. (See above comment about whether there's embarrassing material on his computer.)
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.