Linux - SoftwareThis forum is for Software issues.
Having a problem installing a new program? Want to know which application is best for the job? Post your question in this forum.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
Once you get root access to the machine you can also take other steps to secure it down. Port 6000 is open. This is because X-windows can accept tcp connections find out how to stop that (I found it though google). For that matter, does X need to be running on the router? You can do other things like set ssh and bind to only listen on your internal ethernet card. Also nmap 127.0.0.1 is not as effective as you'd like to think. You need to scan from the outside. Another command you'll find handy is netstat -nlp. It will report what is listening on what ports. It will help you discover what's on ports 111 and 953.
Originally posted by zelgadis Do you want to verify if the box is secure against attacks from outside of the lan, or secure against local attacks?
I wanna secure it from both,outside and inside connections.
I'm not a security expert but i have read in some security site (dont remember where) that if you want to verify if your box is secure against attacks from internet you must scan the box from outside your lan. Scanning from inside will give you incorrect results.
hope this help a little
That's probably true,scan it from outside,but I don't know anyone who can do that for me.My friends (Windows users only) think about me that I will hack them.Stupid.Better don't ask them.I was hacked few times at 98 and XP box.Not anymore,this is why I'm heading this (not easy for newbie) Linux way.Tired from poor "use-it-way-we-made-it as Microsoft".I rather "use-it-way-I-make-it"in MDK for now.
Ususally what I do is take a "live cd" like knoppix, for example, and run nmap from a friend's pc or maybe you can do it from work (don't get caught ). Also that website seemed to be pretty good about scanning to me. the www.GRC.com site.
Originally posted by benjithegreat98 Ususally what I do is take a "live cd" like knoppix, for example, and run nmap from a friend's pc or maybe you can do it from work (don't get caught ). Also that website seemed to be pretty good about scanning to me. the www.GRC.com site.
I didn't se you are here.
Well as I said,my friends are scared that I'll hack them.And in my job we don't have a computers.Kinda construction job.
Well I guess I have to ask my frineds and try it from their box.But don't know any LIVE CD as Knoppix. I'll look for it.
http://www.knoppix.org/
It runs off of a CD and doesn't touch the hardrive. Very cool. You may even try knoppix STD or PHLAK. They are both more securty/hacking oriented.
I used 192.168.0.1 as an example IP address. Also you need root privy to use the OS dectection switch. you can type su from the command line to get into root.
Originally posted by benjithegreat98 http://www.knoppix.org/
It runs off of a CD and doesn't touch the hardrive. Very cool. You may even try knoppix STD or PHLAK. They are both more securty/hacking oriented.
I used 192.168.0.1 as an example IP address. Also you need root privy to use the OS dectection switch. you can type su from the command line to get into root.
I'll look for Knoppix later.Wil have to leave work soon.But will today yet!
and as SU nmap -P0 -O blabla....operation not permitted and still working.
type man nmap and see what's wrong. If you just type nmap with out anything else it will give some info too. No prob with the help. I'm at work and I'm bored so nothing much else to do besides this.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.