Remember the film Miniority Report and the cool computer that Tom Cruise was operating by moving his hands in the air? Well, they made one. Check this out:
On Friday evening during the break in playing xbox with my friends I came across this interesting cartoon:
http://www.snotr.com/video/1665
Install and Configure denyhosts on Ubuntu 8.04 Hardy Heron
Published August 25, 2008 Linux 0 CommentsHaving OpenSSH deamon running is a great thing as you have an access to your Ubuntu shell from anywhere. Unfortunately there are some people that are running tools which scan IP addresses and check open ports. If the tool finds that you have ssh running it will start attacking your server trying to login using dictionary attack or brute force. You will see it in /var/log/auth.log
| sshd[25299]: Failed password for invalid user apple from 218.102.23.197 port 42909 ssh2 sshd[25301]: pam_winbind(ssh:auth): getting password (0×00000000) sshd[25301]: pam_winbind(ssh:auth): request failed: No such user, PAM error was User not known to the underlying authentication module (10), NT error was NT_STATUS_NO_SUCH_USER sshd[25301]: pam_unix(ssh:auth): unrecognized option [bullok_secure] Aug 6 21:40:59 luna sshd[25301]: pam_unix(ssh:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=imsp007.netvigator.com user=root sshd[25301]: Failed password for root from 218.102.23.197 port 42970 ssh2 sshd[25303]: Invalid user brian from 218.102.23.197 sshd[25303]: pam_winbind(ssh:auth): getting password (0×00000000) sshd[25303]: pam_winbind(ssh:auth): request failed: No such user, PAM error was User not known to the underlying authentication module (10), NT error was NT_STATUS_NO_SUCH_USER sshd[25303]: pam_unix(ssh:auth): unrecognized option [bullok_secure] sshd[25303]: pam_unix(ssh:auth): check pass; user unknown sshd[25303]: pam_unix(ssh:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=imsp007.netvigator.com |
This is an authentic example from my friend’s server that was configured to authenticate with Active Directory in Windows 2003.
And that’s how they get you:
| sshd[23781]: pam_winbind(ssh:auth): getting password (0×00000000) sshd[23781]: pam_winbind(ssh:auth): user ‘jane’ granted access sshd[23781]: pam_winbind(ssh:account): user ‘jane’ OK sshd[23781]: pam_winbind(ssh:account): user ‘jane’ granted access sshd[23781]: Accepted password for jane from 172.173.13.22 port 1190 ssh2 |
The cure:
You can close port 22, but that will not allow you to login or install denyhosts which is a great python script used to prevent brute force hacking of your SSH server.
This instructions are for Hardy Heron 8.04:
1. Install denyhosts:
| sudo apt-get install denyhosts |
2. Edit the denyhosts configuration file:
| sudo nano /etc/denyhosts.conf |
| # never purge: PURGE_DENY = # # purge entries older than 1 week #PURGE_DENY = 1w # # purge entries older than 5 days PURGE_DENY = 5d # To block all services for the offending host: # To block only sshd: |
And that’s all! If you would like to go deeper into the configuration, check this link:
http://denyhosts.sourceforge.net/faq.html
Windows Vista Pwned By Web Exploit That Can’t Be Stopped
Published August 9, 2008 Microsoft 0 CommentsPresenters at Black Hat revealed that most, if not all, of Windows Vista’s security features can be taken out with a single browser exploit, using Java and .NET to execute malicious code. What really makes this a killer, is that it is based around Vista’s fundamental architecture, not a specific security flaw, and can be executed with any browser vulnerability. As researcher Dino Dai Zovi told SearchSecurity, “that’s completely game over.” Microsoft programmers are apparently aware of the exploit presentation at Black Hat, and are waiting to see the findings themselves.
Presented by Mark Dowd and Alexander Sotirov, of IBM and VMware, respectively, the exploit negates key security features such as Address Space Layout Randomization (ASLR), Data Execution Prevention (DEP), which make it difficult to locate and execute code and data. And apparently this exploit is so broad and game changing that it could be applied to other platforms. OS X, beware?
Source: http://gizmodo.com
The whole process is pretty simple.
Requirements:
1. iTunes 7.5
http://www.oldapps.com/itunes.htm
2. iPhone firmware 1.1.4
http://appldnld.apple.com.edgesuite.net/content.info.apple.com/iPhone/061-4313.20080226.Sw39i/iPhone1,1_1.1.4_4A102_Restore.ipsw
3. ZiPhone
http://files.ziphone.org/ZiPhoneWin-3.0.exe
4. iBrick
http://www.iphone-hacks.com/downloads/file/37
This tutorial will guide you through unlocking iPhone to any sim, activation and jailbreak.
First of all you will need to downgrade your iPhone from version 2.0 to 1.1.4.
1. Uninstall iTunes
2. Reboot the computer
3. Install iTunes 7.5
4. Connect your iPhone to the PC.
5. ITunes might tell you that you require version 7.7 , don’t worry about it and click OK.
6. Now, switch iPhone to DFU mode. NOT Recovery mode. In DFU mode the screen will be black. In Recovery Mode it shows cable and iTunes icon. You can simply follow this video on YouTube showing how to put iPhone in DFU mode. http://www.youtube.com/watch?v=fiTcKMZfyfk
7. iTunes should detect your iPhone now. Press and hold SHIFT and click Restore. Select Firmware 1.1.4 file that you have downloaded before. iPhone will take around 10-15 minutes with replacing firmware.
8. When done. Launch iBrick program and select to restart iPhone. If the background colour on iPhone will change to red it means that you have done something wrong. You should try again. If it goes green, it means that everything went well and your iPhone will reboot to normal mode.
9. Launch ZiPhone program and simply click on Do It ALL. The program will start to upload some files to the iPhone and it will reboot it. You will see the shell console and the task the program id performing. The process takes less than 10 minutes.
Enjoy your iPhone.
Honda ASIMO Directs Charity Performance of Detroit Symphony
Published May 21, 2008 Robots 0 Comments
Resetting Forgotten Mysql Password on Debian/Ubuntu
Published April 7, 2008 Debian , Linux , MySql 0 CommentsDebian:
1.Log in as root
2.root@deathstar:~# /etc/init.d/mysql stop
3.mysqld_safe –skip-grant-tables &
[1] 5216
Starting mysqld daemon with databases from /var/lib/mysql
mysqld_safe[5253]: started
4. root@deathstar:~$ mysql –user=root mysql
Enter password:
6. Hit enter
5. mysql> update user set Password=PASSWORD(’new-password-here’) WHERE User=’root’;
Query OK, 2 rows affected (0.04 sec)
Rows matched: 2 Changed: 2 Warnings: 0
mysql> flush privileges;
Query OK, 0 rows affected (0.02 sec)
mysql> exit
Bye
5. /etc/init.d/mysql restart
Ubuntu:
Repeat all steps with command sudo
artur@tatooine:~# sudo /etc/init.d/mysql stop
[sudo] password for artur:
etc.
1. Login as root
2. Install OpenSSH by running command:
apt-get install ssh
3. open file /etc/ssh/sshd_config and add these values:
#Authentication
PermitRootLogin no
MaxAuthTries 2
First one blocks access for root, so then you can login with a standard account and hit su to switch to the root user. Second one disconnects from the session after two failed login attempts.
You can also add this line:
AllowUser your_username
It allows only specified user to log in using ssh. After logging in as a standard user just su and you have all root privileges.
