Security Tutorials

Write tutorials here
There are more tutorials here http://community.linuxmint.com/tutorial/welcome
Forum rules
Do not start a support topic here please. Before you post please read this

Security Tutorials

Postby Previous1 on Tue Feb 04, 2014 7:45 pm

Seems like the next best thing until we get a security forum. (Sticky?)

Keep in mind a general understanding of computers and Linux also helps with security. What helps you to understand your system also helps to understand your security.

Quick tips

Specifics

The Deep approach

Far from encompassing but it should be a start.
Image
Tutorials | cynicaltux
Arch Linux i3wm, 64bit
User avatar
Previous1
Level 4
Level 4
 
Posts: 367
Joined: Sun Dec 01, 2013 11:48 am

Linux Mint is funded by ads and donations.
 

Re: Security Tutorials

Postby xenopeek on Thu Feb 06, 2014 2:15 pm

This is a good initiative Previous1! Stickied your post.

Some of my tips you link to are a bit dated. I'll revisit those and see if I can update them if needed, or add some more links :wink:
User avatar
xenopeek
Level 21
Level 21
 
Posts: 15280
Joined: Wed Jul 06, 2011 3:58 am
Location: The Netherlands

Re: Security Tutorials

Postby viking777 on Fri Feb 14, 2014 6:40 am

Feb 13th 2014.

Linksys E1000, E1200, and E2400 router attacks.


If you have one of these routers you may/should want to read this link:

http://arstechnica.com/security/2014/02 ... g-malware/

These routers are being attacked with a self replicating worm (whose purpose is at present unknown).

The link above contains a simple shell command to test for the vulnerability. Also a comment at the end suggests that making sure you don't have 'Remote management' enabled in your router (or, if you must turn it on, at least have it locked down to access from specific machines only) is one way to combat the attack. I don't know enough to comment on the validity of that last statement, but it isn't a bad idea to check in your router management console to see what your situation is. I have done so and I don't even use a linksys router.
Fujitsu Lifebook AH532. Intel i5 processor, 6Gb ram, Intel HD3000 graphics, Intel Audio/wifi. Realtek RTL8111/8168B Ethernet.Lubuntu 13.10,Ubuntu12.10 (Unity), Mint16 (Cinnamon), Manjaro (Xfce).
Image
User avatar
viking777
Level 14
Level 14
 
Posts: 5153
Joined: Mon Dec 01, 2008 11:21 am

Re: Security Tutorials

Postby viking777 on Fri Feb 14, 2014 7:37 am

The Return Of Chrome (well Chromium actually)

I started using Chrome/chromium when it first appeared. I stopped using it at about version 21. I did so because by that time I had christened it "The browser that never fails - to fail". In all the time I used it the same pattern was repeated. It started out as the fastest browser you have ever seen. Then after a period of time it got to the point where it was so useless that it wouldn't even open its own home page
"Aw Snap - Something went wrong"
was all I got to see until I reinstalled it for the umpteenth time. It seemed to have this "Live fast and die young" attitude. Eventually you get tired of this behaviour and revert back to Firefox which, although undoubtedly slower, at least doesn't fail and need reinstalling every other week.

Just recently I have been forced into a rethink, and reluctantly, have reinstalled Chromium onto my pc (it is a different machine now so maybe that will make a difference - I don't know).

The reason is security, more specifically Sandboxing. Chromium has it and Firefox doesn't. If you don't understand what sandboxing is watch this video about it:

https://www.youtube.com/watch?feature=p ... 9e0CtgXZSI

Ah I hear you say, but sandboxing has already been cracked, it is almost a smoke and mirrors exercise. Well, you are right in the first part certainly as this will testify:

http://www.zdnet.com/pwn2own-down-go-al ... 000012283/

But if you read the end of that link you will see the following quote:

"Chrome is probably the most hard to attack because of the sandbox. The weakness in Chrome is Webkit and the strength is the sandbox. Probably one of the reasons Chrome is so secure is that the Google guys don't just fix vulnerabilities but they're proactive in fixing techniques and sandbox bypasses."


That comes from the CEO of the firm that cracked it and really that is a good enough reason for me to reinstall Chromium.

I have it running permanently in 'incognito' mode as well, although that part of it really is of very little value unless you have a publicly usable computer.

My complete and utter lack of trust in this browser means that I only intend to use it for internet banking, nothing else, for everything else I will use FF.

If you aren't already using Chrome/Chromium and security matters to you then it's sandboxing feature is a valid security tool which you may want to consider and one that FF does not have (yet). Even if, like me, you don't like the browser it may still be worth considering.
Fujitsu Lifebook AH532. Intel i5 processor, 6Gb ram, Intel HD3000 graphics, Intel Audio/wifi. Realtek RTL8111/8168B Ethernet.Lubuntu 13.10,Ubuntu12.10 (Unity), Mint16 (Cinnamon), Manjaro (Xfce).
Image
User avatar
viking777
Level 14
Level 14
 
Posts: 5153
Joined: Mon Dec 01, 2008 11:21 am

Re: Security Tutorials

Postby Blank Reg on Sat Feb 15, 2014 12:11 pm

viking777 wrote:Linksys E1000, E1200, and E2400 router attacks.
If you have one of these routers you may/should want to read this link:

There are a lot of vulnerable routers around. Recently a backdoor has been found in many Linksys, Sercom and Netgear DSL routers.

Models affected include: Linksys WAG120N, Netgear DG834B, Netgear DGN2000, Netgear WPNT834, OpenWAG200, Cisco RVS4000, Cisco WAP4410N, Cisco WRVS4400N, Diamond DSL642WLG, SerComm IP806Gx v2 TI, LevelOne WBR3460B, Linksys RVS4000, Linksys WAG120N, Linksys WAG160N, Linksys WAG200G, Linksys WAG320N, Linksys WAG54G2, Linksys WAG54GS, Linksys WRT350N v2, Linksys WRT300N, Netgear DGN1000, Netgear DGN2000B, Netgear DGN3500, Netgear DGND3300, Netgear DGND3300B v2, Netgear DM111P v2, Netgear JNR3210, and Netgear DG834∅/GB/N/PN/GT up to v5, and probably (unconfirmed) Linksys WAG160N, Netgear DG934 and Netgear WG602.

If your router has TCP port 32764 open (backdoor), you can block access to it using the following iptables rule at each reboot (please note, you won't be able to access web admin interface while the rule is in place):

Code: Select all
iptables -I INPUT 1 -p tcp --destination-port 32764 -j DROP
Blank Reg
Level 1
Level 1
 
Posts: 36
Joined: Wed Feb 12, 2014 12:19 pm

Re: Security Tutorials

Postby usbtux on Tue Feb 18, 2014 3:20 pm

I posted some videos for encryption on kde which work on MintKDE

File Encryption in KDE using Kgpg http://youtu.be/rh5ybaQ4Rms
Folder Encryption in KDE http://youtu.be/imjCZ3crBoU

Encrypted Home Partition/Folder KDE Debian http://youtu.be/zhDFoLjJfp4 not needed for MintKDE from install.

Cinnamon is a bit hit and miss, works some time some times not - Passwords and Keys (seahorse) works and you need to add nemo-seahorse to add encryption to the right click menu (YMMV)

hidden encrypted folders use Cryptkeeper available from synaptic/software manager

Encrypted cross platform containers = Trucrypt, Install TrueCrypt in Linux http://www.youtube.com/watch?v=_3vK2XsiDJQ
Last edited by usbtux on Mon Mar 03, 2014 4:05 pm, edited 1 time in total.
http://goo.gl/DXKgM LinuxMint tutorials.
Running LinuxMint 17 Cinnamon/KDE/XFCE
http://goo.gl/WFu0u Installing Mint - the screen cast videos.
linuxcounter #368850
User avatar
usbtux
Level 5
Level 5
 
Posts: 971
Joined: Tue Dec 28, 2010 10:37 am

Re: Security Tutorials

Postby usbtux on Wed Feb 19, 2014 3:31 pm

PCLinuxOSMagazine Nov 2013 has some articles that may interest you. (http://www.pclinuxos.com/)

Encrypting Your Email In Thunderbird
Mailvelope OpenPGP Encryption For Webmail
Root Out Root Kits With rkhunter
Blocking Sites with adblock plus
KeePassX
Hand Of Thief Trojan
http://goo.gl/DXKgM LinuxMint tutorials.
Running LinuxMint 17 Cinnamon/KDE/XFCE
http://goo.gl/WFu0u Installing Mint - the screen cast videos.
linuxcounter #368850
User avatar
usbtux
Level 5
Level 5
 
Posts: 971
Joined: Tue Dec 28, 2010 10:37 am

Re: Security Tutorials

Postby VinCenT_VeGa on Thu Feb 27, 2014 2:19 pm

Thanks guys, nice information!
User avatar
VinCenT_VeGa
Level 1
Level 1
 
Posts: 6
Joined: Wed Feb 12, 2014 10:40 pm

Re: Security Tutorials

Postby Blank Reg on Wed Mar 05, 2014 12:03 pm

Not a tutorial, but relevant nonetheless: Critical crypto bug leaves Linux, hundreds of apps open to eavesdropping

A serious security flaw has been discovered in the GnuTLS library currently used in Debian, LMDE, Ubuntu, etc. All users should upgrade to version 3.2.12.
Blank Reg
Level 1
Level 1
 
Posts: 36
Joined: Wed Feb 12, 2014 12:19 pm

Re: Security Tutorials

Postby xenopeek on Wed Mar 05, 2014 12:41 pm

Blank Reg wrote:All users should upgrade to version 3.2.12.

Nope. All users should upgrade to a patched version of their GnuLTS version, if they are using a version earlier than 3.2.12. On Linux Mint 13, 14, and 16 you will already have received a version of your GnuLTS version that patches CVE-2014-0092. See information on Ubuntu USN: http://www.ubuntu.com/usn/usn-2127-1/
User avatar
xenopeek
Level 21
Level 21
 
Posts: 15280
Joined: Wed Jul 06, 2011 3:58 am
Location: The Netherlands

Re: Security Tutorials

Postby Blank Reg on Wed Mar 05, 2014 2:08 pm

At least in Debian testing and LMDE the current version is 3.2.11-1 which is not patched: http://metadata.ftp-master.debian.org/c ... _changelog (sid carries 3.2.11-2 which fixes CVE-2014-0092).
Blank Reg
Level 1
Level 1
 
Posts: 36
Joined: Wed Feb 12, 2014 12:19 pm

Re: Security Tutorials

Postby usbtux on Tue Apr 08, 2014 3:29 pm

http://goo.gl/DXKgM LinuxMint tutorials.
Running LinuxMint 17 Cinnamon/KDE/XFCE
http://goo.gl/WFu0u Installing Mint - the screen cast videos.
linuxcounter #368850
User avatar
usbtux
Level 5
Level 5
 
Posts: 971
Joined: Tue Dec 28, 2010 10:37 am

Re: Security Tutorials

Postby Previous1 on Tue Apr 08, 2014 4:01 pm

Forum breaks the first link

Code: Select all
https://wiki.manjaro.org/index.php?title=Firefox_about:config_edits
Image
Tutorials | cynicaltux
Arch Linux i3wm, 64bit
User avatar
Previous1
Level 4
Level 4
 
Posts: 367
Joined: Sun Dec 01, 2013 11:48 am

Re: Security Tutorials

Postby xenopeek on Wed Apr 09, 2014 1:31 am

Fixed (just put it in a URL tag when you have complex URLs).
User avatar
xenopeek
Level 21
Level 21
 
Posts: 15280
Joined: Wed Jul 06, 2011 3:58 am
Location: The Netherlands

Re: Security Tutorials

Postby austin.texas on Fri Apr 11, 2014 2:11 pm

Heartbleed vulnerability detection

Chromebleed - an app for Google Chrome and chromium
Chromebleed uses a web service developed by Filippo Valsorda and checks the URL of the page you have just loaded. If it is affected by Heartbleed, then a Chrome notification will be displayed.
https://chrome.google.com/webstore/detail/chromebleed/eeoekjnjgppnaegdjbcafdggilajhpic

Or you can do the test manually with any browser
Heartbleed test
http://filippo.io/Heartbleed/
Mint 17 v2 Cinnamon (64 bit), Quad core AMD A8-3870 with Radeon HD Graphics 6550D, 8GB DDR3, Ralink RT2561/RT61 802.11g PCI
Microsoft-free environment since 1996

To help Linux Mint with a donation, please visit http://www.linuxmint.com/donors.php
User avatar
austin.texas
Level 11
Level 11
 
Posts: 3786
Joined: Tue Nov 17, 2009 3:57 pm
Location: at /home

Re: Security Tutorials

Postby Previous1 on Wed Apr 23, 2014 12:56 pm

Additional Heartbleed links:

shengchieh wrote:For your reference, I added all the heartbleed links I know of. Post others that if you know of.
I know there are some links for mobile phones (not included in my website).

http://shengchieh.50webs.com/tuxslinks.html
-> Others
-> Security (see security at the top; includes Heartbleed links)
(about a page from the bottom - see the last handful of links)

Sheng-Chieh

p.s. You can also view the links for Privacy, Privacy Tools, & Patents - all near the bottom.
Image
Tutorials | cynicaltux
Arch Linux i3wm, 64bit
User avatar
Previous1
Level 4
Level 4
 
Posts: 367
Joined: Sun Dec 01, 2013 11:48 am

Re: Security Tutorials

Postby usbtux on Fri Jun 20, 2014 3:54 pm

usbtux wrote:Cinnamon is a bit hit and miss, works some time some times not - Passwords and Keys (seahorse) works and you need to add nemo-seahorse to add encryption to the right click menu (YMMV)


I'm now using Mint 17 Cinnamon and encryption via seahorse is working fine (for me)
http://goo.gl/DXKgM LinuxMint tutorials.
Running LinuxMint 17 Cinnamon/KDE/XFCE
http://goo.gl/WFu0u Installing Mint - the screen cast videos.
linuxcounter #368850
User avatar
usbtux
Level 5
Level 5
 
Posts: 971
Joined: Tue Dec 28, 2010 10:37 am

Re: Security Tutorials

Postby ValerieCasady on Wed Aug 06, 2014 5:45 am

I will surely check these links! It's absolutely helpful.
ValerieCasady
Level 1
Level 1
 
Posts: 5
Joined: Thu Apr 17, 2014 2:08 am

Re: Security Tutorials

Postby mike acker on Wed Sep 10, 2014 9:49 am

usbtux wrote:PCLinuxOSMagazine Nov 2013 has some articles that may interest you. (http://www.pclinuxos.com/)

Encrypting Your Email In Thunderbird
Mailvelope OpenPGP Encryption For Webmail
Root Out Root Kits With rkhunter
Blocking Sites with adblock plus
KeePassX
Hand Of Thief Trojan


anyone on this forum wishing to learn Thunderbird/ENIGMAIL feel free to contact me: mike_acker@charter.net
the GnuPG dialog in Thuinderbird/ENIGMAIL makes working with PGP (GnuPG on Linux) a snap.
Home assembled box using ASUS M5A88-M motherboard and x64 AMD Phenom II X4 3.4GHz cpu; 4x4MB DDR3 RAM LMDE/MINT 17 Vers. 2.0.14 Kernel 3.11-2-AMD64
User avatar
mike acker
Level 4
Level 4
 
Posts: 387
Joined: Wed Jul 31, 2013 6:29 pm
Location: Kalamazoo, MI

Re: Security Tutorials

Postby Habitual on Wed Sep 10, 2014 10:08 am

What's a landing but a take off in reverse?
User avatar
Habitual
Level 8
Level 8
 
Posts: 2254
Joined: Sun Nov 21, 2010 8:31 pm
Location: LM17Q-Xfce

Linux Mint is funded by ads and donations.
 
Next

Return to Tutorials

Who is online

Users browsing this forum: No registered users and 8 guests