-
Senior Member
registered user
hehe *evil laugh*...
so... i better get meself a network... hahaha
-
Senior Member
registered user
Originally Posted by
chris-harry
hehe *evil laugh*...
so... i better get meself a network... hahaha
chris-harry,
Actually, having a network, and the ability to "remotely login" to it, has unlimited possibilities of fun... From the simple, playing network games, to the prankster, being able to fire off stuff that the user of that system is not aware of or starts. ( of course, you can do extreme good with this ability, like, blow away runaway processes that the user cant get to, or to regain display, tinker with startups without the user "looming over your shoulder", and the like.
Ms. Cuddles
-
Senior Member
registered user
doing good??? confusing... (joke joke)...
i must learn all these things
-
Senior Member
registered user
>>
i must learn all these things
>>
oh dear eek
oh dear eeeeek
-
Senior Member
registered user
dont you mean
"AAAAAAAAAAAAARRRRRRRRRRGH!!! RUN FOR YOUR LIFES!!! EEEEEEEEEEEEEEEEEKKKKKKK!!!!"
-
Senior Member
registered user
remotely login, something like:
ssh username@ip.nu.mb.er
or
ssh username@whateveryouhaveforhost
should work, provifing you have sshd running on the remote system AND a valid account there.
for more
search this forum. here is a sample of what i found
ttp://www.knoppix.net/forum/viewtopic.php?t=8740&highlight=ssh
http://www.knoppix.net/forum/viewtop...&highlight=ssh
http://www.knoppix.net/forum/viewtop...&highlight=ssh
EDIT there are ways of getting access to some computers without an acount. just so you know, security is important, and neglect is asking for trouble./EDIT
-
Senior Member
registered user
OErjan,
I used the man pages for ssh, and though this is more complex, in some ways, it can only be done, if both systems ( the "client" and "server" ) have the "key"...
ssh [ip address]
The man pages show you have to generate the correct "keys", where, and what, they are placed, and even how, to generate these keys. But, what it all comes down to is... You can gain access, either by user, or root, to another system, but, you still have to be able to get to that system in the first place, even to set all of this up.
Fyi,
Ms. Cuddles
-
Senior Member
registered user
I was talking about that there are vulnerabilities in a few older versions (perhaps if we are unlucky current aswell) that can give acess to a system without an account by sending certain strings to the ipnumber on port22, just so you know.
-
Senior Member
registered user
chris-harry wrote:
>>
dont you mean
"AAAAAAAAAAAAARRRRRRRRRRGH!!! RUN FOR YOUR LIFES!!! EEEEEEEEEEEEEEEEEKKKKKKK!!!!"
>>
hehehe .. yes, ... kinda (grin)
Just on the ssh access mentioned ...
I recently installed sarge, and am now running that. It appeares though that a sshd starts up auto at boot. Which didn't happen in woody (modified heaps). as it appears to be listening on port 22, i have noticed the occasional packet coming in on that port.
port 23 (telnet) gets the occasional touch as well.
I only know this thanks to the "logwatch" dpkg that i installed. I have a faily good iptables firewall setup which drops anything unestablished or unsyn, and then logs to syslog/kern.log.
So ... the logwatch facility has been extracting that info and presenting it via the local mail facility.
Code:
logwatch extract ...
Dropped 72 packets on interface ppp0
From 24.207.157.140 - 2 packets
To 203.58.186.120 - 2 packets
Service: 15118 (tcp/15118) (FW_LASTDROP:,ppp0,none) - 2 packets
From 61.155.9.171 - 1 packet
To 203.58.186.120 - 1 packet
Service: ssh (tcp/22) (FW_LASTDROP:,ppp0,none) - 1 packet
From 64.62.190.36 - 36 packets
To 203.58.186.120 - 36 packets
Service: telnet (tcp/23) (FW_LASTDROP:,ppp0,none) - 8 packets
Service: www (tcp/80) (FW_LASTDROP:,ppp0,none) - 8 packets
Service: socks (tcp/1080) (FW_LASTDROP:,ppp0,none) - 8 packets
Service: 3128 (tcp/3128) (FW_LASTDROP:,ppp0,none) - 4 packets
Service: 6588 (tcp/6588) (FW_LASTDROP:,ppp0,none) - 4 packets
Service: webcache (tcp/8080) (FW_LASTDROP:,ppp0,none) - 4 packets
From 83.245.15.238 - 3 packets
etc
As you can see i label my DROP target as "FW_LASTDROP".
I'll have to look into my "snort" setup and possible configure some alet for those.
Point i'm trying to make though is, that even though they are being logged and dropped ... i havn/t noticed because i haven't had time to trawl through my syslog/kern.log files. Or run an extraction program iv'e got for those (manual run).
I don't need any external ssh listening so i'll have to turn it off, and get rid of my telnet program as well.
But if it wasn't installing "logwatch", albeit accidently , i wouldn't have known !.
It does pay to be diligent i think, hmmmmmmmm.
The only other stuff i get is the usuall net-bios ping rubbish from my local IP, the somewhat irritating "ICMP PING CyberKit 2.2 Windows" pings, the occasional MS-SQL Worml probe ... always from the same general loci "chinas telecom" (grin), hmmmm
Last year was mayhem though. Total ping wars everywhere.
jm
-
Senior Member
registered user
until me main computer gets fixed... i wont be able to play with me kernal or iptables or anything... so... i have time to read up on all this... any good info anywhere???
Similar Threads
-
By jeditalian in forum Tips and Tricks
Replies: 2
Last Post: 06-13-2010, 05:32 PM
-
By leif in forum Hardware & Booting
Replies: 6
Last Post: 03-27-2009, 10:33 PM
-
By lotech in forum General Support
Replies: 2
Last Post: 07-26-2005, 03:26 AM
-
By tonynaia in forum General Support
Replies: 6
Last Post: 01-10-2004, 05:47 PM
-
By probono in forum Customising & Remastering
Replies: 2
Last Post: 03-02-2003, 04:27 AM
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
A-Tech 8GB DDR3 1600 PC3-12800 Laptop SODIMM 204-Pin Memory RAM PC3L DDR3L 1x 8G
$13.99
Samsung 16GB 2Rx4 PC4-2133P DDR4-17000 1.2V RDIMM ECC Registered Server Memory
$16.29
HyperX FURY DDR3 8GB 16GB 32GB 1600 MHz PC3-12800 Desktop RAM Memory DIMM 240pin
$12.90
A-Tech 8GB PC3-12800 Desktop DDR3 1600 MHz Non ECC 240-Pin DIMM Memory RAM 1x 8G
$13.99
8GB PC3L-12800S 1600MHz SODIMM DDR3 RAM | Grade A
$12.00
Kingston HyperX FURY DDR3 8GB 16GB 32G 1600 1866 1333 Desktop Memory RAM DIMM
$13.25
A-Tech 16GB 2 x 8GB PC3-12800 Laptop SODIMM DDR3 1600 Memory RAM PC3L 16G DDR3L
$27.98
32GB (4X8GB) DDR3 PC3-12800 1600 NON ECC LOW DENSITY MEMORY F3-12800CL10Q-32GBXL
$32.00
A-Tech 256GB 4x 64GB 4Rx4 PC4-19200 ECC Load Reduced LRDIMM Server Memory RAM
$287.96
A-Tech 64GB 4x 16GB 2Rx4 PC4-17000R DDR4 2133MHz ECC REG RDIMM Server Memory RAM
$87.96