System7 » linux http://www.system7.org Spread the word, information is free. Mon, 16 Jan 2012 13:24:39 +0000 en hourly 1 http://wordpress.org/?v=3.3.1 Microsoft & UEFI Secure Boot http://www.system7.org/2011/10/31/microsoft-uefi-secure-boot/ http://www.system7.org/2011/10/31/microsoft-uefi-secure-boot/#comments Mon, 31 Oct 2011 14:50:18 +0000 . http://www.system7.org/?p=890 Continue reading ]]> A technical solution has finally been proposed to avoid locking out Linux and other OS vendors from UEFI shipped motherboards.  A couple of months ago Microsoft made waves by announcing their Windows 8 support for UEFI.  Open source supports took notice that this security mechanism could prevent other operating systems from booting on UEFI compatible hardware.

The Linux Foundation has released a paper with a possible solution:

papers suggest that all platforms which enable Secure Boot should ship in “setup mode” which would give the system owner control of the Secure Boot system. Initial startup of an operating system should then detect that setup mode and install a KEK (key-exchange-key) and PK to enable Secure Boot. The system would then securely boot that operating system. When a user needed to take control of their system’s secure boot, a “reset” option for UEFI’s keys would allow those keys to be cleared and a different operating system installed. Microsoft’s Windows 8 could also be pre-installed in the same way; the UEFI reset would then unlock the machine for other operating systems.
]]> http://www.system7.org/2011/10/31/microsoft-uefi-secure-boot/feed/ 0 Reduce ssh brute force attempts… http://www.system7.org/2009/07/26/reduce-ssh-brute-force-attempts/ http://www.system7.org/2009/07/26/reduce-ssh-brute-force-attempts/#comments Sun, 26 Jul 2009 17:12:42 +0000 . http://www.system7.org/?p=283 Continue reading ]]> In case you’re still running sshd on port 22 (which you should change!) you’re probably getting hammered with brute force attempts.  Take a peak at /var/log/secure or /var/log/wtmp or the “last” command and have a looksy.

There’s a great little application called “denyhosts” which will automatically add suspected brute forcers to your DENY list.

 

URL        : http://denyhosts.sourceforge.net/
License    : GPLv2
Description: DenyHosts is a Python script that analyzes the sshd server log
           : messages to determine which hosts are attempting to hack into your
           : system. It also determines what user accounts are being targeted.
           : It keeps track of the frequency of attempts from each host and,
           : upon discovering a repeated attack host, updates the
           : /etc/hosts.deny file to prevent future break-in attempts from that
           : host.  Email reports can be sent to a system admin.

]]> http://www.system7.org/2009/07/26/reduce-ssh-brute-force-attempts/feed/ 1 Cracking Windows SAM file http://www.system7.org/2009/01/30/cracking-windows-sam-file/ http://www.system7.org/2009/01/30/cracking-windows-sam-file/#comments Fri, 30 Jan 2009 10:27:01 +0000 . http://www.system7.org/?p=63 Continue reading ]]> A friend of mine showed me a great online video shows cracking the Window’s SAM file using the BackTrack live CD.

The Windows SAM file which is a database stored as a registry file stores users’ passwords in a hashed format.

The video can be found here and the BackTrack live CD can be downloaded here.

]]> http://www.system7.org/2009/01/30/cracking-windows-sam-file/feed/ 0