Puppy Linux Discussion Forum Forum Index Puppy Linux Discussion Forum
Puppy HOME page : puppylinux.com
"THE" alternative forum : puppylinux.info
 
 FAQFAQ   SearchSearch   MemberlistMemberlist   UsergroupsUsergroups   RegisterRegister 
 ProfileProfile   Log in to check your private messagesLog in to check your private messages   Log inLog in 

The time now is Tue 21 Oct 2014, 20:21
All times are UTC - 4
 Forum index » Off-Topic Area » Security
Paranoia for Beginners
Post_new_topic   Reply_to_topic View_previous_topic :: View_next_topic
Page 9 of 17 Posts_count   Goto page: Previous 1, 2, 3, ..., 7, 8, 9, 10, 11, ..., 15, 16, 17 Next
Author Message
Lobster
Official Crustacean


Joined: 04 May 2005
Posts: 15117
Location: Paradox Realm

PostPosted: Thu 24 Feb 2011, 10:04    Post_subject:  

For those not adopting the 'back to modem' or 'always off' internet connection
methodology, here is how flash, available in Puppy and PDF,
also available, is the new point of attack . . .

http://www.anewmorning.com/2011/02/17/adobe-becomes-new-favourite-target-for-hackers-infographic/

Frets, threats and solutions to the usual drop point . . .

Puppy Linux
Securing your PC

_________________
Puppy WIKI
Back to top
View user's profile Send_private_message Visit_website 
Lobster
Official Crustacean


Joined: 04 May 2005
Posts: 15117
Location: Paradox Realm

PostPosted: Thu 24 Feb 2011, 10:06    Post_subject:  

Quote:
Polygraph Technician: This is a control question, a riddle really. How would you say would be the easiest way to take a weapon away from a Grammaton Cleric?
Brandt: [speaks into Preston's ear] You ask him for it.


That is from the film 'Equilibrium' with its outrageous but fun Gun-Fu

Let us apply it to the current time . . .
Them - How do you find out what people are doing and thinking?
Puppy Whisper - You ask them.


Simple really. Facebook rises. Is insecure. Job done.
The new generation shares and blogs without privacy concerns.
Transparency is the new norm. Are you raising suspicion by not having a social network account? Rolling Eyes

_________________
Puppy WIKI
Back to top
View user's profile Send_private_message Visit_website 
Lobster
Official Crustacean


Joined: 04 May 2005
Posts: 15117
Location: Paradox Realm

PostPosted: Mon 28 Feb 2011, 23:14    Post_subject:  

bacofoil = proprietary tinfoil used by tin hats

I am a great believer in preemtive paranoia.
Get them before they are after you. Smile

Of course I am not crazy enough to implement this system which
I call the 'triple dorje' but the idea may be sound:

This is the system I would implement if I ran out of bacofoil.
Requires 3 computers. Each connected to the router, each secure.
Maybe it could be done with Virtual Box.
I would then swap between the three computers, perhaps generating spurious
noise from two machines . . .
Yeah too crazy - I know . . . Rolling Eyes

But maybe it is possible to write a macro that simulates
usage, whilst implementing an underlying 'world domination communication' node . . .

This week we got line crackle and had to have a new line installed to the telegraph poles (still used in parts of London) This carries both the telephone line and broadband. Our old line was about 30 years old and exposed to the elements and had corroded. It all sounded very plausible. Probably because it was.
Come to think of it we are one of the few streets that does not have cable. Why? Must find more bacofoil whilst I contemplate the answer . . . Wink

_________________
Puppy WIKI
Back to top
View user's profile Send_private_message Visit_website 
Lobster
Official Crustacean


Joined: 04 May 2005
Posts: 15117
Location: Paradox Realm

PostPosted: Sun 06 Mar 2011, 05:58    Post_subject:  

Being truly paranoid one has to worry about operating systems one is not even running

This on security breach on Android OS
http://techcrunch.com/2011/03/05/android-malware-rootkit-google-response/

Eventually I intend to be running Android or its descendent as a brain implant,
so am a little concerned at the remote kill precedent - a good thing for now . . .

Puppy Linux
Organically based

_________________
Puppy WIKI
Back to top
View user's profile Send_private_message Visit_website 
Lobster
Official Crustacean


Joined: 04 May 2005
Posts: 15117
Location: Paradox Realm

PostPosted: Tue 08 Mar 2011, 01:23    Post_subject:  

Electromagnetic pulses can fry our electronics temporarily.
A multisession Puppy can get us up and running again
with our data intact.
Would hard drives and solid state devices survive?
http://www.puppylinux.com/multi-puppy.htm

_________________
Puppy WIKI
Back to top
View user's profile Send_private_message Visit_website 
Lobster
Official Crustacean


Joined: 04 May 2005
Posts: 15117
Location: Paradox Realm

PostPosted: Mon 21 Mar 2011, 23:06    Post_subject:  

Something for you to worry about:
http://www.darkreading.com/vulnerability-management/167901026/security/application-security/228300386/web-based-malware-infections-have-doubled-since-last-year-report-says.html?cid=sem_edit_DR_APP_SEC

I quite like the sound of drive by malware.
Does this mean hackers in cars checking out the wifi connections?
I do occasionally run my eeepc from wifi and now have another wifi connected PC,
with which yesterday. I turned the firewall off.
Tsk tsk - so reckless . . .

_________________
Puppy WIKI
Back to top
View user's profile Send_private_message Visit_website 
Lobster
Official Crustacean


Joined: 04 May 2005
Posts: 15117
Location: Paradox Realm

PostPosted: Sun 27 Mar 2011, 01:23    Post_subject:  

I know most paranoids are too fearful to trust the excellent Lastpass
http://lastpass.com/

so here is how to implement a secure password,
http://www.columnfivemedia.com/wp-content/uploads/2011/01/110110-ZA-PASSWORD.png

that should keep you happy in between tinfoil origami classes Wink

_________________
Puppy WIKI
Back to top
View user's profile Send_private_message Visit_website 
abushcrafter


Joined: 30 Oct 2009
Posts: 1447
Location: England

PostPosted: Tue 29 Mar 2011, 14:57    Post_subject:  

Lobster wrote:
Being truly paranoid one has to worry about operating systems one is not even running

This on security breach on Android OS
http://techcrunch.com/2011/03/05/android-malware-rootkit-google-response/

Eventually I intend to be running Android or its descendent as a brain implant,
so am a little concerned at the remote kill precedent - a good thing for now . . .

Puppy Linux
Organically based
Laughing
_________________
adobe flash is rubbish!
My Quote:"Humans are stupid, though some are clever but stupid." http://www.dependent.de/media/audio/mp3/System_Syn_Heres_to_You.zip http://www.systemsyn.com/
Back to top
View user's profile Send_private_message Visit_website 
Lobster
Official Crustacean


Joined: 04 May 2005
Posts: 15117
Location: Paradox Realm

PostPosted: Thu 28 Apr 2011, 02:01    Post_subject:  

Was amused by this, which I think explores our ability to live in fantasy paranoia's of our own construction . . .
http://www.murga-linux.com/puppy/viewtopic.php?p=517624#517624

Barry seems to be playing with new ideas . . .
http://bkhome.org/blog/?viewDetailed=02239

Once upon a time (and this is a true story)
I used Windows XP.
I tended to use my computer, installing much freeware
and all kinds of dubious freebies.

I had virus protectors that would report each other as viruses
(Now now boys)
I had ad blockers that were being targeted by the malwarians.

Security was impossible
and the whole edifice collapsed

Fortunately I was also able to boot from Knoppix installed Debian
and had been learning about Linux by lurking on the Simple forum of a little known Puppy Linux.

So whilst repairing my familiar system I started to make more use
of these penguin wares.

Being weaned into fear by Redmond I was amazed that
Linux users took risks that I did not even contemplate.

They installed software from complete strangers without scanning
for malware
They connected to IRC
They ran without firewalls - well Puppy did.
They felt safe. Cool

Eventually my attitude began to change
When you can set up a running OS in 3 minutes (that was my time for setting up a new Puppy in those early days)
what did it matter if anything suspicious happened?

As soon as packages were available I would try them
I was prepared to be 'hacked', compromised etc . . .
Never happened.

Eventually the Whining Windows were closed.

I now know were the risks are
They are in the browser, social networks and Cloud infrastructure
being imposed by 'security experts'
- possibly on secondment at Sony . . .

Even Sony can not keep our data secure - aren't they the company using root kits as a 'feature'?
http://www.guardian.co.uk/technology/gamesblog/2011/apr/27/playstation-network-hack-sony

Puppy is your best friend
Be happy

_________________
Puppy WIKI

Edited_time_total
Back to top
View user's profile Send_private_message Visit_website 
Lobster
Official Crustacean


Joined: 04 May 2005
Posts: 15117
Location: Paradox Realm

PostPosted: Wed 04 May 2011, 16:19    Post_subject:  

Malicious programmers focus on smartphones, tablets
http://www.physorg.com/news/2011-05-malicious-programmers-focus-smartphones-tablets.html

_________________
Puppy WIKI
Back to top
View user's profile Send_private_message Visit_website 
Lobster
Official Crustacean


Joined: 04 May 2005
Posts: 15117
Location: Paradox Realm

PostPosted: Thu 05 May 2011, 05:10    Post_subject:  

Sometimes (it is a wrench but it has to be done)
I leave my computer Shocked

During these returns to reality
I wonder if my computer has been secretly conspiring with the
hordes of non-existent root hunting bot nets out to demolish
my penguin ways . . .

A thought and question:
If I press ctrl + alt + backspace before leaving cyber world
(and then type 'xwin' on my return)
am I any safer? Cool

_________________
Puppy WIKI
Back to top
View user's profile Send_private_message Visit_website 
Aitch


Joined: 04 Apr 2007
Posts: 6825
Location: Chatham, Kent, UK

PostPosted: Sun 08 May 2011, 23:22    Post_subject:  

Quote:
Damn Vulnerable Web App (DVWA) is a PHP/MySQL web application that is damn vulnerable. Its main goals are to be an aid for security professionals to test their skills and tools in a legal environment, help web developers better understand the processes of securing web applications and aid teachers/students to teach/learn web application security in a class room environment.
DVWA is available either as a package that will run on your own web server or as a Live CD


http://www.randomstorm.com/dvwa-security-tool.php

or, if you're really serious,.....

http://www.youtube.com/watch?v=76y9gTE1n7k&NR=1&feature=fvwp

There's something to try vulnerabilities with and test security!

Aitch Smile
Back to top
View user's profile Send_private_message 
artifus


Joined: 06 Jul 2010
Posts: 318

PostPosted: Mon 09 May 2011, 05:38    Post_subject: Multiplatform Java botnet spotted in the wild  

http://www.net-security.org/malware_news.php?id=1714
Back to top
View user's profile Send_private_message 
nooby

Joined: 29 Jun 2008
Posts: 10557
Location: SwedenEurope

PostPosted: Mon 09 May 2011, 07:16    Post_subject:  

Blue screen of Death and Black screen of death and now this Java White Screen of death.

When do we get a proper Chrome Shining Armor screen of Death Smile

okay back on topic. How do I know if my puppie use that kind of vulenrable Java. Is there not two versions of java. Sun has one of them and the other are ???

_________________
I use Google Search on Puppy Forum
not an ideal solution though
Back to top
View user's profile Send_private_message 
Lobster
Official Crustacean


Joined: 04 May 2005
Posts: 15117
Location: Paradox Realm

PostPosted: Mon 09 May 2011, 07:36    Post_subject:  

Smile

Most Puppys do not use java
http://www.javatester.org/version.html

Also no mention of the java malware running on Linux.
Maybe if you try really hard you could get it running in Wine . . .

Maybe if you are really good you can worry about this bad bunny
http://www.sophos.com/en-us/press-office/press-releases/2007/05/badbunny.aspx
Cool

I wonder if LibreOffice has made that bad buny redundant? Wink

_________________
Puppy WIKI
Back to top
View user's profile Send_private_message Visit_website 
Display_posts:   Sort by:   
Page 9 of 17 Posts_count   Goto page: Previous 1, 2, 3, ..., 7, 8, 9, 10, 11, ..., 15, 16, 17 Next
Post_new_topic   Reply_to_topic View_previous_topic :: View_next_topic
 Forum index » Off-Topic Area » Security
Jump to:  

Rules_post_cannot
Rules_reply_cannot
Rules_edit_cannot
Rules_delete_cannot
Rules_vote_cannot
You cannot attach files in this forum
You can download files in this forum


Powered by phpBB © 2001, 2005 phpBB Group
[ Time: 0.0921s ][ Queries: 12 (0.0097s) ][ GZIP on ]