Puppy Linux Discussion Forum Forum Index Puppy Linux Discussion Forum
Puppy HOME page : puppylinux.com
"THE" alternative forum : puppylinux.info
 
 FAQFAQ   SearchSearch   MemberlistMemberlist   UsergroupsUsergroups   RegisterRegister 
 ProfileProfile   Log in to check your private messagesLog in to check your private messages   Log inLog in 

The time now is Wed 26 Nov 2014, 13:37
All times are UTC - 4
 Forum index » Off-Topic Area » Security
Puppy 5.1 hacked into remotely?
Post_new_topic   Reply_to_topic View_previous_topic :: View_next_topic
Page 1 of 3 Posts_count   Goto page: 1, 2, 3 Next
Author Message
dru5k1


Joined: 11 Apr 2010
Posts: 72

PostPosted: Mon 11 Jul 2011, 07:50    Post_subject:  Puppy 5.1 hacked into remotely?
Sub_title: Never mind
 

my friend hacked into my computer - he said it was nice and easy
Back to top
View user's profile Send_private_message 
Aitch


Joined: 04 Apr 2007
Posts: 6825
Location: Chatham, Kent, UK

PostPosted: Mon 11 Jul 2011, 08:34    Post_subject:  

Care to give more details?

What OS were you running?

Was it a remote hack, or did he have access to your PC/network?

If it was puppy, could you send me a pm from him saying what he did/how he did it, rather than post details on the forum

thanks

Aitch Smile
Back to top
View user's profile Send_private_message 
dru5k1


Joined: 11 Apr 2010
Posts: 72

PostPosted: Mon 11 Jul 2011, 09:05    Post_subject:  

yes it was puppy (5.1) and was remote

as for pm'ing you, I suppose I could, might take a minute though
Back to top
View user's profile Send_private_message 
nooby

Joined: 29 Jun 2008
Posts: 10557
Location: SwedenEurope

PostPosted: Mon 11 Jul 2011, 11:06    Post_subject:  

Did your friend ask you first or was it a surprise hack? Smile

Did he leave some message on your HDD, Did you have the Firewall set the normal way that the Devs have prepared?
Could he mount HDD and such.

Do you use CD or USB or Frugal install or Full install?

Remote he did not go through your open wifi sitting outside in his car or something Smile

_________________
I use Google Search on Puppy Forum
not an ideal solution though
Back to top
View user's profile Send_private_message 
Lobster
Official Crustacean


Joined: 04 May 2005
Posts: 15117
Location: Paradox Realm

PostPosted: Mon 11 Jul 2011, 14:15    Post_subject:  

Love to know how it is done
Send me a PM too of this simple method
or better still post it here so we can all have a go Smile

_________________
Puppy WIKI
Back to top
View user's profile Send_private_message Visit_website 
Aitch


Joined: 04 Apr 2007
Posts: 6825
Location: Chatham, Kent, UK

PostPosted: Mon 11 Jul 2011, 15:09    Post_subject:  

[quote-"Lobster"]....or better still post it here so we can all have a go Smile [/quote]

I tried to avoid it going public till we know what was done

thanks

Aitch Smile
Back to top
View user's profile Send_private_message 
Trobin

Joined: 18 Aug 2005
Posts: 907
Location: BC Canada

PostPosted: Mon 11 Jul 2011, 15:37    Post_subject:  

I'd like to know how it's done as well. I think it should be posted here so that interested parties can protect themselves.

PM please.

_________________
http://speakpup.blogspot.com
Back to top
View user's profile Send_private_message 
Flash
Official Dog Handler


Joined: 04 May 2005
Posts: 11164
Location: Arizona USA

PostPosted: Mon 11 Jul 2011, 16:38    Post_subject:  

I think it's best if everyone knows how it's done. If it's a vulnerability in Puppy's default configuration, we can fix it. If it's a vulnerability in Linux, it will be fixed. Keeping it secret turns it into a potential FUD attack against Puppy or against Linux.
_________________
Puppy Help 101 - an interactive tutorial for Lupu 5.25
Back to top
View user's profile Send_private_message 
Lobster
Official Crustacean


Joined: 04 May 2005
Posts: 15117
Location: Paradox Realm

PostPosted: Mon 11 Jul 2011, 20:17    Post_subject:  

Quote:
my friend hacked into my computer - he said it was nice and easy


Until we receive a private or public PM this is nothing more than a statement like:
'The dog ate my homework'
'Resistance is Futile'
and
'The only truly secure system is one that is powered off, cast in a block of concrete and sealed in a lead-lined room with armed guards.' — Gene Spafford

. . . meanwhile I am off to mix some concrete . . . Smile

_________________
Puppy WIKI
Back to top
View user's profile Send_private_message Visit_website 
rjbrewer


Joined: 22 Jan 2008
Posts: 4422
Location: merriam, kansas

PostPosted: Mon 11 Jul 2011, 21:30    Post_subject:  

[quote="Lobster"]
Quote:

'The dog ate my homework'
'Resistance is Futile'
)


The dog ate my house;
we ran away quickly. Smile
enormous-animals25.jpg
 Description   
 Filesize   183.2 KB
 Viewed   1238 Time(s)

enormous-animals25.jpg


_________________

Inspiron 700m, Pent.M 1.6Ghz, 1Gb ram.
Msi Wind U100, N270 1.6>2.0Ghz, 1.5Gb ram.
Eeepc 8g 701, 900Mhz, 1Gb ram.
Full installs

Back to top
View user's profile Send_private_message 
nooby

Joined: 29 Jun 2008
Posts: 10557
Location: SwedenEurope

PostPosted: Tue 12 Jul 2011, 02:12    Post_subject:  

Flash wrote:
I think it's best if everyone knows how it's done. If it's a vulnerability in Puppy's default configuration, we can fix it. If it's a vulnerability in Linux, it will be fixed. Keeping it secret turns it into a potential FUD attack against Puppy or against Linux.


At least the Devs should know the details ASAP
. To reveal how to replicate it can be very dangerous so I would prefer Barry and pemasu ttuuxxx and Micko01 and Playdays and iguleder and every such active devs get to know first so them have time to make a solution if it is a serious thing. Or them can explain how to protect against it.

_________________
I use Google Search on Puppy Forum
not an ideal solution though
Back to top
View user's profile Send_private_message 
James C


Joined: 26 Mar 2009
Posts: 5934
Location: Kentucky

PostPosted: Tue 12 Jul 2011, 02:38    Post_subject:  

I'll believe it once someone can verify it.
Back to top
View user's profile Send_private_message 
nooby

Joined: 29 Jun 2008
Posts: 10557
Location: SwedenEurope

PostPosted: Tue 12 Jul 2011, 15:24    Post_subject:  

Does any of you know him personally. I hope he look back and asnwer our questions.
_________________
I use Google Search on Puppy Forum
not an ideal solution though
Back to top
View user's profile Send_private_message 
dru5k1


Joined: 11 Apr 2010
Posts: 72

PostPosted: Wed 13 Jul 2011, 03:28    Post_subject:  

Hey I'm here, and I talked to him again -it not 'nevermind' I just don't live with him shouting across the living-room "hey bro.."

He's a bit of a joking snobby guy, only saying that the my browser was too old and I need to update my sh*#. we've chatted and exchanged files, also meeting in irc (the way he zeroed in on my address) - he's a windows user and a paying customer of metasploit so I guess he's got exploits for all but the latest software

(I've since updated my sh*# (firefox+chrome from chromium+flashplayer and haven't had any hassles) - it wasn't a dream I know, because I noticed a complete slowdown and reset everything straight away, he said that he already had access but the slowdown was him trying to use a gui.
Back to top
View user's profile Send_private_message 
Lobster
Official Crustacean


Joined: 04 May 2005
Posts: 15117
Location: Paradox Realm

PostPosted: Wed 13 Jul 2011, 04:52    Post_subject:  

Thanks dru5k1 for giving us more details Cool
Much appreciated . . .

In the world of tin hats, white, black and grey hats
I am nowhere
but it sounds like two vulnerabilities occurred
First you get someone's IP address when connected on IRC
or if sending them a file (using netstat, whois or however it is done)
Then what do you do?
Dunno but I bet
http://www.metasploit.com/
or our very own attackpup would have the required scripts . . .
http://www.murga-linux.com/puppy/viewtopic.php?p=421022#421022

Maybe your 'joking snobby guy' could get a job with Rupert Murdoch s personal intrusion services? Just an idea . . . Smile

_________________
Puppy WIKI
Back to top
View user's profile Send_private_message Visit_website 
Display_posts:   Sort by:   
Page 1 of 3 Posts_count   Goto page: 1, 2, 3 Next
Post_new_topic   Reply_to_topic View_previous_topic :: View_next_topic
 Forum index » Off-Topic Area » Security
Jump to:  

Rules_post_cannot
Rules_reply_cannot
Rules_edit_cannot
Rules_delete_cannot
Rules_vote_cannot
You cannot attach files in this forum
You can download files in this forum


Powered by phpBB © 2001, 2005 phpBB Group
[ Time: 0.0788s ][ Queries: 12 (0.0053s) ][ GZIP on ]