Puppy 5.1 hacked into remotely?

Message

dru5k1 · #1 Post by **dru5k1** » Mon 11 Jul 2011, 11:50

my friend hacked into my computer - he said it was nice and easy

Aitch · #2 Post by **Aitch** » Mon 11 Jul 2011, 12:34

Care to give more details?

What OS were you running?

Was it a remote hack, or did he have access to your PC/network?

If it was puppy, could you send me a pm from him saying what he did/how he did it, rather than post details on the forum

thanks

Aitch

dru5k1 · #3 Post by **dru5k1** » Mon 11 Jul 2011, 13:05

yes it was puppy (5.1) and was remote

as for pm'ing you, I suppose I could, might take a minute though

nooby · #4 Post by **nooby** » Mon 11 Jul 2011, 15:06

Did your friend ask you first or was it a surprise hack?

Did he leave some message on your HDD, Did you have the Firewall set the normal way that the Devs have prepared?
Could he mount HDD and such.

Do you use CD or USB or Frugal install or Full install?

Remote he did not go through your open wifi sitting outside in his car or something

Lobster · #5 Post by **Lobster** » Mon 11 Jul 2011, 18:15

Love to know how it is done
Send me a PM too of this simple method
or better still post it here so we can all have a go

Aitch · #6 Post by **Aitch** » Mon 11 Jul 2011, 19:09

[quote-"Lobster"]....or better still post it here so we can all have a go

[/quote]

I tried to avoid it going public till we know what was done

thanks

Aitch

Trobin · #7 Post by **Trobin** » Mon 11 Jul 2011, 19:37

I'd like to know how it's done as well. I think it should be posted here so that interested parties can protect themselves.

PM please.

#8 Post by **Flash** » Mon 11 Jul 2011, 20:38

I think it's best if everyone knows how it's done. If it's a vulnerability in Puppy's default configuration, we can fix it. If it's a vulnerability in Linux, it will be fixed. Keeping it secret turns it into a potential FUD attack against Puppy or against Linux.

Lobster · #9 Post by **Lobster** » Tue 12 Jul 2011, 00:17

my friend hacked into my computer - he said it was nice and easy

Until we receive a private or public PM this is nothing more than a statement like:
'The dog ate my homework'
'Resistance is Futile'
and
'The only truly secure system is one that is powered off, cast in a block of concrete and sealed in a lead-lined room with armed guards.' — Gene Spafford

. . . meanwhile I am off to mix some concrete . . .

rjbrewer · #10 Post by **rjbrewer** » Tue 12 Jul 2011, 01:30

Lobster wrote:
'The dog ate my homework'
'Resistance is Futile'
)

The dog ate my house;
we ran away quickly.

nooby · #11 Post by **nooby** » Tue 12 Jul 2011, 06:12

Flash wrote:I think it's best if everyone knows how it's done. If it's a vulnerability in Puppy's default configuration, we can fix it. If it's a vulnerability in Linux, it will be fixed. Keeping it secret turns it into a potential FUD attack against Puppy or against Linux.

At least the Devs should know the details ASAP. To reveal how to replicate it can be very dangerous so I would prefer Barry and pemasu ttuuxxx and Micko01 and Playdays and iguleder and every such active devs get to know first so them have time to make a solution if it is a serious thing. Or them can explain how to protect against it.

James C · #12 Post by **James C** » Tue 12 Jul 2011, 06:38

I'll believe it once someone can verify it.

nooby · #13 Post by **nooby** » Tue 12 Jul 2011, 19:24

Does any of you know him personally. I hope he look back and asnwer our questions.

dru5k1 · #14 Post by **dru5k1** » Wed 13 Jul 2011, 07:28

Hey I'm here, and I talked to him again -it not 'nevermind' I just don't live with him shouting across the living-room "hey bro.."

He's a bit of a joking snobby guy, only saying that the my browser was too old and I need to update my sh*#. we've chatted and exchanged files, also meeting in irc (the way he zeroed in on my address) - he's a windows user and a paying customer of metasploit so I guess he's got exploits for all but the latest software

(I've since updated my sh*# (firefox+chrome from chromium+flashplayer and haven't had any hassles) - it wasn't a dream I know, because I noticed a complete slowdown and reset everything straight away, he said that he already had access but the slowdown was him trying to use a gui.

Lobster · #15 Post by **Lobster** » Wed 13 Jul 2011, 08:52

Thanks dru5k1 for giving us more details

Much appreciated . . .

In the world of tin hats, white, black and grey hats
I am nowhere
but it sounds like two vulnerabilities occurred
First you get someone's IP address when connected on IRC
or if sending them a file (using netstat, whois or however it is done)
Then what do you do?
Dunno but I bet
http://www.metasploit.com/
or our very own attackpup would have the required scripts . . .
http://www.murga-linux.com/puppy/viewto ... 022#421022

Maybe your 'joking snobby guy' could get a job with Rupert Murdoch s personal intrusion services? Just an idea . . .

dru5k1 · #16 Post by **dru5k1** » Wed 13 Jul 2011, 09:30

oh my gosh that attackpup is so beautiful

nooby · #17 Post by **nooby** » Wed 13 Jul 2011, 10:17

Much appreciated but now we need the computer savvy people among Puppy users to tell us how to protect ourselves.

1. Did you have a router at that time. Did him go through the router then.
2. Or did he lure you to visit some page him had prepared with a Flash thing or
3. did he send you something that had the downloader of something that allowed him to get in?

Was this a vulnerability in the Firefox Flash or something that that program he had paid for used?

I fail to get it.

dru5k1 · #18 Post by **dru5k1** » Wed 13 Jul 2011, 13:00

It could well have been flash, because both the firefox, chromium that I installed via quickpet, and flash were all out of date at the time I installed them

(firefox has an updater built in that I ran twice to get fully up to date. chromium had to become chrome, and flash needed to be replaced via downloading and replacement in the file-manager)

dru5k1 · #19 Post by **dru5k1** » Wed 13 Jul 2011, 13:13

(I actually know now to go into Puppy Package Manager ("install" desktop icon) and via the Configure Package Manager button, tick the ubuntu repositories (I chose main, multiverse, and universe) and then click the Update button before searching for chrome

I think chrome is in ubuntu lucid main, but I can't remember to tell the truth

nooby · #20 Post by **nooby** » Wed 13 Jul 2011, 13:48

Hope it is okay that I am a bit at it. I wonder about this

2. Or did he lure you to visit some page him had prepared with a Flash thing or

Suppose you are right about having an older version of Flash.

But that would only work for him if him had his own Blog or server or some place him could place a file on that make use of that Flash vulnerability.

But if it was through the Router then he has to have a program that actually penetrated from outside through the router.

Is it possible now to look in the log of the router if he came that way?

I guess this did happen days or weeks ago. Has he promised to never try again?

Anything you remember can help the Devs to make Puppy better or them tell us what we have to do to make us more secure.

(old)Puppy Linux Discussion Forum

(old)Puppy Linux Discussion Forum

Puppy 5.1 hacked into remotely?

Puppy 5.1 hacked into remotely?