Written by M. Zinoune

|

08 April 2011

Posted in

Linux tutorials –

Linux tutorials

There are a few common security practices that every Linux user should follow. Unfortunately, not everybody is aware of these. In this post will show you how to secure your home pc or server to the best of your abilities with the best available opensource tools.

1- Checking your system for random mailers:

Mailers like Form Mail are used by hackers to send out spam emails, relay messages that are security risks for yourself and so on. You can find them using the following command:

find / -name "[Ff]orm[mM]ai*"

CGIeMail is another one that has similar issues.

find / -name "[Cc]giemai*"

Upon finding them, issue the following:

chmod a-rwx /path/to/filename

a-rwx = all types, no read, no write, no execute

2- Check your system using the root kit checker:

Hackers can sometimes install a rootkit on your computer without you even knowing or even set it to run at a specified time through cron. You can check your system with chrootkit. Open up a terminal and execute the following:

cd ~

wget ftp://ftp.pangeia.com.br/pub/seg/pac/chkrootkit.tar.gz tar xvzf chkrootkit.tar.gz  cd chkrootkit-0.44 make sense

Now to run it, just run this:

~/chkrootkit-0.44/chkrootkit

Please do remember to run it on a regular basis.

3- Set up a root login detector and emailer:

This nifty little trick will allow you to be warned if someone actually does manage to login as root on your computer or server.

We need to edit .bash_profile for root. Grab your favorite text editor and add the following line at the end of it:

echo 'ALERT - Root Shell Access on:' `date` `who` | mail -s "Alert: Root Access from `who | awk '{print $6}'`" your@email.com

Replace your@email.com with your own email. Save the file and exit.

4- Set a SSH MOTD:

If your particular machine is a server, this can help.

Grab your favorite text editor and open up /etc/motd

Save your message to the file and exit. An example can be as follows, come up with your own, though.

“This system is restricted to authorized access only. All activities on
this system are recorded and logged. Unauthorized access will be fully
investigated and reported to the appropriate law enforcement agencies.”

5- Secure SSH Logins:

If your server or computer has more than one IP, bind sshd to one of those IPs and don’t use it for anything else. This adds an extra layer of security.

We need to edit /etc/ssh/sshd_config

Scroll down to the section of the file that looks like this:

#Port 22
#Protocol 2, 1
#ListenAddress 0.0.0.0
#ListenAddress ::

Uncomment the Port part and input anything else than port 22. Something above the 40k range is good. Make protocol only 2 instead of 2, 1. I you have more than one IP, change the listen address entry accordingly.

Disable root login through ssh

Find #PermitRootLogin yes and change it to PermitRootLogin no.

Now restart sshd and check out if everything is working fine.

6- Disable Telnet:

As root, edit the file /etc/xinetd.d/telnet and change disable = no to disable = yes

Save the file and exit. Restart xinetd through /etc/init.d/xinetd restart

7- Nuke PHP Shells:

Hackers sometimes put these on server for easy access or administration later on. Run the following commands and remove stuff you find suspicious.

locate irc

locate BNC

locate ptlink

locate BitchX

locate guardservices

locate psyBNC

locate eggdrop

locate bnc

locate .rhosts

Be warned that this can sometimes bring up legit files. So be a bit careful.

8- Install Brute Force Detection:

This is an optional step for the truly paranoid ones. It does provide an additional layer of security though.

cd /root/ wget http://www.rfxnetworks.com/downloads/bfd-current.tar.gz tar -xvzf bfd-current.tar.gz cd bfd-0.4 ./install.sh

We need to edit its config file. Grab your favorite editor and edit /usr/local/bfd/conf.bfd

Find the following and change accordingly -

Find :
ALERT_USR=”0″
and change it to
ALERT_USR=”1″

Find :
EMAIL_USR=”root”
and change it to
EMAIL_USR=”your@email.com”

Save the changes and exit.

Start BFD with the following command:

/usr/local/sbin/bfd –s

With the correct deployment of these methods, we hope that your system is now a bit more secure than it used to be. And as always, keep your OS updated with the latest security patches and updates.

9- Encrypt your data

Last, but is the most important security practice is to encrypt your data, for this check our previous post.

Thanks again to Convexity for this post

Comments (2)

• 
  

  the ssh motd wouldn’t be shown unless a user logs in successfully, right?

  so you’d have to make sure:

  Banner /etc/motd

  is set in your sshd_config in order for them to get that warning BEFORE the login

• 
  

  This is a terrible article, the “9 best practices” are a complete fabrication. “Best practice”? In whose world? This is laughably bad.

  I have to assume you’ve never actually hardened a system.

  Please see the following, for anyone interested in actually securing

  Article source: http://feedproxy.google.com/~r/unixmenhowtos/~3/KudxQxcsl_I/1623-9-best-practices-to-secure-your-linux-desktop-and-server

If you are new to Unixmen, you may want to subscribe to:  

Written by M. Zinoune

|

25 March 2011

Posted in

News –

Software

Analysts peg the Smart TV (akin to SmartPhone) segment is likely to grow at close 32 % in the following two years. This has thrown the gauntlet into the developers ring as there is immense opportunity to offer something unique and qualitatively different to the viewer.

Looking at new frontiers the Linux foundation that hosts the MeeGo project has set up the Working Group to provide the guidelines software components, platform standardization etc., so that the open source community can work within the frame work to offer competitive and differentiated content for Television. At this stage of discussion, a brief peek into MeeGo is necessary to understand the significance of the Working Group

What is MeeGo?

MeeGo is a trend setting Linux based mobile operating system for hardware components as varied as netbooks, nettops, tablet computers, mobile computing etc. so working around all embedded systems this is programmed in C++, saw the first release in May 2010, and released the latest stable end of last month. The RPM also supports ARM as well as the x86 platforms. The kernel type is the monolithic Linux and is the result of Moblin (the Intel developed mobile project) and Maemo (project developed by Nokia).

MeeGo was made to run various hardware platforms from hand held devices to gadgets in vehicles, television and netbooks. The core of MeeGo is shared amongst all the platforms but differs on the UX layers or the User Experience for each of the devices.

Why the interest in MeeGo?

The answer lies in their simple but high-compatible graphical user interfaces (read User experience, UX) that is driving the segment for embedded software. For netbook is the Evolution, Empathy and the Banshee that work through the graphical user interface. Handset run on the Qt (Nokia seminal application software) and the Nokia N900 is glowing example. Infotainment in the vehicles is perhaps the most important application as a conclave of vehicle manufacturers (Genivi Alliance) adopt the Qt to develop sophisticated in-car entertainment as well as navigation systems.

Why Smart TV?

Speaking of MeeGos usefulness in infotainment brings us back to the Working Group that has been set the task of exploring new applications for the Smart TV. Smart TV will be to 2015 what television was in the 1960s. But with a difference the content will be more personalized, exciting and all accessible at the drop of a button. Armed with a browser and innumerable TV apps, the viewer simply discovers content that he wants from across the Internet, Cable TV as well as the internet.

With MeeGo and a Smart TV the equations and televisions are drastically going to change to the next level. The ecosystem is all set to change for service providers and content developers alike. The hardware for television too will change just the Smart Phones are different from the regulation phone sets.

The MeeGo Smart TV Working Group is scheduled for the first meet in April 2011 and will consist of Intel, Intel Digital Home Group , Nokia, Telecom Italia and several other small and large players.

Comments (0)

Article source: http://feedproxy.google.com/~r/unixmenhowtos/~3/TmweGHclv6k/1592-linux-for-smart-tv-the-meego-way

If you are new to Unixmen, you may want to subscribe to:  

Written by ayesha ahmed

|

25 March 2011

Posted in

Linux tutorials –

Linux tutorials

It is certainly inspiring that a free piece of software gives you so diverse possibilities, comparable to any paid software you can get in the market. In this post I have attempted to collect the best tutorials of GIMP, in my view, around the web.

1- Turn a 40 year old to 20 year old lady

This is by far the most interesting tutorial in this category. The video shows easy steps to remove wrinkles and add freshness to an old ladies picture. Finally you will end up with a picture of a younger and more attractive lady. The techniques in this tutorial will help you retouch your daily life photographs.

Embed Embed this video on your site

In this video simple techniques are applied to put on light makeup to lady. This is an intuitive tutorial that teaches one simple steps to achieve a picture that is lightly re-touched. 

Embed Embed this video on your site

3-Adding Sketch Effect to an Image

Again a simple tutorial but will definitely help one to learn from basics to advance techniques using GIMP.

Embed Embed this video on your site

4-How to switch the face of someone famous with your face

A very interesting Tutorial that will make you able to replace any celebrity’s face with yours!

---

5-Adding Sketch Effect to an Image

Again a simple tutorial but will definitely help one to learn from basics to advance techniques using GIMP.

Embed Embed this video on your site

6- Realistics Reflections

Embed Embed this video on your site

Now adays, scrapbooking is very common and people look for ways to be more innovative with pictures and other contents. This is an interesting tutorial in this context!

8-Cutout a picture in a photo

In this category of tutorials I have gathered some tutorials that will help you make amazing digital art.

9-Glow effect

A very simple to follow tutorial but yet has utterly impressive output.

10-How to make a colorful line/wavey effect

Embed Embed this video on your site

---

11-How to Make a Signature

This is one of the interesting tutorials that will boost your creativity apart from teaching you some tricks and techniques.

Embed Embed this video on your site

---

12-Crazy Insane Photo Manipulation

A very insightful  tutorial depicting the new era of digital art.

Embed Embed this video on your site

Next,we have tutorials that will teach you to make awesome wallpapers.

---

13-Gimp tutorial: Abstract Wallpaper

Embed Embed this video on your site

14-Cool Wallpaper

Embed Embed this video on your site

Typography is art of alphabets and characters. GIMP has easy techniques to accomplish the best typography effects.

15- Typography logo design

This is GIMP 2.6 tutorial that comprises of simple steps to make an attractive logo for your website.

Embed Embed this video on your site

17 18- Teach your self simple typography with these tutorials

This is another stunning typography tutorial. By the end of practicing these tutorials you will surely do moderate level of typography!

Embed Embed this video on your site

Embed Embed this video on your site

19- Typo portrait!

 This tutorial will teach you to make a face out of typography.

Embed Embed this video on your site

You might have seen several graffitic effects, but these tutorials are definitely must try. The best thing about them is that they are easy to follow and produce the

Article source: http://feedproxy.google.com/~r/unixmenhowtos/~3/D2jmmgpN-lc/1583-30-great-tutorials-for-gimp

If you are new to Unixmen, you may want to subscribe to:  

Written by pirat9

|

24 March 2011

Posted in

News –

Software

Banshee 1.9.6  is released, this is a  development release, part of the 1.9 series leading up to Banshee 2.0.

What`s new in this beta release? 

• Rename banshee-1 to banshee in preparation for 2.0
• AmazonMp3.Store: amazon.ca support
• MiroGuide: Handle Listen links from front page
• Dap: Add support for Sharp IS01 (bgo#645361)
• Playlists: Recognize m3u playlists without header (bgo#645351)
• LibraryWatcher: Guard against watching incorrect dirs (bgo#633309)
• MassStorage: Support Sirius Alpha Android phone (bgo#643960)
• WebOSDevice: Support playlists (bgo#641486)
• Windows: Auto-update functionality (bgo#641960)

Installation in Ubuntu and LinuxMint

Open terminal and enter the following commands:

sudo add-apt-repository ppa:banshee-team/banshee-daily sudo apt-get update sudo apt-get install banshee

For other linux distribution, download this version from this Link.

Useful links: http://banshee.fm

Comments (0)

Article source: http://feedproxy.google.com/~r/unixmenhowtos/~3/xqqaLDW5Dk0/1589-banshee-196-released

If you are new to Unixmen, you may want to subscribe to:  

Written by Anuradha Shukla

|

24 March 2011

Posted in

News –

Software

It is finally here, the brand new online store for Android Applications, the Appstore. Developed by Amazon, the store is in the news, from when the online retail major made the announcement. It is in direct competition to both the Google MarketPlace and Apple’s App Store. The turn of events in this segment is interesting and definitely worth watching.

Amazon as always offers a highly consumer-centric, core capability, minus the frills store that has more than a thousand apps on day one. Top that with a free commercial app every day for every app download that you make. Add another half hour of test drive on the App before deciding on its capabilities. The Amazon Appstore will soon be a one-stop store for all your Android application downloads considering that Amazon offers a very attractive revenue-sharing process with its developers.

How is the AppStore revenue shared with its developers?

The method that Amazon has adopted is very similar to what Google Marketplace offers but with a few different mechanisms. While Google expects a one- time fee of $25, Amazon is looking at annual subscription charges for developers at $99. However the revenues are shared at 70% of the purchase or 20% of the List price. Now, the list price is the developers’ own pricing bid and he cannot sell the same application from any other app store below this price. Additionally, the developer has to simultaneously update the app, if it is available on other platforms. Of course, if the developer chooses he can offer it for free. However, Amazon has the last word on the the features and operations as well as commercials on which the sales will be made.

Amazon is a unique player in this field as they are driving the mainstream content on Androids and almost all web media. They already have a presence in ebooks, with Kindle being incidental product. They are largely into content providing and are definitely not into fancy, innovative technology. What they are good at is identifying media content consumers will like and developing the gadgets in-house, minus frills but high on performance. See what Kindle does and what other eReaders do.

It is more than likely that round the corner will be a tablet from Amazon and the Appstore will deliver across all gadgets quality, price competitive content that will set the path for others to follow.

Available only in the US

Presently available only in the US, the AppStore offer 25 categories, from books, games, comics to info, entertainment and just about anything, utilities, web browsers etc. complete. As usual Amazon, thanks to its business acumen is focused on developing the AppStore to become the only name in online application stores for Android, for the present, but will map to every conceivable gadget in a matter of few development cycles.

Why it would appeal to most android users is that the standard amazon account, known for secure transaction, can be used for app purchases too, cutting down on start time to down load the best apps and also the free apps downloads being offered.

Comments (0)

Article source: http://feedproxy.google.com/~r/unixmenhowtos/~3/oomFw9tL4AY/1590-shop-at-amazon-appstore-for-your-androids-

If you are new to Unixmen, you may want to subscribe to:  

Written by ayesha ahmed

|

24 March 2011

Posted in

Software

Chrome 11 beta is loading with a handful of amazing features. In this post we will review them briefly!

Chrome has introduced support for the HTML 5 speech input API. What does that mean? Developers can now develop web applications that have the ability to transcribe your voice into text! That is you can simply push the icon on a page that supports this feature, and speak into your computer’s microphone.

The speech so recorded will be typed in for you. I have shown the mechanism through the diagram below. Chrome 11 beta also includes a number of other features “offers a sneak peek of GPU-accelerated 3D CSS, which allows developers to apply slick 3D effects to web page content using CSS.” That means better and real animations! This also implies that we will have some really out-of-the-box features, hopefully, in gmail, and other services provided by Google.

This is he picture of demo of the new feature. You can try here

Its interesting to note that at the very same Firefox is out with its latest version, version 4 and Internet explorer version 9, Google is also not lagging in any way! Google Chrome stable version 10 was made available not longer than 10 days ago, and yet again Google is out with the beta 11 build (11.0.696.16) that they have also pushed to the beta channel. This “talking to computer feature” as Google calls its, will definitely glue many developers to chrome and to think and workout latest and innovative web apps, that one has never seen! Chrome 11 will surely change the way we experience web and our browsing habits. Yet lesser is known about chrome 11, we have crossed our fingers! Download your copy here.

Comments (0)

Article source: http://feedproxy.google.com/~r/unixmenhowtos/~3/dXDDs-war0s/1585-talk-to-your-computer-with-chrome-11-beta

If you are new to Unixmen, you may want to subscribe to:  

Written by M. Zinoune (Zinovsky)

|

24 March 2011

Posted in

Software

VLC 1.1.8 is released, this new release comes with small features and fixing important bugs and a security issues.

What’s new in 1.1.8?

- Security update regarding video width concerning some demuxers
- Support for a new Dirac encoder based on libschroedingerPackage of the new VP8/Webm encoder ‘Bali’
- Notable updates in .mp4, .ogg, .ape demuxers
– Major updates in most language translations
- Fixes in skins2 supports of Winamp2 skins

- Upgrade on the look of VLC for Mac OS X
- Auto-detection for .txt subtitles is fixed
- Fixes on Windows integration, notably regarding volume keys
- Codecs updates
 - Many miscellaneous fixes

Installation:

- For Ubuntu and LinuxMint:

Open terminal and type the following commands:

sudo add-apt-repository ppa:ferramroberto/vlcsudo apt-get updatesudo apt-get install vlc mozilla-plugin-vlc vlc-plugin-pulse

-For other Linux distributions follow the link releated to your Linux distro for installation instructions:

• Ubuntu
• Fedora
• Red Hat Enterprise Linux
• ALT Linux

Comments (3)

• 
  

  I only got 1.1.7 vlc

• 
  

  the same probleme, i have update and nothing happend, there no update. and i am still in vlc 1.1.7

• 
  

  vlc 1.1.8 has been uploaded to PPA above.[url=https://launchpad.net/~ferramroberto/ +archive/testing/+buildjob/2341262]check the link[/url]. I will check what is the issue.

Article source: http://feedproxy.google.com/~r/unixmenhowtos/~3/mWlLSRYo5qA/1586-vlc-118-is-released-ppa-for-ubuntu-and-linuxmint