IT Security Stack Exchange
IT Security Stack Exchange

Questions tagged [ubuntu]

Ubuntu is a Linux version derived from Debian. For questions about Ubuntu that are not about security, please post on [AskUbuntu.SE].

Ubuntu is a Linux version, derived from Debian. Ubuntu is licensed under the GPL, but it's development is in the hands of Canonical, Ltd, in the UK.

Use this tag for questions about security aspects of Ubuntu.
If your question is about another aspect of Ubuntu, you can ask it on Ask Ubuntu.
If your question is about Unix or Linux in general, and not about a security aspect of Unix or Linux, you can ask it in Unix & Linux.

The official site of Ubuntu is http://www.ubuntu.com .

300 questions
53
votes
3 answers

Why has Ubuntu 18.04 moved back to insecure Xorg?

After reading Xorg becomes the default display server again and considering the security risk of xorg, I am wondering why the developers left Wayland. The fact that a few programs do not work on Wayland does not justify such a security risk. Any…
ar2015
  • 825
  • 2
  • 7
  • 10
48
votes
4 answers

Aren't keyfiles defeating the purpose of encryption?

I just added a drive to my system which is basically a partition mounted for extra storage. I'd like to encrypt it to protect my data in case of god knows what, and by doing that I'd need to enter the passphrase every time to unlock the partition. I…
php_nub_qq
  • 787
  • 1
  • 6
  • 13
48
votes
5 answers

Should I close port 80 forever and ever since the 2018 Google-indicated web-security initiatives?

I often establish Ubuntu-LAMP environments on which I host a few Drupal web applications that I myself own (I don't provide any hosting services and never done so in the past). Whenever I establish such an environment, the most fundamental security…
user123574
42
votes
6 answers

Why is disabling root necessary for security?

This page on server hardening claims: Disabling the root account is necessary for security reasons. Why is disabling the root account necessary for security reasons?
Randomblue
  • 1,685
  • 3
  • 15
  • 17
29
votes
5 answers

What are the potential vulnerabilities of allowing non-root users to run apt-get?

There are two ways I can think of doing this: On a system with sudo, by modifying /etc/sudoers. On a system without sudo (such as a Docker environment), by writing a program similar to the below and setting the setuid bit with chmod u+s. apt-get…
kzl
  • 401
  • 4
  • 6
26
votes
3 answers

Is this what a brute force SSH attack looks like?

I reviewed the auth.log file on my Ubuntu server to find: [preauth] Feb 22 17:39:18 code-storage sshd[17271]: Disconnected from 147.135.192.203 port 49408 [preauth] Feb 22 17:40:15 code-storage sshd[17273]: Invalid user ellen from…
David Kamer
  • 456
  • 1
  • 4
  • 13
24
votes
3 answers

How is it possible for boss to know I am finding a job?

Today, when my boss talking with me, he suddenly said: No you don't need to worry about it, everyday you have 3 or 4 messages with agent in Linkedin right? I am very very surprised, because : I work at home. I don't use VPN. I use Linux (Ubuntu)…
Elisa
  • 351
  • 2
  • 6
20
votes
5 answers

How to use FDE without needing to share the encryption password

We have an AI model which needs to be deployed on premise. The hardware will be provided by us, so we can do what ever we want on the device. The device is a mini PC running Ubuntu 18.04. The UI is launched in kiosk mode so only our program will be…
Hari
  • 311
  • 2
  • 6
20
votes
1 answer

How to read CVE - 2016 - 5696 correctly

The Ubuntu CVE Tracker page contains multiple tables related to kernel packages, some of which say DNE , others pending and version next to each . I would like to know how to properly read each table. Does the version next to pending refer to…
Sergiy Kolodyazhnyy
  • 519
  • 5
  • 17
19
votes
3 answers

ISO27001 and Linux/Ubuntu

My company has an ISO 27001 certification. They provided me a new laptop with Windows 8 OS in it. I asked if I can have a Linux/Ubuntu OS installed, they said that it is not possible due to the ISO 27001 standards. Is it true or do the technical…
Vivek Aditya
  • 293
  • 3
  • 8
17
votes
3 answers

Are there ransomware infections of Ubuntu Linux in the wild?

Due to the recent media coverage of ransomware attacks several people for whom I've provided personal computer support in the past have expressed concerned. The majority of these people are running either Ubuntu or Kubuntu linux, but not all are…
dotancohen
  • 3,698
  • 3
  • 24
  • 34
17
votes
8 answers

Is a firewall enough of a security measure for an Ubuntu server that hosts a website?

I recently got a VPS with Ubuntu on it, and I'd like to start creating a very basic website. However, I don't know what steps I should take to secure this server. I'm new with Ubuntu, new with security and new with creating websites (the website…
b.bikivichi
  • 181
  • 1
  • 5
16
votes
1 answer

Password shown on screen after crash on Linux, any idea why?

So, my computer crashed during the night and when I came to work in the morning I had the following screen on. I did not type the password a single time after the crash. It appears to be related to ecryptfs, but the password is my loginpassword. So…
Gjordis
  • 261
  • 1
  • 5
16
votes
3 answers

Breaching security of a notebook with full disc encryption when screen is locked

I am using full disc encryption on my portable computer (running Ubuntu). The setup requires me to enter a password during the boot sequence to access fully encrypted hard drive. There is no additional encryption of my home directory or even a login…
grepe
  • 262
  • 2
  • 7
12
votes
1 answer

How does Nautilus store passwords on Ubuntu?

When I mount a LUKS volume, I get these options: Forget password immediately Remember password until you logout Remember forever I assume the first is the safest, and I can work on the files until I unmount. However, what are other two are good…
Quora Feans
  • 1,861
  • 1
  • 12
  • 20
1
2 3
19 20