Security Lab tools on normal Fedora 13 installation
FedoraForum.org - Fedora Support Forums and Community
Page 1 of 2 1 2 LastLast
Results 1 to 15 of 17
  1. #1
    Join Date
    Jun 2005
    Location
    Brazil - Recife - PE
    Age
    41
    Posts
    90
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)

    Security Lab tools on normal Fedora 13 installation

    Hi guys,

    Is it possible to install security lab menu on a normal Fedora 13 installation ?

    I don't want to use security spin.

    Regards,

    Fred
    Frederico Madeira
    www.madeira.eng.br
    MSN: fttmadeira@hotmail.com
    Registered GNU/Linux nš 206120

  2. #2
    Join Date
    Jul 2007
    Location
    Mumbai, India
    Posts
    225
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)

    Re: Security Lab tools on normal Fedora 13 installation

    Yes, thats one thing i like about fedora. Anything which is done in a spin can be done to a normal fedora installation. Spins are basically different installed sets of packages.
    Here's how to install the security menu in fedora
    Code:
    yum install security-menus
    However you actually need to install the security packages separately, whatever the packages you may want

    If you are not sure what packages are included in security spin check the file
    https://fedorahosted.org/security-sp.../availableApps
    and choose the ones you want
    Last edited by pankajp; 30th May 2010 at 06:54 AM. Reason: added security spin packages link
    Fedora 14 Laughlin user on Dell Inspiron 1525
    http://www.smolts.org/client/show/pu...0-71f71be44f7d :)

  3. #3
    Join Date
    Jun 2005
    Location
    Brazil - Recife - PE
    Age
    41
    Posts
    90
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)

    Re: Security Lab tools on normal Fedora 13 installation

    Thanks for your complete answer.

    Are there any group install for that packages ?

    Regards,

    ---------- Post added at 12:34 PM CDT ---------- Previous post was at 11:53 AM CDT ----------

    Hi pankajp,

    I installed all packages using yum, but the icon of applications wasn't inserted on security lab menu.
    Frederico Madeira
    www.madeira.eng.br
    MSN: fttmadeira@hotmail.com
    Registered GNU/Linux nš 206120

  4. #4
    Join Date
    May 2005
    Posts
    108
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)

    Re: Security Lab tools on normal Fedora 13 installation

    Group install would be cool!
    Fedora 14 x86_64 - Lenovo Thinkpad T400

  5. #5
    Join Date
    Jul 2007
    Location
    Mumbai, India
    Posts
    225
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)

    Re: Security Lab tools on normal Fedora 13 installation

    checking
    $ yum grouplist
    there does not seem to be any security group. You could make a request to the security spin team of fedora developers to make a group.
    And as for the application menus not appearing in the security menu, i'm afraid i donno about it
    Fedora 14 Laughlin user on Dell Inspiron 1525
    http://www.smolts.org/client/show/pu...0-71f71be44f7d :)

  6. #6
    Join Date
    May 2005
    Posts
    108
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)

    Re: Security Lab tools on normal Fedora 13 installation

    I tried making a request on bugzilla but could not find the right component/place to file it.
    Fedora 14 x86_64 - Lenovo Thinkpad T400

  7. #7
    Join Date
    May 2005
    Posts
    108
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)

    Re: Security Lab tools on normal Fedora 13 installation

    I asked on the spins mailing list and here is the response:

    we have this as one of the next steps in mind - besides
    missing tools - most important was to release a working and stable
    Security Spin in F13.

    Because we have also to change the security menu for every Application
    we add to the security lab we also have to consider that we have then
    also to change the comps file

    i created a ticket and hope we find the time to work on it soon

    https://fedorahosted.org/security-spin/ticket/104
    Fedora 14 x86_64 - Lenovo Thinkpad T400

  8. #8
    Join Date
    Jul 2005
    Location
    RainCity
    Posts
    1,888
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)

    Re: Security Lab tools on normal Fedora 13 installation

    I was inspired by seeing this thread last night. Every install I do I must add a bunch of stuff, often scratching my head trying to remember which programs I always install. So last night I decided to make it easy in the future. I've added a bunch of things that I don't normally install. Not all of the stuff from the security spin is here, and a couple things are that aren't in it. Below the script is a list of the programs it installs. Is this useful? Any suggestions? Mostly I was just bored. If this is useful, It can be worked to speed it up a bit, add md5support and add more/fewer programs.

    #!/bin/sh

    ### Install the programs from the Fedora Security lab (and a couple others).
    yum -y install rkhunter;
    rkhunter --propud; # This sets up the database for Rkhunter's baseline.

    ### I break these installs up just so that it looks better in jed in gnome terminal.
    yum -y install wget snort kismet aircrack foremost hunt john chrootkit clamav;
    yum -y install tripwire dsniff driftnet firewalk scapy tcpdump openvas nc ngrep tiger;
    yum -y install etherape aircrack-ng wireshark ettercap-ng sectool realcrypt nmap amap;
    yum -y install samba samba-client curl tor privoxy cowpatty machanger mysql p0f;
    yum -y install hping3 ncrack scanssh xprobe2 pcapdiff tcpxtract nbtscan unhide;
    yum -y install socat lynis testdisk scanmem examiner dd_rescue dc3dd chrootkit;
    yum -y install prelude hexedit splint flawfinder pcapy ophcrack qwt sleuthkit;
    yum -y install argus;

    ### Let's install btscanner.
    cd /usr/local;
    wget http://www.pentest.co.uk/src/btscanner-2.1.tar.bz2;
    tar -jxvf btscanner-2.1.tar.bz2;
    cd btscanner-2.1;
    yum -y install gcc make bluez-* bluez libxml ncurses ncurses-devel libxml2-devel;
    ./configure;
    sed -i -e 's,-Wimplicit-function-dec,-Wimplicit-function-declaration,g' Makefile;
    make;
    make install;

    ### Here we'll install a couple perl and maybe bash scripts.
    mkdir /root/security/;
    mkdir /root/security/scripts;
    cd /root/security/scripts;
    wget http://prdownloads.sourceforge.net/w...r.gz?download;
    md5sum Wellenreiter-v1.9.tar.gz # Should be d8d3d10723f80c292e4dae4c14a2e4a7
    tar -xzvf Wellenreiter-v1.9.tar.gz;

    ### TODO: install things from sourceforge ie, Matahari, Wellenreiter and other


    ### Uncomment the correct file below for your chip, or neither if you don't want
    ### to run metasploit.
    #wget http://www.metasploit.com/releases/f...inux-i686.run;
    #wget http://www.metasploit.com/releases/f...ux-x86_64.run;
    ./framework*;
    rm -f framework*;
    exit 0



    The list of applications
    wget
    snort
    kismet
    aircrack
    foremost
    hunt
    john
    chrootkit
    clamav
    tripwire
    dsniff
    driftnet
    firewalk
    scapy
    tcpdump
    openvas
    nc
    ngrep
    etherape
    aircrack-ng
    wireshark
    ettercap-ng
    sectool
    realcrypt
    nmap
    amap
    samba
    samba-client
    curl
    tor
    privoxy
    cowpatty
    machanger
    mysql
    p0f
    hping3
    ncrack
    scanssh
    xprobe2
    pcapdiff
    tcpxtract
    nbtscan
    unhide
    socat
    lynis
    testdisk
    scanmem
    examiner
    dd_rescue
    dc3dd
    chrootkit
    prelude
    hexedit
    splint
    flawfinder
    pcapy
    ophcrack
    qwt
    sleuthkit
    gcc
    make
    bluez-*
    bluez
    libxml
    ncurses
    ncurses-devel
    libxml2-dev
    btscanner
    argus
    wellenreiter
    Last edited by kurtdriver; 2nd June 2010 at 11:47 PM.
    Kurt Driver
    Vancouver, Canada

    https://www.wikitree.com/wiki/Driver-1479

  9. #9
    Join Date
    May 2005
    Posts
    108
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)

    Re: Security Lab tools on normal Fedora 13 installation

    Neat dude.
    Fedora 14 x86_64 - Lenovo Thinkpad T400

  10. #10
    Join Date
    Jun 2005
    Location
    Brazil - Recife - PE
    Age
    41
    Posts
    90
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)

    Re: Security Lab tools on normal Fedora 13 installation

    Thanks kurtdriver. Nice initiative.
    Frederico Madeira
    www.madeira.eng.br
    MSN: fttmadeira@hotmail.com
    Registered GNU/Linux nš 206120

  11. #11
    Join Date
    Jul 2005
    Location
    RainCity
    Posts
    1,888
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)

    Re: Security Lab tools on normal Fedora 13 installation

    You're quite welcome.
    Here's a cleaner version. If anyone wants to make a suggestion feel free.

    Code:
    #!/bin/sh
    echo;
    echo;
    echo;
    echo "This script will install a lot of programs and is best done with a";
    echo "high speed connection ";
    sleep 1;
    echo;
    echo "It requires that Fedora Linux and Yum are already installed";
    sleep 3;
    echo;
    echo "To quit at any time, press the Ctrl-C key combination."
    sleep 3;
    clear;
    
    ### Install and setup Rkhunter.
    echo;
    echo;
    echo;
    echo "We'll begin by setting up Rkhunter and its database.";
    yum -y install rkhunter > /dev/null ; 
    rkhunter --propud > /dev/null; # This sets up the database for Rkhunter's baseline.
    clear;
    
    ### Install the programs from the Fedora Security lab (and a couple others).
    echo;
    echo;
    echo;
    echo "Now we'll install just about every program know to man."
    echo;
    echo "This is going to take a while, go fix a sandwich?"
    ### We'll break these up so they look better in gnome-terminal.
    yum -y install wget snort kismet aircrack foremost hunt john chrootkit clamav > /dev/null ; 
    yum -y install tripwire dsniff driftnet firewalk scapy tcpdump openvas nc ngrep tiger > /dev/null ;
    yum -y install etherape aircrack-ng wireshark ettercap-ng sectool realcrypt nmap amap > /dev/null;
    yum -y install samba samba-client curl tor privoxy cowpatty machanger mysql p0f > /dev/null;
    yum -y install hping3 ncrack scanssh xprobe2 pcapdiff tcpxtract nbtscan unhide > /dev/null;
    yum -y install socat  lynis testdisk scanmem examiner dd_rescue dc3dd chrootkit > /dev/null;
    yum -y install prelude hexedit splint flawfinder pcapy ophcrack qwt sleuthkit > /dev/null;
    yum -y install  argus > /dev/null; 
    clear;
    ### Let's install btscanner. 
    echo;
    echo;
    echo;
    echo "Now installing Btscanner, a bluetooth device scanner";
    echo
    echo "Wget insists on being talkative"; 
    echo
    echo "Again this will take a few minutes";
    cd /usr/local;
    wget http://www.pentest.co.uk/src/btscanner-2.1.tar.bz2 ;
    tar -jxvf btscanner-2.1.tar.bz2 > /dev/null;
    cd btscanner-2.1;
    yum -y install gcc  make bluez-* bluez libxml ncurses ncurses-devel libxml2-devel > /dev/null;
    ./configure > /dev/null;
    sed -i -e 's,-Wimplicit-function-dec,-Wimplicit-function-declaration,g' Makefile;
    make > /dev/null; 
    make install > /dev/null;
    clear;
    
    ### Here we'll install a couple perl and maybe bash scripts.
    echo;
    echo;
    echo;
    echo "Now creating a new directory on your computer at /usr/security/script";
    echo "to put some scripts into";
    mkdir /usr/security/;
    mkdir /usr/security/scripts;
    cd /usr/security/scripts;
    echo;
    clear;
    ### Install Wellenreiter, their homepage http://wellenreiter.sourceforge.net/
    wget http://prdownloads.sourceforge.net/w...ar.gz?download > /dev/null;
    ### This confused me, but Forkbomb (Tom) supplied the solution.
    checksum=$(md5sum /usr/local/src/Wellenreiter-v1.9.tar.gz | cut -d ' ' -f 1)
     md5sum="d8d3d10723f80c292e4dae4c14a2e4a7"
      if [ "$checksum" = "$md5sum" ]; then
       tar -xzvf /usr/local/src/Wellenreiter-v1.9.tar.gz > /dev/null ;
        else
         echo "The checksums are not correct, and we'll not install Wellenreiter right now."
           fi
           
    ### TODO: install things from sourceforge ie, Matahari, and others
    
    
    ### This installs Metasploit
    ARCH=`arch`
    if [ $ARCH == 'i686' ]; then
    -do
    wget http://www.metasploit.com/releases/f...linux-i686.run > /dev/null;
    fi
    
    if [ $ARCH == 'x86_64' ]; then
    -do
    wget http://www.metasploit.com/releases/f...nux-x86_64.run > /dev/null;
    
    
    fi
    
    
    ./framework* > /dev/null;
    rm -rf framework*;
    exit 0
    Last edited by kurtdriver; 3rd June 2010 at 03:19 PM.
    Kurt Driver
    Vancouver, Canada

    https://www.wikitree.com/wiki/Driver-1479

  12. #12
    Join Date
    May 2007
    Location
    U.S.
    Posts
    4,851
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)

    Re: Security Lab tools on normal Fedora 13 installation

    Quote Originally Posted by kurtdriver
    echo "To quit at any time, press the Ctrl-Z key combination."
    I'd make that Ctrl-C. Ctrl-Z will suspend the job in the current shell. If the user wants to quit proper, Ctrl-C is more appropriate.

    Other than that your use of semicolons at the end of lines is making me guess you come from a C/C++ background. You don't need to do that in a bash script, though I don't think it's fatal. The semicolon in bash is just a control operator that tells the interpreter "this command is done, now proceed to the next command on this line". Seeing that there are no commands on the same line, bash will just skip to the next line anyway, making it redundant.

    ---------- Post added at 08:41 AM CDT ---------- Previous post was at 08:40 AM CDT ----------

    Also, you might want to wrap that code in the forum's [ code ] [ /code ] tags (remove the spaces obviously). Makes it easier to read.
    - Tom
    "What is freedom? To have the will to be responsible for one's self." - Stirner

  13. #13
    Join Date
    Jul 2005
    Location
    RainCity
    Posts
    1,888
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)

    Re: Security Lab tools on normal Fedora 13 installation

    Thanks, fixed up a touch. Crtl-Z is a bad habit I have and some programs ie, mpg321 don't close from Crtl-C.
    And then when I logout I have "stopped jobs".
    The semi-colons are carried over from perl, I guess. I saw them in a bash script and something looked familiar.
    Thanks again. Kurt
    Anymore suggestions that anyone would would like to make?
    Is this Useful?

    ---------- Post added at 07:18 AM CDT ---------- Previous post was at 06:59 AM CDT ----------

    Actually that doesn't kill it. pressing Crtl-C twice caused it to hang, as it just made yum change mirrors. The terminal says "exiting on user cancel", but no prompt. ps aux |grep yum
    showed why. Maybe I can do that in the script?
    QUIT=stdin
    if [ "$QUIT == Crtl-C" ]; then
    echo "Now Quitting"; exit
    else

    fi
    I just stuck it into test.sh preceded by a yum update and it killed yum!
    How do I get bash to read this continuously, so that the option is always open?
    Kurt Driver
    Vancouver, Canada

    https://www.wikitree.com/wiki/Driver-1479

  14. #14
    Join Date
    May 2007
    Location
    U.S.
    Posts
    4,851
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)

    Re: Security Lab tools on normal Fedora 13 installation

    Some apps trap Ctrl-C to do things other than just killing it. Some ignore it entirely. It's is far from the equivalent to sending a SIGKILL. yum is one of the apps that traps Ctrl-C. I forgot about that. You can stop yum if you keep mashing on Ctrl-C long enough but you may be left with stale locks or unfinished transactions.

    My point was that Ctrl-Z is not quitting the job. It's backgrounding it. When you close the xterm, you're ending the bash session, which in turn kills bash's children - that includes jobs backgrounded with Ctrl-Z. Try opening up Vim, hit escape a few times, and then hit Ctrl-Z. It'll background the job. Run a few commands. Then run "fg." Vim comes back.

    Using Ctrl-Z to stop a script that has called yum is probably not a good idea. Ctrl-Z'ing it isn't exiting - yum will be suspended and thus still holding down the rpm db lock. And the lock will probably still be held down if you ctrl-z the script and close the xterm.
    - Tom
    "What is freedom? To have the will to be responsible for one's self." - Stirner

  15. #15
    Join Date
    Jul 2005
    Location
    RainCity
    Posts
    1,888
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)

    Re: Security Lab tools on normal Fedora 13 installation

    So how would I allow the user to cancel?
    Kurt Driver
    Vancouver, Canada

    https://www.wikitree.com/wiki/Driver-1479

Page 1 of 2 1 2 LastLast

Similar Threads

  1. Looking for KDE Fedora 12 normal installation DVD.iso
    By mikeunique in forum Installation, Upgrades and Live Media
    Replies: 13
    Last Post: 27th November 2009, 04:35 AM
  2. Replies: 1
    Last Post: 19th July 2007, 08:53 AM
  3. Replies: 0
    Last Post: 14th February 2005, 03:30 AM
  4. [SECURITY] Fedora Core 2 Update: net-tools-1.60-25.1
    By ewdi in forum Advisories & Updates
    Replies: 1
    Last Post: 5th June 2004, 08:27 PM
  5. [SECURITY] Fedora Core 2 Update: ipsec-tools-0.2.5-2
    By ewdi in forum Advisories & Updates
    Replies: 0
    Last Post: 28th May 2004, 07:01 PM

Tags for this Thread

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •