Local Area Security Linux 0.4a 229
Anonymous Coward writes "Local Area Security Linux is a small 'live CD' distribution based on Knoppix that aims at being less than 185MB so it will fit on a MiniCD. It is now 107MB with FluxBox as the window manager. It contains about 100 security (forensics, penetration testing, firewall, intrusion detection, etc.) tools including Ethereal and Nessus. See a screenshot here."
Torrent file (Score:5, Informative)
Enjoy!
Re:Torrent file (Score:5, Informative)
Re:Torrent file (Score:2)
If you've got the full version, put it on torrent anyway. share files that aren't copyrighted for once.
Re:Torrent file (Score:4, Funny)
BitTorrent is teh rox0r.
296k/sec down, 135k up
sorry about the leetspeek.
Re:Torrent file (Score:2)
Pat
Re:Torrent file (Score:2)
Don't do it because of the pleas from the mirror operators -- do it to get a faster download.
Security? (Score:5, Interesting)
Re:Security? (Score:2)
But.. it can be used for the powers of evil.
so more or less, in the US he would be found guilty of releasing hacking programs to the world..
ChiefArcher
Re:Security? (Score:5, Insightful)
of course! tools are value-neutral - it's intent that makes something good or evil. a gun can be used to do good, a pillow can be a weapon of murder.
now what we really need is /dev/intent
Re:Security? (Score:4, Funny)
Re:Security? (Score:2)
If you exclude protection from enviroment (killing an animal because it wants to eat you, something that will not be any concern to 99.99% of people) the only good a gun can be used for is to prevent evil caused by guns.
Your analogy holds up though because all of these tools would not need to exist if people didn't create tools to crack into peoples computers and mess things up.
Re:Security? (Score:2)
Re:Security? (Score:2, Funny)
Re:Security? (Score:5, Funny)
I can see it now... In Matrix3, Trinity pulls out a miniCD and holds it in front of the camera. The shimmering glow of the miniCD sends awwws through the audience. Trinity inserts the miniCD and..
L.A.S now booting...
appears on the screen. A couple hard core geeks stand up and cheer.
Could you see that scene done with a full sized CD? No, it just would not be as cool.
maybe I missed it but, (Score:5, Insightful)
Re:maybe I missed it but, (Score:2, Informative)
Re:maybe I missed it but, (Score:4, Insightful)
Same as Knoppix.
No big deal, losing these between boots. The 2200+ vulns on the CD are fine to begin with AFAIC.
Knoppix as a Debian installer (Score:2, Insightful)
Sometimes the child in me wins ... (Score:5, Funny)
Sounds like futuristic porno rather than Unix security.
Sorry. That was not funny and clearly off-topic. Mod me down :-(
Usefull (Score:2)
Maybe it's a good giveaway for consultants to throw a little knoledge at the clients let them get scared and then do a real audit?
Re:Usefull (Score:5, Funny)
Re:Usefull (Score:2)
Re:Usefull (Score:2)
Circuit city appriciated the business I gave them though, and they knocked some money of the price of the laptop (they weren't offering the same credit terms). YMMV, chain retail stores are a crap shoot.
New feature request (Score:5, Funny)
I request that the next feature to develop is an option where you just wave or shake the miniCD at the computer to remedy any problems. This would alleviate the hassle of putting the miniCD into the tray and running it.
I am a big fan of easy to use diagnostics/repair utilities. This sounds very good, and with just this one final tweaking, I think it will be perfect.
Re:New feature request (Score:2)
Re:New feature request (Score:3, Funny)
Sounds like a great Open Source project to make your fame with. Please make it RFC 2321 [ietf.org] compliant.
Standards are very important, after all.
it's been done! (Score:2)
No Damn Blaster... (Score:2, Interesting)
YADLD Yet Again :-P (Score:2, Funny)
Haven't we already got enough?
And what is this Coroner's toolkit thingy? Something for the morgue? What does it have to do with Linux?
And forget this Lazarus thingy-- if you want religion, get Jesux.
Oh, and more more thing. My pen writes fine. No need to test it.
(for the humor impaired-- if you didn't get it, forget it)
Re:YADLD Yet Again :-P (Score:3, Informative)
Re:YADLD Yet Again :-P (Score:2)
I know what they are. Sorry for my lame attempt at making a joke. For thos
Re:No Damn Blaster... (Score:5, Insightful)
Actually, there are a number of tools for windows. Even ethereal is available for windows and works pretty well on it. Part of the problem is that you can't legally make and redistribute a CD that will boot and run windows from CD, so there would be no good way to set up windows with everything that needs installed and run these types of applications from CD, even if you had windows on the computer (plus not being able to plan for what flavor of Windows you had). And while there are a lot of good tools to do these things under windows, and most or all of what is on this CD is open source and certainly could be ported to windows, the people making these tools simply prefer Linux and put them there first. But the tools do exist under windows.
Re:No Damn Blaster... (Score:2)
you got one thing right, windows cannot be made (legally) to do this since it doesnt boot from CD with the applications ready to run. hell i doubt as if you could get windows with the same programs onto a mini-CD.
Re:No Damn Blaster... (Score:2)
Re:No Damn Blaster... (Score:2)
And Red Hat 9.0 will not fit on a 1.2 Gigabyte hard drive with the GUI (when installed right from the Red Hat install CD's)! So what's your point?
Re:No Damn Blaster... (Score:2)
live CDs are nice (Score:5, Interesting)
Live CDs like knoppix are all very lovely but when's the day that I can roll out my own live CDs without TOO much effort? Just select the packages you want, kernel, drivers, etc, wait as the program churns out a nice ISO for you which you can burn to a CD and voila, insta-Linux! Now that would seriously rock as you can simply modify all the basics as you see fit and can easily alter the whole deal for bugfixes.
Re:live CDs are nice (Score:3, Informative)
When? Today.
What you just described is what Gentoo is about entirely. Gentoo fanaticism aside, if that's what you want, then you should look into it.
-Tom
Re:live CDs are nice (Score:3, Insightful)
Isn't Gentoo compiled specifically for your machine, with all sorts of optomizations and such? Doesn't that contradict the concept of burning a cd that can run on (almost) any system?
Re:live CDs are nice (Score:2)
Typically, yes, Gentoo is compiled for your machine. However, nothing prevents you from setting the architecture to i386 and making a universal system. Gentoo is almost a "meta" disto, in that you could use it to build a secure distro, web server only distro, desktop system, etc.
And of course, since it's open source, it doesn
Seing as it's Debian based ... (Score:2)
Well, as I see it, with Knoppix (and derivatives) you get almost everything you need. If not you can always apt-get what you need as it's based on Debian. Not exactly what you want, but it's easily customizable from this viewpoint.
zRe:Seing as it's Debian based ... (Score:2)
No, you get all of what the developer thinks you need, but that's hardly always what you need. Knoppix has even been removing things to make space, so you no longer get some things, but you still get three or four different spreadsheets and word processors and at least two power
Re:Seing as it's Debian based ... (Score:2)
Re:live CDs are nice (Score:5, Informative)
Check out Morphix [sourceforge.net]. It's a distro based on Knoppix, but modularized. There are small versions (that will fit on a mini-CD) as well as "fat" versions (with all the bells and whistles).
It's designed so that you can choose the features you want, add additional software, and burn a custom CD. Not quite turnkey, but quite doable with a little effort.
Re:live CDs are nice (Score:3, Insightful)
Re:live CDs are nice (Score:2)
Re:live CDs are nice (Score:2)
Another idea would be to have a distro that scans all the systems on your subnet and offers you a nice GUI to supply passwords so it can use to hack, steal their apps, use their bandwidth, and make them your bitches, etc.
I rather enjoy the thought of hostile operatin
Re:live CDs are nice (Score:3, Funny)
Here ya go! [microsoft.com]
Re:live CDs are nice (Score:2)
Knoppix can already do this! (Score:5, Interesting)
If you wish to remaster the CD, please don't forget to specify
-b KNOPPIX/boot.img
for the german version of the bootfloppy, or
-b KNOPPIX/boot-en.img
for the english version, as option to mkisofs. Otherwise your CD
won't be bootable. The directory KNOPPIX, containig the compressed
filesystem file "KNOPPIX", must be located in the top level
directory of the CD.
So, just take the knoppix ISO, copy to disk and modify away. Then use mkisofs with the -b flag to make your new custom ISO.
Re:live CDs are nice (Score:3, Informative)
Again, not that I have tried it. Here's a link:
Morphix [sourceforge.net]
Re:live CDs are nice (Score:2)
Gentoo would be a nice thing for this, I suppose. Personally I'd rather have RPM or DEB package system but the Gentoo would work nicely as well I presume. There's going to be some friction here again as not everyone likes the Gentoo system as much as others. (which makes sense, glibc is a monstrousity, though this is not Gentoo's fault.) Then again, there are more opinion on this matter then just mine and I'm open to any ideas :P
Fluxbox (Score:5, Informative)
Overall, this is a great new window manager, that will perform well on lower end machines.
Re:Fluxbox (Score:2)
On a side note, they're using my theme in that screenshot
SLashdotted!! mirrors (Score:5, Informative)
L.A.S. 0.4a Main with FluxBox MD5: 0939d7294035b5246bedbce1085bb1e1
http://lightning.chem.tue.nl/las/l.a.s_0.4a_MAI
http://sarovar.org/mirrors/knoppix-las/l.a.s_0.
http://psifertex.nerdc.ufl.edu/iso/l.a.s_0.4a_M
L.A.S. 0.3b Main MD5: f47150d2458c78169a65458bcf8ebf96
http://lightning.chem.tue.nl/las/l.a.s_0.3b.iso
http://sarovar.org/mirrors/knoppix-las/l.a.s_0.
http://psifertex.nerdc.ufl.edu/iso/l.a.s_0.3b.i
L.A.S. 0.3b SECSERV MD5: ff412734492e39d1d084ced556a47493
http://lightning.chem.tue.nl/las/l.a.s_0.3b_SEC
http://sarovar.org/mirrors/knoppix-las/l.a.s_0.
http://psifertex.nerdc.ufl.edu/iso/l.a.s_0.3b_S
Re:SLashdotted!! mirrors (Score:2)
Though the main problem isn't the load on my machine, but my boss's expression if she realizes the traffic spike [ufl.edu] I caused.
Re:SLashdotted!! mirrors (Score:2)
tool doesn't offer MD5 or gpg verification files for it's iso...
Re:SLashdotted!! mirrors (Score:2)
You're welcome.
Excellent. :) (Score:5, Interesting)
Don't need no network security tools (Score:5, Funny)
USB flash version (Score:5, Interesting)
Re:USB flash version (Score:3, Insightful)
Re:USB flash version (Score:3, Interesting)
Re:USB flash version (Score:5, Informative)
knoppix-usb [uni-karlsruhe.de]
and runt [ncsu.edu].
Knoppix-usb is based on (you guessed it!) and runt is based on slackware.
Sounds a lot like F.I.R.E. (Score:3, Informative)
Re:Sounds a lot like F.I.R.E. (Score:2)
Forensics utilities are somewhat useless (Score:5, Interesting)
This sounds more like another goodies CD for people to mess around with at school. Or perhaps something to give people Linux demos with. Who knows. I wouldn't market it as a forensics tool, though.
Re:Forensics utilities are somewhat useless (Score:2, Insightful)
Re:Forensics utilities are somewhat useless (Score:3, Informative)
Re:Forensics utilities are somewhat useless (Score:3, Insightful)
If I'm working for a cash rich company, why can't I use the free toolkit and pocket the extra money set aside for "tools"?
Re:Forensics utilities are somewhat useless (Score:2)
Oh, I dunno, let's see, maybe because that would be EMBEZZLEMENT?
Re:Forensics utilities are somewhat useless (Score:2)
Oh, I dunno, let's see, maybe because that would be EMBEZZLEMENT?
It's not embezzlement if you out-source to MeMyselfAndIAssociatesInc. who invoice you and everything
Re:Forensics utilities are somewhat useless (Score:2, Insightful)
I may be missing something here, but it sounds like you're describing a scenario where a machine has been compromised, and you're discussing what should be done afterwards. If you're describing something else, everyone should just ignore the rest of this article. Otherwise...
If a system has been compromised, then you can't afford not to take it down. In my book, any system that has been compromised is already down and should never be put back on the network again. At least not until you have done for
Re:Forensics utilities are somewhat useless (Score:2)
Re:Forensics utilities are somewhat useless (Score:2)
Re:Forensics utilities are somewhat useless (Score:4, Interesting)
but, if you are a "security consultant", you simply need to show up, on-site with your mini-cd, and proclaim that all matters will be quickly resolved...as soon as you comandeer the secretary's pc.....
(and quickly reboot it.)
i dunno.
Re:Forensics utilities are somewhat useless (Score:4, Informative)
I've worked six jobs in the last four months using Unix tools, and used various combinations of dd, netcat, ssh, mount, losetup, grep, and the other unix basics to wonderful effect on every one. They don't really ever fail on account of bugs or arbitrary limit conditions (can't handle files bigger than X MB, for instance), and they're terribly simple to troubleshoot. Oh, and there's nothing like an open-source tool for when you have to walk into court and answer the question "So, Mr. Expert-Computer-guy, how do you KNOW that this software did what you said it did?" It takes the wind out of an attorney's sails when you whip out the printed source code to md5sum and start walking him through it.
I've used the $90K forensic tools from the high-profile companies, and they work OK. Not great , though. EnCase, one of the more popular LE programs, has been plagued with bugs in the latest major version. Also, they're restricted to Windows and Mac analysis, so you're out of luck if you get a Linux machine. Oh, and don't even bother with tech support unless you're a true idiot who has failed to plug in his computer--one time, their IDE write-blocking interface was forcing drives into PIO mode (and taking 40 hours to copy a 10 GB hard drive!), and their phone tech suggesting that I try "www.hardforum.com" for technical advice. Talk about pure shit.
Most of the other insanely expensive tools that I've used have similar issues: limited platform support, buggy out the ass, and crappy tech support. The last isn't their fault so much, because most people using forensic tools are advanced enough that they won't be helped by any by the best--and the best technical/forensic people are expensive. But the bugs, oh god, the bugs!
There are a few tools that the USAF's OSI put into public domain usage that are handy, but really, you just need a linux machine with dd, ssh, netcat, and a custom kernel.
Re:Forensics utilities are somewhat useless (Score:2)
Agreed, many of the more "advanced" forensic utilities are somewhat lacking in certain areas, but there are cases in which they are really the only way to get the job done. And I've come across many situation in which it is not feasable to take the box down.
Re:Forensics utilities are somewhat useless (Score:3, Interesting)
Taking a box offline may not be an option in a lot of environments, but I can think of several cases in which this would be very useful.
One of my private servers was taken over once. Very un-nice thing, resulting in several months of frustrating interaction with network provider until we figured out we'd been rootkitted. We reinstalled everything from scratch and did our best to lock it down, but it still would have been nice to have a handy forensics tool to pop on the 'doze
Why not included in distributions? (Score:2, Insightful)
Re:Why not included in distributions? (Score:2, Informative)
Re:Why not included in distributions? (Score:2, Insightful)
The point is, when something has gone wrong with your system -- like for example that it's been taken over by an intruder, you can boot up and try to do stuff, but you never know what kinds of traps the intruder may have left for you. Maybe they just looked around and did nothing, or maybe they've left behind special code so that just running a regular program or even just booting up might cause your entire hard drive to be erased. What you want to do in that kind of situation is boot off a different volu
Downtime (Score:4, Insightful)
Can you imagine if a credit card database was hacked and they said just bring it back up?
185Meg? That's old sk00l! (Score:3, Interesting)
And they have R/W versions, as well. Nifty!
I always thought something like these would make great floppy replacements, but it looks like USB flash drives are gonna do that first. That's OK - solid state storage rawks, and their capacity is already well over that of even the 210Meg CD-R(/W) mini-CDs.
Here's to hoping they come out with FireWire '2' (IEEE1394.b) flash drives! *cheers*
Re:185Meg? That's old sk00l! (Score:2)
True, but, you shouldn't think of a _floppy replacement_ in terms of how the rewrites compare to, say, a harddrive, but in how appropriate is it for the task, especially as compared to what it replaces. Also the technology change involved in implementing the new tech. Pretty much every computer comes with a USB port (or 4 or 6 or 8) these days. Many do not come with rewritable optical drives.
> The tranfer speed is abysimal, and in no way, shape, or form could
Knoppix STD (Score:2)
http://www.knoppix-std.org/ [knoppix-std.org].
-- PhoneBoy
Just like Trinux (Score:2, Informative)
Anyone know what I'm talking about?
Fear Invoking Statement (Score:2)
"A security scanner is a software which will audit remotely a given network and determine whether bad guys (aka 'crackers') may break into it, or misuse it in some way."
It fails to mention that Nessus maintains a database of all security violations that can be parsed by Hackers in the know.
WAAAHAAAHAAA... (cough) (cough) (cough)
I'm using it right now ... (Score:4, Informative)
Have fun with this one, kids.
let me get this straight (Score:2)
Re:let me get this straight (Score:2, Interesting)
I'm not impressed (Score:3, Informative)
I got a shell running, but there seems to be no man command and no documentation for some things in the menu, like the TinyIRC client. Obviously since I'm posting this from the running ISO there must be a web browser, but I had never used "links" before, so it was not easy to find. How I find the security tools supposedly built into this I have no idea. I did get a GUI ethereal running by bringing up a shell and typing in ethereal, but I just don't know what else is here (and what isn't).
By the way, I have network issues when booting Knoppix on this computer, so I booted this ISO with the "Knoppix expert" option. Or at least I tried to. Although it prompted me for the boot option, it ignored it after I typed it in.
OpenBSD? (Score:2, Insightful)
Re:Mini CD? (Score:2)
Re:slashdottedly slashdotted (Score:2)
Re:Redundant (Score:5, Insightful)
Those binary packaged tools also have the source available on the web and you can check each package out yourself there. the list of packages is available on the download site...
The guy who put the distro together has merely taken the trouble to save you a lot of time by assembling all the packages himself. I'm sure he will be just as keen to keep it up to date as well keeping track of major holes and also making sure you have the documentation available so you can keep it up to date yourself as well like you can with Knoppix.
I take it from your tirade that you've never enjoyed the advantage of Knoppix in being able to boot up the disk on someone elses computer without having to actually mess with the hard disk at all??? Just try turning up at a clients site with a CD stuffed with source code and expecting to be able to install it all on the hard disk before you can conduct your tests... and having to wait whilst it all compiles...
The prepackaged binary CD is far more convenient... and you can leave a copy behind for him to use himself... I've left behind some twenty knoppix CDs now for friends and relatives to play around with so they can experience Linux without having to mess with their hard disk. I've since gone back and installed it properly for seven of those people as duel boot setups.
Re:This is nothing new... (Score:2)
The Knoppix STD (Security Tools Distro) [knoppix-std.org] ISO is about 612MB. So it would appear this one is much smaller. I'm going to try it out when the traffic dies down.
-cp-
Re:Great Idea... (Score:4, Funny)
Heck, I'd just throw a few low quality
Re:Great Idea... (Score:3, Funny)
Re:More suicide bombing in Israel? (Score:3, Interesting)
It seems to me that everyone that answers a question by invoking God (Allah etc..) you are sentencing yourself and your children to death. Doesn't the fact that deaths caused by religious fundamentalism out number any disease (plaque, aids etc..)combined cli