As Linux fans know, there are two kinds of hackers: the good guys who develop free software, such as the Linux kernel, and the bad guys who break into computers.

The bad guys paid the good guys an unwelcome visit earlier this month, breaking into the Kernel.org website that is home to the Linux project. They gained root access to a server known as Hera and ultimately compromised “a number of servers in the kernel.org infrastructure,” according to a note on the kernel.org website Wednesday.

Administrators of the website learned of the problem Sunday and soon discovered a number of bad things were happening on their servers. Files were modified, a malicious program was added to the server’s startup scripts and some user data was logged.

Kernel.org’s owners have contacted law enforcement in the U.S. and Europe and are in the process of reinstalling the site’s infrastructure and figuring out what happened. They think that the hackers may have stolen a user’s login credentials to break into the system, and the site is making each of its 448 users change their passwords and SSH (Secure Shell) keys.

The hack is worrying because Kernel.org is the place where Linux distributors download the source code for the widely used operating system’s kernel. But Kernel.org’s note says that, even with root access, it would be difficult for a hacker to slip malicious source code into the Linux kernel without it being noticed. That’s because Linux’s change-tracking system takes a cryptographic hash of each file at the time it is published. So once a component of the Linux kernel has been written and published to Kernel.org, “it is not possible to change the old versions without it being noticed,” the Kernel.org note said.

This kind of compromise has become disturbingly common. In January, servers used by the Fedora project — the community version of Red Hat Enterprise Linux — were hacked. And around the same time another open-source software development site called SourceForge was also broken into.

Robert McMillan covers computer security and general technology breaking news for The IDG News Service

Klik For Source

1. masukin cd live cd ubuntu 9.10
2. dah gitu ketik sudo mount -t ext4 /dev/sda5 /mnt/ (asumsinya partisi linux anda ada di sda5)
3. Mount folder “proc” sudo mount -t proc proc /mnt/proc/
4. Mount juga folder “sys” sudo mount -t sysfs sys /mnt/sys/
5. Mount juga folder “dev” sudo mount -o bind /dev/ /mnt/dev/
6. lalu ketik perintah sudo chroot /mnt /bin/bash

Semua dah selesai di mount, lalu kita tinggal menginstall kembali grubnya dengan perintah : grub-install /dev/sda5
Jika tidak ada error setelah anda melakukan perintah tersebut, restart komputer anda, lalu setelah itu grub anda akan kembali lagi seperti semula.

auto br0
iface br0 inet dhcp
bridge_ports eth0

# The loopback network interface
auto lo
iface lo inet loopback

note:
“eth0″ is the name of your interface, it can be different depending on your machine.
“br0″ is an arbitrary name for the bridge.
If you are using static IP addresses modify the interfaces like this:

sudo vim /etc/network/interfaces

and then fill this entry:

auto br0
iface br0 inet static
address 192.168.0.100
netmask 255.255.255.0
gateway 192.168.0.1
bridge_ports eth0

# The loopback network interface
auto lo
iface lo inet loopback

note:

Replace 192.168.0.100 with your IP, 255.255.255.0 with your netmask and 192.168.0.1 with your gateway. If you are using static IP addresses for eth0, eth1, etc; you will need to configure the br0 interface using the same settings! Otherwise your system will request an IP address via DHCP. You may add as many vbox# interfaces as you wish as long as they are also declared in /etc/vbox/interfaces; keep reading for details.

And then used this command :

sudo brctl addif br0 eth0


When you type command “brctl show” it must shown like this :


sudo brctl show

bridge name             bridge id                STP enabled    interfaces

br0                    8000.0016d4db8cb9          no                       eth0

pan0                8000.000000000000           no

Restart your network :


sudo /etc/init.d/networking restart


And the last see your network configuration with “ifconfig” if you see your network configuration like this:


sudo ifconfig

br0    Link encap:Ethernet  HWaddr 00:16:d4:db:8c:b9

inet addr:192.168.0.100  Bcast:192.168.0.255  Mask:255.255.255.0

inet6 addr: fe80::216:d4ff:fedb:8cb9/64 Scope:Link

UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1

RX packets:14 errors:0 dropped:0 overruns:0 frame:0

TX packets:32 errors:0 dropped:0 overruns:0 carrier:0

collisions:0 txqueuelen:0

RX bytes:1730 (1.7 KB)  TX bytes:4568 (4.5 KB)
eth0      Link encap:Ethernet  HWaddr 00:16:d4:db:8c:b9

inet6 addr: fe80::216:d4ff:fedb:8cb9/64 Scope:Link

UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1

RX packets:16 errors:0 dropped:0 overruns:0 frame:0

TX packets:32 errors:0 dropped:0 overruns:0 carrier:0

collisions:0 txqueuelen:1000

RX bytes:2181 (2.1 KB)  TX bytes:4744 (4.7 KB)

Interrupt:17
lo        Link encap:Local Loopback

inet addr:127.0.0.1  Mask:255.0.0.0

inet6 addr: ::1/128 Scope:Host

UP LOOPBACK RUNNING  MTU:16436  Metric:1

RX packets:80 errors:0 dropped:0 overruns:0 frame:0

TX packets:80 errors:0 dropped:0 overruns:0 carrier:0

collisions:0 txqueuelen:0

RX bytes:6537 (6.5 KB)  TX bytes:6537 (6.5 KB)
it mean that you did it. Now unpluged your network try to ping to your IP Virtual server from your host, it should be reply.

Repo.ugm.ac.id
deb http://repo.ugm.ac.id/debian/ stable main contrib non-free

Kambing.ui.edu
deb http://kambing.ui.edu/debian etch main contrib non-free
deb http://kambing.ui.edu/debian etch/volatile main contrib non-free
deb http://kambing.ui.edu/debian-security etch/updates main contrib non-free

mirror.its.ac.id
deb http://mirror.its.ac.id/debian etch main non-free contrib
deb http://mirror.its.ac.id/debian stable-proposed-updates main non-free contrib
deb http://mirror.its.ac.id/debian-security etch/updates main non-free contrib

komo.vlsm.org
deb http://komo.vlsm.org/debian etch main non-free contrib
deb http://komo.vlsm.org/debian etch-proposed-updates main non-free contrib

debian.indika.net.id
deb http://debian.indika.net.id/debian etch main non-free contrib
deb http://debian.indika.net.id/debian etch-proposed-updates main non-free contrib

ftp://ftp.itb.ac.id
deb ftp://ftp.itb.ac.id/pub/debian etch main non-free contrib
deb ftp://ftp.itb.ac.id/pub/debian etch-proposed-updates main non-free contrib

Debian testing

deb http://security.debian.org/ testing/updates main contrib
deb ftp://packages.debian.org/debian/ testing main contrib non-free
deb-src ftp://packages.debian.org/debian/ testing main contrib non-free

deb http://kambing.ui.edu/debian/ testing main contrib non-free
deb http://kambing.ui.edu/debian-security/ testing/updates main contrib non-free
deb-src http://kambing.ui.edu/debian/ testing main contrib non-free
deb-src http://kambing.ui.edu/debian-security/ testing/updates main contrib non-free

note :

Kalo mo nambahin repo di debian, pertama-tama harus liat dulu versi dari debiannya, caranya di konsole ketik

lsb_release -a

kalo hasilnya ada tulisan testing, masukin repo buat yang testing.

1. Masukin live cd linux apa aja….

2. Di live cd masuk ke terminal terus ketik grub lalu enter…(muncul tampilan kayak gini)

[ Minimal BASH-like line editing is supported.   For
the   first   word,  TAB  lists  possible  command
completions.  Anywhere else TAB lists the possible
completions of a device/filename. ]

grub>

3. Kalo dah masuk di grub ketik grub> find /boot/grub/stage1 (keluar kayak gini)

grub> find /boot/grub/stage1
(hd0,4)

Note: Hasil dari perintah tersebut berbeda di setiap komputer karena saya menginstall satu linux (blankon) dan satu windows, maka yang keluar adalah satu file stage saja yang terdapat di hd0,4

4. Dah gitu langsung ketik: grub> root (hd0,4)

5. Dah gitu tinggal kita install grubnya make perintah grub> setup (hd0). Jika keluar hasil seperti ini..

grub> setup (hd0)
Checking if “/boot/grub/stage1″ exists… yes
Checking if “/boot/grub/stage2″ exists… yes
Checking if “/boot/grub/e2fs_stage1_5″ exists… yes
Running “embed /boot/grub/e2fs_stage1_5 (hd0)”…  16 sectors are embedded.
succeeded
Running “install /boot/grub/stage1 (hd0) (hd0)1+16 p (hd0,4)/boot/grub/stage2 /boot/grub/menu.lst”… succeeded
Done.

grub>

itu tandanya kita dah selesai balikin lagi grub yang tadinya hilang tersebut.

Tapi tunggu dulu….ada kalanya pas kita jalanin perintah grub> find /boot/grub/stage1 keluar hasil seperti ini…Error 15: file not found. Terus pas jalanin perintah grub> setup (hd0) keluar hasil seperti ini…Error 11: Unrecognized device string. Nah kalo muncul error kayak gitu, caranya kita mesti mount dulu folder proc sama udev yang ada di partisi linux yang pengen kita betulin grubnya. Caranya…

1. mount dulu partisi harddisk yang ada linuxnya mount /dev/sda5 /mnt (saya mount partisi linux saya yang ada di sda5 ke folder mnt)

2 . root@blankon:/# mount -t proc none /mnt/proc/

3 . root@blankon:/# mount -o bind /dev/ /mnt/dev/

4. Dah selesai di mount semua tinggal ketik lagi perintah grub…terus tinggal lanjutin lagi langkah 3 sampe 5 selesai deh….

Thanks to infolinux..

1. Buka terminal (konsole) di linux anda,
2. Dah gitu, ketik perintah “dd if=/dev/cdrom of=/path/file.iso”
3. Dah gitu tunggu deh sampe selesai…

1. generate key pada account di komputer anda:

dian@dian-laptop:~$ ssh-keygen
Generating public/private rsa key pair.
Enter file in which to save the key (/home/dian/.ssh/id_rsa): <tekan enter saja>
/home/dian/.ssh/id_rsa already exists.
Overwrite (y/n)? y <ini kondisinya karena saya sudah menggenerate id saya>
Enter passphrase (empty for no passphrase):<tekan enter saja>
Enter same passphrase again:<tekan enter saja>
Your identification has been saved in /home/dian/.ssh/id_rsa.
Your public key has been saved in /home/dian/.ssh/id_rsa.pub.
The key fingerprint is:
61:8b:a9:e9:ed:55:35:5b:77:64:34:8f:bb:b3:a6:7d dian@dian-laptop

2. Simpan berkas id_rsa.pub tersebut di server tujuan.

dian@dian-laptop:~$ scp /home/dian/.ssh/id_rsa.pub dian@harddian.com:.ssh/authorized_keys

Setelah cobalah ssh ke server tujuan, sampai disini kita udah bisa ssh ke server tujuan tanpa menggunakan password lagi.