Lesson 11

Date: 4/17/2019

Linux Network Security

Linux System Administration

SSH brute force attacks Exercise

On the desktop, download ncrack
Install libssl-dev package, then compile and install ncrack by following the instructions on the source web site.

Install crunch package on the desktop, which is needed for generating a password dictionary.

Deploy a new VM, testub, by cloning kvm1.
Make the host name resolvable by creating the entry in /etc/hosts file on the desktop.

On the VM, create user account jerry. Assign password jerry1 to user jerry. If the password PAM module doesn't allow you setting a such simple password, use command mkpasswd and enter the hash manually into /etc/shadow. Check if user jerry can login to the VM.

On the desktop, generate a password table, passwords.txt, by running crunch:

crunch 5 6 jerry123 -o passwords.txt

Run SSH bruteforce attacks onto account jerry on the VM:

ncrack -vv --user jerry -P passwords.txt testub:22

Within a few minutes, ncrack should be able to identify the correct password for user jerry from passwords.txt list.

How systems get compromized
Exercise: SSH brute force attack
Exercise: Log check for login attempts
Exercise: TCP wrappers
Exercise: denyhosts
Stack overflow
Exercise with Stack overflow
Package upgrades and verification
Open Ports List exercise
Closing Ports
IP filtering firewalls (iptables)
Building iptables rules
Simple iptables script
Exercises with iptables
Port scanning exercises
System Integrity Checks
GNUtar exercises
References
Take me to the Course Website