Slashdot Mirror
Local Area Security Linux 0.4a
Anonymous Coward writes "Local Area Security Linux is a small 'live CD' distribution based on Knoppix that aims at being less than 185MB so it will fit on a MiniCD. It is now 107MB with FluxBox as the window manager. It contains about 100 security (forensics, penetration testing, firewall, intrusion detection, etc.) tools including Ethereal and Nessus. See a screenshot here."
Enjoy!
So is this a security or hacking cd? Seems like some good tools to me.
Can you ping me now?... Good!
How do you deal with the weekly Nessus plugin updates? Do you have to d/l and burn a new disk every week or two?
Sounds like futuristic porno rather than Unix security.
Sorry. That was not funny and clearly off-topic. Mod me down :-(
...All on 1 miniCD. That sounds very convenient.
I request that the next feature to develop is an option where you just wave or shake the miniCD at the computer to remedy any problems. This would alleviate the hassle of putting the miniCD into the tray and running it.
I am a big fan of easy to use diagnostics/repair utilities. This sounds very good, and with just this one final tweaking, I think it will be perfect.
Slashdot Syndrome: the sudden, extreme urge to correct someone in order to validate one's self.
Now, how many tools like this do you see for a windows, or any closed source environment. Its tools like these that keep linux away from crap like this balster worm. Linux isn't perfect, but it learns from its mistakes, thats what makes it superior to and closed source software
-=You might be a geek if your computer is worth more than your car=-
Live CDs like knoppix are all very lovely but when's the day that I can roll out my own live CDs without TOO much effort? Just select the packages you want, kernel, drivers, etc, wait as the program churns out a nice ISO for you which you can burn to a CD and voila, insta-Linux! Now that would seriously rock as you can simply modify all the basics as you see fit and can easily alter the whole deal for bugfixes.
Hate me!
Overall, this is a great new window manager, that will perform well on lower end machines.
::::: New Mirrors Added! :::::
N .i so -The Netherlands
4 a_ MAIN.iso -India/Asian Pacific
A IN .iso -USA
3 b. iso
s o
S ER V.iso
3 b_ SECSERV.iso
E CS ERV.iso
L.A.S. 0.4a Main with FluxBox MD5: 0939d7294035b5246bedbce1085bb1e1
http://lightning.chem.tue.nl/las/l.a.s_0.4a_MAI
http://sarovar.org/mirrors/knoppix-las/l.a.s_0.
http://psifertex.nerdc.ufl.edu/iso/l.a.s_0.4a_M
L.A.S. 0.3b Main MD5: f47150d2458c78169a65458bcf8ebf96
http://lightning.chem.tue.nl/las/l.a.s_0.3b.iso
http://sarovar.org/mirrors/knoppix-las/l.a.s_0.
http://psifertex.nerdc.ufl.edu/iso/l.a.s_0.3b.i
L.A.S. 0.3b SECSERV MD5: ff412734492e39d1d084ced556a47493
http://lightning.chem.tue.nl/las/l.a.s_0.3b_SEC
http://sarovar.org/mirrors/knoppix-las/l.a.s_0.
http://psifertex.nerdc.ufl.edu/iso/l.a.s_0.3b_S
I'm getting to really love these things. If it's got ssh, scp, ethereal, port scanner, and a few other goodies, this thing's gonna rock.
Karma: Chameleon (mostly due to the fact that you come and go).
I always thought a Linux bootable CD would be great at Best Buy. Throw the CD in, reboot, and then ask the sales rep to come over and show you how to get around "this new version of Windows."
tbdean
I have a script on my box that puts the eth0 interface down and back up every 3 minutes to break the connection of any evil pirate who might haNO CARRIER
"A door is what a dog is perpetually on the wrong side of" - Ogden Nash
How about an version that you can (easily) put on an USB flash memory card and boot from there?
This sounds a LOT like F.I.R.E. (http://fire.dmzs.com) which I've found to be extremely useful, and highly recommend for forensics, pen testing, and other practical security efforts.
In the real world, you don't always have permission to take a box down to perform forensics. Rebooting == downtime. Booting into Linux from a CD to inspect == downtime. When you *are* granted permission to take down a box for forensics analysis (you have to get permission in a search warrant for this, or permission from the company that wants you to investigate, but this is rarely feasable), you'll probably be working for a large firm that can afford forensics tools that cost tons of cash and do much more advanced forensics analysis than the forensics software for Linux.
This sounds more like another goodies CD for people to mess around with at school. Or perhaps something to give people Linux demos with. Who knows. I wouldn't market it as a forensics tool, though.
www.sitetronics.com/wordpress
I always save my last mod point to mod up a good troll. You people are too serious.
Someone earlier said companies cannot afford downtime. True but in most corporate enviroments there are plenty of boxes to take over the job of the hacked box most times and in the event that there's no backup most serious hackings will require the downtime anyways to investigate and fix the issue.
Can you imagine if a credit card database was hacked and they said just bring it back up?
Newer mini-CDs now fit up to 210Meg, FYI.
And they have R/W versions, as well. Nifty!
I always thought something like these would make great floppy replacements, but it looks like USB flash drives are gonna do that first. That's OK - solid state storage rawks, and their capacity is already well over that of even the 210Meg CD-R(/W) mini-CDs.
Here's to hoping they come out with FireWire '2' (IEEE1394.b) flash drives! *cheers*
You should be able to customize what is on the knoppix cd fairly easy already. If you look at the Knoppix cheatcodes, for manipulating hardware detection, there is a note in there about remastering the cd:
:)
If you wish to remaster the CD, please don't forget to specify
-b KNOPPIX/boot.img
for the german version of the bootfloppy, or
-b KNOPPIX/boot-en.img
for the english version, as option to mkisofs. Otherwise your CD
won't be bootable. The directory KNOPPIX, containig the compressed
filesystem file "KNOPPIX", must be located in the top level
directory of the CD.
So, just take the knoppix ISO, copy to disk and modify away. Then use mkisofs with the -b flag to make your new custom ISO.
Lazarus and The Coroner's Toolkit were developed several years ago by Wietse Venema (Postfix, TCPWrappers) and Dan Farmer (SATAN). Lazarus recovers deleted files which can then be browsed with a Web browser. The Coroner's Toolkit is forensics software (post-breakin analysis). I saw a presentation on them in 1999, and they looked very useful then; I'm sure they're even better now. Fortunately, I haven't had occasion to use them :)
WMBC freeform/independent online radio.
Those binary packaged tools also have the source available on the web and you can check each package out yourself there. the list of packages is available on the download site...
The guy who put the distro together has merely taken the trouble to save you a lot of time by assembling all the packages himself. I'm sure he will be just as keen to keep it up to date as well keeping track of major holes and also making sure you have the documentation available so you can keep it up to date yourself as well like you can with Knoppix.
I take it from your tirade that you've never enjoyed the advantage of Knoppix in being able to boot up the disk on someone elses computer without having to actually mess with the hard disk at all??? Just try turning up at a clients site with a CD stuffed with source code and expecting to be able to install it all on the hard disk before you can conduct your tests... and having to wait whilst it all compiles...
The prepackaged binary CD is far more convenient... and you can leave a copy behind for him to use himself... I've left behind some twenty knoppix CDs now for friends and relatives to play around with so they can experience Linux without having to mess with their hard disk. I've since gone back and installed it properly for seven of those people as duel boot setups.
Donald 'Duck' Dunn: We had a band powerful enough to turn goat piss into gasoline.
I used to use an old floppy based distro called Trinux. On about 3 floppies I had X server + GUI web browser and some network tools to do some testing. I think it was flown as a security tool distro but I used it mainly for network troubleshooting. Still ahve the floppies but I think the site and distro have died.
Anyone know what I'm talking about?
*DrugCheese rants*
Yeah, I walk around my schools campus carrying CDs that say things ldke l33t h4k0r1n9 t00lz" on them.
.mp3's in any free space on the CD, and claim it's a CD of remixes of Britney Spears and 'N-Sync. I doubt they'll suspect anything.
Heck, I'd just throw a few low quality
I'm typing this right now in the "Links" browser. It's fast, it looks good, it has most of the tools I use (Nessus, Ethereal, XMMS, Firebird). I might just mod this and carry it with me instead of using other people's machines when I'm doing diagnostics. It picked up my wireless correctly and everything.
Have fun with this one, kids.
***
Why is it flame-bait when someone states an obvious fact? I have no problem with jews or any other religion/group of people - but more and more I am finding it hard not to be an anti-semite. As the parent poster pointed out, why do the Jews never learn?
It seems to me that everyone that answers a question by invoking God (Allah etc..) you are sentencing yourself and your children to death. Doesn't the fact that deaths caused by religious fundamentalism out number any disease (plaque, aids etc..)combined click in the mind of the most logic challenge that this is not the correct path? Doesn't murdering people - at all - tell you that you are as wrong as the murderers you are fighting?
Want peace? Remove god from the equation and you'll be on the short path (not there, but almost - you need to establish secular morality first)
no, I didn't forget the AC button, I truly believe what I say, mod me the way you like, but I speak truth.
ymmv
I got a shell running, but there seems to be no man command and no documentation for some things in the menu, like the TinyIRC client. Obviously since I'm posting this from the running ISO there must be a web browser, but I had never used "links" before, so it was not easy to find. How I find the security tools supposedly built into this I have no idea. I did get a GUI ethereal running by bringing up a shell and typing in ethereal, but I just don't know what else is here (and what isn't).
By the way, I have network issues when booting Knoppix on this computer, so I booted this ISO with the "Knoppix expert" option. Or at least I tried to. Although it prompted me for the boot option, it ignored it after I typed it in.
I'm an American. I love this country and the freedoms that we used to have.
One thing you can do is to install the Live CD to a hard drive to get a permanant installation. While this may seem counter productive for a Live CD, I've found it to be really useful. I'm currently using the Knoppix Security Tools Distribution as a "desktop" OS... :-) Knoppix 3.2 (what both these distros are based on) includes a really useful script to install the Live CD to the hard drive. It's the easiest way I've found so far to get a Debian testing/unstable system installed and running - with X configured correctly the first time! That, in addition to having tons of great security tools preinstalled and configured makes for one sweet network-workstation-on-steroids.
...of course, I'm in charge of security where I work, so using this as a desktop OS may get you fired from _your_ work... :)
g00r00?
If they're trying to offer a secure server Linux distro, you'd think they'd run their webserver on that instead of OpenBSD.
Sig!
I'm using it (firewalled, proxied, spoofed) to test out the OS, not as a security platform. I'm just sitting here at home fooling around. Nice joke, though.
***
Wait, employees of your school actually care what's on the CDR's your carrying around? I could have walked around the school w/ a toolbox that said "big ol' hackin kit" on it and no-one would have looked twice.
I do security