Slashdot Mirror

← Back to Stories (view on slashdot.org)

Local Area Security Linux LiveCD

Posted by michael on from the sysadmin-warchest dept.

An anonymous reader writes "LocalAreaSecurity.com has released a new version of their live-CD Linux distribution for information security professionals. It contains over 200 security tools including all the usual suspects (Nmap, Nessus, etc.) as well as many other great tools less well known. The ISO images are meant to be burned on 185MB and 210MB miniCDs which they update around twice a month. L.A.S. also publishes many papers on how to use the tools as well as research docs on *nix security. Their latest papers include: Securing Mambo Open Source CMS, Doing More With Less: Nessus, and L.A.S. Security Tool Review and Howto: kismet."

94 comments

  1. Mini-disks only? by filekutter · · Score: 0, Interesting

    Guess I'll find out shortly.... coaster time!!!!

    --
    I call computer-illiteracy job security
    1. Re:Mini-disks only? by LostCluster · · Score: 2, Informative

      "Designed for a minidisc" really just means that they're intentionally limiting themselves to fit on the smaller disc. Of course, you can always decompress an ISO image to a larger disc than needed and have leftover space...

    2. Re:Mini-disks only? by Marnoot1 · · Score: 3, Funny

      Ah, if only I had mini disks to burn it to. Guess it'll have to go on my 2 cent full size ones instead. Such a waste, when I could put it on a 1 cent one! Wow, 8 comments and the site's already down. Are they running the server off one of these mini-cds?

    3. Re:Mini-disks only? by suwain_2 · · Score: 2, Informative

      Actually, it seems the other way around: I got a better deal on my full-size ones than I did on the mini CDs.

      --
      ________________________________________________
      suwain_2 :: quality slashdot p
    4. Re:Mini-disks only? by Anonymous Coward · · Score: 0

      most retarded use of "decompress" ever.

    5. Re:Mini-disks only? by Anonymous Coward · · Score: 0

      What is with the extreme push on mini-cds? Does anyone actually use them that much? I always found they were more expensive and less useful. It's not like a CD is that big. If you were going to give them out somewhere I could see it, but not in a situation like this.

    6. Re:Mini-disks only? by monique · · Score: 1

      Near as I can tell, mini disks are actually more expensive than full-sized ones.

      Blah.

      --
      -monique
    7. Re:Mini-disks only? by chadm1967 · · Score: 0

      The site seems to be running just fine from my end. Are you sure it isn't a problem with your hardware?

      We use this distro all the time at work. The L.A.S. group knows security.

    8. Re:Mini-disks only? by Anonymous Coward · · Score: 0

      It's a back-pocket thing - you wouldn't understand... Girls don't have pockets.

  2. PHLAK? by discogravy · · Score: 3, Interesting

    is this related to the PHLAK project?

    --
    FreeBSD for the impatient.
    1. Re:PHLAK? by Anonymous Coward · · Score: 0

      I was going to ask the same thing. I'm interested in how it compares to PHLAK!

    2. Re:PHLAK? by LostCluster · · Score: 4, Interesting

      I think the key difference is that this is a White Hat tool, while PHLAK is meant for people weariing Black Hats...

    3. Re:PHLAK? by andy666 · · Score: 1

      No but I think that it bears a close relationship with PHLEGM.

    4. Re:PHLAK? by Anonymous Coward · · Score: 0

      This project has been around a lot longer than Phlak. It was stared almost two years ago publically.

    5. Re:PHLAK? by Anonymous Coward · · Score: 0

      You're a retard. There are good guys and bad guys but they all use the same tools.

      More proof that slashdot people aren't smart enough nor interested in security issues.

      Dumbass

    6. Re:PHLAK? by TomTraynor · · Score: 1

      Don't know if Black hats use it, but, I did to fix a virus problem on a MS based machine. Picked out the problems and cleaned it up enough for us to do a backup. The site seems to be down when I checked yesterday.

      --
      Panic now, beat the rush!
    7. Re:PHLAK? by LostCluster · · Score: 1

      You're a retard. There are good guys and bad guys but they all use the same tools. True, which is why these two projects end up looking so similar. It's all a matter of presentation of those tools...

    8. Re:PHLAK? by schwaang · · Score: 1

      The Knoppix-STD logo is a black cat. Gee, "black cat" sounds just like "black hat"...

    9. Re:PHLAK? by mackermacker · · Score: 1

      I was wondering the same thing. This isnt related to PHLAK. I run PHLACK under vmware, but im not really too impressed with it, and think it has a long way to go. As far as blackhats use that, whitehats use this, etc, I'm not buying it. People will use whatever tool supports there needs the most. I will try this out, but when it comes down to it, a skilled person with just a few tools can probably do as much as someone with hundreds. Personally, if I could have 1 tool, it would probably be NETCAT.

    10. Re:PHLAK? by Glamdrlng · · Score: 1
      I think the key difference is that this is a White Hat tool, while PHLAK is meant for people weariing Black Hats...


      I disagree. The only "black hat tools" imo are rootkits and the like. Everything else, to and including password crackers and vulnerability scanners, is just as much an auditing tool as it is a cracking tool.

      Having used both distros, PHLAK has a little bit more style to it. I don't get the impresion that they made it for black hat uses, but wannabe blackhats may gravitate to it. You gotta admit, there's something to be said for tux wearing a kevlar. On the other hand, LAS goes so far as to publish exploit code on their site, so if you want to throw around the blackhat moniker it's not like they're angels. The LAS guys seem to update more often though, and the miniCD does add to the convenience factor.
      --

      Yes, my only tool is a hammer. And you're starting to look like a nail.
  3. Talk about security.... by Anonymous Coward · · Score: 5, Funny

    Their web server's so secure, I can't access it!!

    1. Re:Talk about security.... by Anonymous Coward · · Score: 0

      No it must be a terrorist plot to prevent us from viewing the tools what would protect us from their devious attack. The fiends! We must all set our browsers up to try the site every 5 seconds, so when they beat back the terrorist attack we all can get their tools as soon as possible! It chills me to the bone trying to think of what kind of attack could have brought their server down...

  4. Re:Obviously... by SphericalCrusher · · Score: 5, Insightful

    This is for the security of your network, not just that computer. WITH those tools, COMES the security -- even Windows has its share of security tools.

    I wonder how this will fare against Knoppix STD? Knoppix, as the world knows, is an awesome LiveCD distro of Linux that comes with an assortment of tools. This... just seems to come with a lot more. I guess it just matters about that user-friendliest though, as an Elite Linux user could boot up with Slackware CD 2, the LiveCD and do just as much or more. But yet, Slackware is as user friendly as a rabid wolf.

    --
    "Instant gratification takes too long." - Carrie Fisher
  5. Re:Nmap by qualico · · Score: 3, Insightful

    But Nmap is a MUST have tool you can not do without.

    Would you throw away your hammer because it can be used to illegally break into places?

  6. Re:Obviously... by willy134 · · Score: 3, Funny

    These CDS are great for network hacking^H^H^H^H^H^H^H security. You can scan for bad packets and find a problem node on the network.

    --
    Can you ping me now?... Good!
  7. I have used LAS... by Punk+Walrus · · Score: 5, Informative
    ... and I liked it. So did a coworker, who then stole it. There's irony in there somewhere...

    Some other good Security LiveCD distros are Knoppix STD and P.H.L.A.K. But I mainly use Knoppix (which also has kismet and nmap), and when I want speed, SLAX is very good.

    1. Re:I have used LAS... by Punk+Walrus · · Score: 2
      Oops, here's the P.H.L.A.K link:

      http://www.phlak.org/

      Seems to be down currently, tho...

    2. Re:I have used LAS... by The_Mystic_For_Real · · Score: 3, Interesting

      I have used Knoppix STD and PHLAK and have found Knoppix STD to be the superior system. PHLAK, if my memory serves, is actually based on Knoppix STD and it seems that the only thing they did was to strip off some of the things in STD that weren't security related and tack on a bunch of cracking programs and many cracking related tutorials. It might be nice to put on another box and test the security of your network.

      --

      _____

      Thank you.

    3. Re:I have used LAS... by Anonymous Coward · · Score: 0
      ...when I want speed, SLAX is very good.

      When I want throughput, Exlax is very good.
  8. Can it scan MS servers by rosewood · · Score: 1, Interesting

    Ive recently started administering more and more server 2003 environments and I feel the microsoft security auditing tool isn't that sexy and Id love an easy scan. Im too lazy to just look myself (oh the irony) so maybe someone here knows?

    I mean, nmap is always useful but I know my ports are solid so what else on there isn't *nix specific?

    --
    The ultimate network admin tool needs HELP!
    1. Re:Can it scan MS servers by Anonymous Coward · · Score: 0

      A lazy Windows Admin?
      There's a joke there somewhere, but it just seems to obvious!

  9. MOD PARENT UP by Cyno01 · · Score: 2, Informative
    Glad you brought that up, i was about to post a link, but their site seems to be down.

    busted link for future reference

    --
    "Sic Semper Tyrannosaurus Rex."
  10. Mirrors for Download by MontyP · · Score: 5, Informative
    Main Download Location (Miami, FL USA)

    HTTP Current 185MB Version | Current 210MB Version| Download Directory

    FTP Current 185MB Version | Current 210MB Version| Download Directory

    Please try to use a geographically closer mirror:

    http://chefax.fe.up.pt/mirrors/las/ -HTTP Portugal
    ftp://chefax.fe.up.pt/pub/mirrors/las/ -FTP Portugal

    http://ftp.lug.udel.edu/pub/iso-images/LAS -HTTP US Delaware
    ftp://ftp.lug.udel.edu/pub/iso-images/LAS -FTP US Delaware

    http://www.mednor.net/ftp/pub/mirrors/las/ -HTTP US California
    ftp://ftp.mednor.net/pub/mirrors/las/ -FTP US California

    Not all mirrors are up at this time. We remove mirrors periodically from the list that are not updated but re-add them once updated.
    We are currently seeking additional mirrors in Europe and Asia.

    MD5s

    L.A.S.0.5-185MB MD5:543fe2f42472f73cdba8378d9cb58579

    L.A.S. 0.5-210MB MD5: bc3a9ba8afcb99ff3e549b5d8d0b22a8
    --


    There is no .sig
    1. Re:Mirrors for Download by Anonymous Coward · · Score: 0

      http://ftp.lug.udel.edu/pub/iso-images/LAS -HTTP US Delaware
      ftp://ftp.lug.udel.edu/pub/iso-images/LA S -FTP US Delaware


      This is probably the closest most people will ever get to visiting Delaware
    2. Re:Mirrors for Download by Anonymous Coward · · Score: 0

      we want a torrent...

    3. Re:Mirrors for Download by deinol · · Score: 3, Insightful

      You'd think that someone clever enough to create a live linux CD would have heard of BitTorrent by now.

      Wake up people, releasing ISO's should be done through BitTorrent. Then, instead of /. making it impossible to download, it harnesses the power of /. to make it faster to download.

      --
      Got Apathy?
    4. Re:Mirrors for Download by nathanhart · · Score: 1, Informative

      http://onyx.chattanoogastate.edu:6970/

      --
      GeekLeak.com - Silly name, serious geeks
    5. Re:Mirrors for Download by doj8 · · Score: 2, Funny

      > You'd think that someone clever enough to create a live linux CD would have heard of BitTorrent by now.

      You'd think someone clever enough to point it out would realize that they already have a torrent link on their page. (Rather than just jumping to a conclusion and looking like a fool.)

      On their page: http://www.localareasecurity.com/index.php?option= content&task=view&id=9&Itemid=28

      Torrents - http://onyx.chattanoogastate.edu:6970/

      --
      -- Dan Jenkins, Rastech Inc.
  11. On bootup ... by Anonymous Coward · · Score: 5, Funny

    Linux operating system . . . . . . . [PASS]
    210mb download . . . . . . . . . . . [PASS]
    News posted on Slashdot . . . . . . [PASS]
    Insufficient mirrors . . . . . . . . [PASS]
    Setting new record for shortest slashdotting time . .

  12. "security" by Anonymous Coward · · Score: 2, Insightful

    Yeah, security all right. I'm sure 99% of the 14 year old skript kiddiez making and downloading these things are "security" minded.

    1. Re:"security" by sinkywinky · · Score: 0

      Don't worry, the script kiddies will give up when they can't find the haxx0r button.

    2. Re:"security" by Anonymous Coward · · Score: 2, Funny

      14 year old skript kiddiez: Where the fuck is the "Crack" button!
      Wait a minute...Where that fuck ARE the buttons!!?!?
      Linux SuX0rz! Where's the cursor!!?

    3. Re:"security" by Punk+Walrus · · Score: 5, Insightful
      Yeah, security all right. I'm sure 99% of the 14 year old skript kiddiez making and downloading these things are "security" minded.

      And thus, I want a copy. As others have joked, by the very definition of a "skript kiddie" (unskilled cracker dependent on the tools of others), something like this is way out of their league. But I assume you might have meant, "People who do illegal things to computers who could use such a convenient CD where all the free tools online are in one place."

      Well, they are going to do use it, whether it's wrong or not, and if LAS doesn't do it, someone else will (and has). And I want the same tools to test my firewalls and stuff to make SURE that it's hard to break into my network. Nothing will ever be hack-proof, but if you can make it hard for illegal entry, the crook will look elsewhere for something easier. And tools like these give me the same tools the crooks have, and the advantage I have is that I don't need time to "sniff" for anything to deduce which items to crack, since I already know what machines are senistive. I can just use an Ethereal capture pointed at an IP or MAC and see what it's sending out. Try and hack my own wireless connection with Kismet. And so on.

      It's all in intent, and how you use it. I use tools like thse to trace stray DHCP servers, look for illegal Kazaa use, or find out who's trying to hack my firewall.

      A prybar is not illegal. Forcing open a loose door on property you don't own or beating someone to death with it is illegal. But you don't see people banning prybars at Home Depot.

    4. Re:"security" by Zwack · · Score: 1

      A prybar is not illegal. Forcing open a loose door on property you don't own or beating someone to death with it is illegal. But you don't see people banning prybars at Home Depot.

      No, of course we shouldn't ban prybars. Prybars don't commit illegal acts, people with prybars commit illegal acts. We should ban people.

      This is of course the same argument that is used against Gun Control. Never mind that it would be harder for people to commit crimes using guns if they didn't have such ready access to those guns. However, while guns have far fewer legitimate uses, the legitimate uses of knives, prybars, and certain network security tools outweigh the illegitimate uses.

      Some of the laws enacted to protect people are so badly written as to be practically worthless. For example the UK has a law about the carrying of knives in public places that are over three inches long. There are exemptions for religious grounds (Sikhs have to carry a "sword") and because the "weapon" in question is a part of national dress (Scots can carry a Sgian Dubh while wearing a kilt). In practice this means that if you really wanted to carry a knife you can still do so with just a little effort.

      Z.

      P.S. The American habit of assuming that the Highland Games are an excuse to carry a sword (usually a basket hilted sword, or a claymore, but I've seen people carrying a Daito and I never knew that they were Scottish.) is just that... an American habit. You would never see a true Scot dressed like that unless they were taking part in a re-enactment of some kind.

      --
      -- Under/Overrated is meta-moderation, and therefore is Redundant.
  13. Re:Obviously... by Anonymous Coward · · Score: 0

    You have to wait forever for that mod point Anonymous Coward.

  14. Re:Obviously... by igrp · · Score: 2, Interesting
    I was wondering the same thing. The great thing about Knoppix STD, at least as far as I am concerned, is Knoppix's awesome auto-hardware recognition. I use a PDA with a WLAN CF card and carry a Knoppix STD CD that I use on the next available system to follow up on irregularities while doing network analysis.

    And Knoppix STD (security tools distribution, just to clear that up ;) works flawlessly on even the oldest and most exotic systems. I haven't personally used LAS Linux but the degree of flexibility Knoppix offers will be hard to match.

  15. glad to see.. by laurent420 · · Score: 3, Informative

    glad to see the las developers fixed the issue of usb mouses not working under x11 from 0.4. keep up the good work, guys.

  16. But I just read.. by noselasd · · Score: 2, Insightful

    Hmm.. pondering about how this releates to this

  17. BitTorrent by Quila · · Score: 0

    When I get home I'll download and see if I can set up a tracker and post a torrent somewhere.

    1. Re:BitTorrent by Quila · · Score: 1

      Whole, skim or low-fat?

  18. News??? by Gothmolly · · Score: 0

    This was in the Freshmeat slashbox yesterday. wtf?

    --
    I want to delete my account but Slashdot doesn't allow it.
  19. Set up a torrent? by suwain_2 · · Score: 2, Interesting

    I'm only about 10% down downloading from the UDel site, but I've noticed that my speed seems to keep dropping. I use BitTorrent often to download stuff, but I have no experience in creating a torrent. Can someone post a link on how to create a torrent? (Do I need a lot of initial bandwidth? I'm only on a cable modem.)

    --
    ________________________________________________
    suwain_2 :: quality slashdot p
    1. Re:Set up a torrent? by uthanda · · Score: 3, Informative

      http://www.dessent.net/btfaq/#maketorrent

    2. Re:Set up a torrent? by Long-EZ · · Score: 1

      If you're on a cable modem, you probably don't have a static IP address, which is a requirement to seed a BitTorrent.

      --
      >> My ultraviolent Linux switch video.
    3. Re:Set up a torrent? by 0x0d0a · · Score: 1

      I don't suppose BitTorrent supports the use of DNS rather than IPs?

      Some people have names with dynamic IP providers.

      --
      May we never see th
  20. slashdotted... by ebilhoax · · Score: 1

    I am currently only getting about 3k/s off of the closest geographical mirror to me. Will someone please make a torrent of this once you get it?

    1. Re:slashdotted... by HenryFjord · · Score: 1

      Try the mednor.net mirror, im getting around 450KB a sec off of it.

    2. Re:slashdotted... by Exstatica · · Score: 1

      Glad you and everyone in the world loves my mirror.. hahaha my server is being hammered hard! :)

    3. Re:slashdotted... by JackZ · · Score: 1

      Get your torrents here.

      Jack

  21. well worth bookmarking distrowatch by rapiddescent · · Score: 5, Informative
    it is well worth bookmarking distrowatch. Very good for news on all the latest distro's with information on all major distros including live cd's, usb keys, big cd's wee cd's and all of that. Has a useful weekly roundup of distro news.

    I wonder if people are becoming less distro-religous since most distros seem to work well. anyway, after reading distrowatch for a while you'll no doubt become a distro-tart and try all out 101 live cd's like L.A.S.

    rd

  22. Get your STD now by Mantorp · · Score: 1, Funny

    most are free, but you can get it when you pay as well. Depends on the vendor.

  23. Re:Nmap by Anonymous Coward · · Score: 0

    You're an idiot. The guy (fyodor) is a no-good cracker...

  24. Using it right now ... by kry10 · · Score: 3, Interesting

    How ironic - I was just using my 210MB version L.A.S Linux on a friend's computer and noticed this article. One thing I really like about L.A.S - integrated ClamAV. So, on someone elses computer that's totally hosed, I can boot off of L.A.S. and scan their hard drive for viruses. Plus, with the mini-CD size, it's easy to keep a copy in my glovebox/computer case/etc. for emergencies.

    No, it's not a replacement for Knoppix STD, but it's a nice complement.

    --
    "Son, you tried your best, and you failed miserably. The lesson is: Never Try ... " - Homer Simpson
  25. Re:I put Linux Live CD's on the computers at Best by ebilhoax · · Score: 5, Interesting
    People then complain that this Linux OS is slow

    I was going to reply to this with something witty since I work for Best Buy as an In-Store Technician, and use Linux LiveCDs on a daily basis...
    I have never had customers complain about the speed of it, but more about cool it is to run directly from CD and rescue their files.

  26. Re:Nmap by Anonymous Coward · · Score: 0

    The guy (fyodor) is a no-good cracker...
    and?
    how does that make what he wrote a bad thing, something that i should not use?

  27. The law and desireability by 0x0d0a · · Score: 4, Insightful

    I hope everybody knows that the creator of nmap is a criminal, and used his port scanner tool for illegal purposes.

    Uh, huh.

    When Phil Zimmerman released PGP, he underwent a three-year investigation by the FBI.

    I not care in the least what either Phil or Fyodor did (especially when Fyodor was tracking down a harasser). They produce excellent software, which is their only interaction with me.

    There is a lot of content on Slashdot that could be considered libel. If every person guilty of libel on Slashdot was ignored, we'd have an awfully quiet forum.

    --
    May we never see th
  28. Re:Nmap by Anonymous Coward · · Score: 0

    He may have written nmap, but he has never had sex.

  29. Re:Nmap by Boglin · · Score: 1
    He may have written nmap, but he has never had sex.
    • Fact: Isaac Newton never had sex.
    • Fact: 9/11 wouldn't have happened if we didn't have gravity.
    Conclusion: We must ban gravity.
  30. Re:Nmap by Zwack · · Score: 1

    Nice try, but wrong conclusion...

    Fact: 9/11 wouldn't have happened if we didn't have gravity.

    Fact: Gravity was discovered by Isaac Newton.

    Fact: Isaac Newton never had sex.

    Conclusion: We must ban virginity. (I can hear some people cheering that now.)

    Z.

    --
    -- Under/Overrated is meta-moderation, and therefore is Redundant.
  31. Re:Obviously... by hacker · · Score: 1
    I wonder how this will fare against Knoppix STD? Knoppix, as the world knows, is an awesome LiveCD distro of Linux that comes with an assortment of tools.

    If you haven't already downloaded and burned/mounted this, this IS KNOPPIX with some slightly different branding. It still boots up and says KNOPPIX all over it.

    Move along now, the Linuxcare BBC did more than this, and was much more integrated and tested.

  32. Minidisk by finkployd · · Score: 3, Insightful

    Great, this fits on a minidisk and is updated twice a month. What a PERFECT use for CDRW minidisks. Except I cannot find them anywhere. Does anyone make such a beast? Is there some technical reason why all the minidisks I can find are all CDR?

    Finkployd

    1. Re:Minidisk by dq5+studios · · Score: 1

      I use the ones (CD-RW Mini) at meritline.com for the Sony Mavica at work. I've had no problems with them yet.

    2. Re:Minidisk by Thomas+Shaddack · · Score: 2, Informative

      Beware: some CD drives refuse to read some brands of CD-RWs. I have a drive, some rebranded Phillips, that when fed with a Verbatim mini-CDRW just "dies" and requires hard reset. Does that with all the CDRWs from the batch. Of course the same drive works flawlessly with Verbatim mini-CD-Rs.

    3. Re:Minidisk by bearl · · Score: 1

      These at meritline look good. For those too lazy to type and search, here's a direct link to their mini CD-RW's.

  33. Official Torrent by Relaxus · · Score: 4, Informative

    There is now an official tracker:
    http://onyx.chattanoogastate.edu:6970/

    1. Re:Official Torrent by JackZ · · Score: 1

      I dont know how official it is but ebilhoax asked me (on irc) to set it up so I did.

      I was planning on leaving it up for a week or so.

      Jack

  34. Noteable Omissions by HenryKoren · · Score: 3, Insightful

    There are some programs I expected to be on this distro that aren't.

    Tethereal The X version "ethereal" is there, but I've always prefered the text based ethereal
    Etherape A cool visual traffic monitor.

    Other than that, LAS Linux is pretty cool!

    --
    To blog is sublime
  35. Re: it's my NEW, NEW!!! by Anonymous Coward · · Score: 0
    Mini-DVD = CD-R but small-sized Mini_CD-R-like, 700 MiB instead of 4.3 GiB.

    Micro-DVD = mini_CD-R but tiny-sized ring-like, aprox. 200 MiB instead of 700 MiB.

    open4free (c) seeing 'John mNemonic'

  36. Why BitTorrent? by ingenuus · · Score: 1

    I'm amazed BitTorrent receives so much attention compared to other existing decentralized protocols like ed2k or overnet which are more mature and require no special seeding to share.

    As more low bandwidth users become involved in BitTorrent (especially seeding), I suspect its propagation rate will deteriorate as well.

    Anybody have an explanation or comparison?

  37. Re:Nmap by Anonymous Coward · · Score: 0
    You're an idiot. The guy (fyodor) is a no-good cracker...

    Interesting point about nmap vs its author. I wonder... If Charles Manson somehow accidentally found a cure for cancer, who would choose to die rather than take it because he is an 'evil', convicted killer?

  38. Your story by Anonymous Coward · · Score: 0

    That was the stupidest fucking story I have ever heard. Security professionals my ass.

    1. Re:Your story by Anonymous Coward · · Score: 0

      Someone had their fill of HATER-AID today. . .