Chrismeister 2017-02-01 22:45:29
Hello, I have a basic question. Can a USB-device be "infected" in the sense that some harmful code is automatically run when plugged in?
Chrismeister 2017-02-01 22:45:38
For debian that is
jpw 2017-02-01 22:46:47
Chrismeister: Yes. A USB device could be storage, it could also emulate anything else for example a keyboard
Chrismeister 2017-02-01 22:47:25
jpw: okey, thank you.
joze 2017-02-01 22:48:01
there was the so called BadUSB attack that resides in the USB controller IC
Chrismeister 2017-02-01 23:03:38
But say for example that a friends hands me over a USB-drive to give me a file. I trust my friend but not his surfing habits (running executable files from the internet). Should I be cautious about inserting the USB?
Chrismeister 2017-02-01 23:05:00
Or am I just paranoid?
blastradius 2017-02-01 23:05:36
Hi all. I'm not sure if I'm asking this on the right channel but is anyone else unable to drag and drop on Debian Jessie? I'm using Nemo but have the same problem with Nautilus, I can cut and paste but if I drag to a folder it doesn't highlight it or move it across. Same problem when trying to drag a URL tab from the bar to bookmarks inFirefox etc
jelly 2017-02-01 23:07:46
Chrismeister: it's a matter of estimating risk. Is your friend likely to have an engineered usb device that looks like storage at one point, but then sneakily switches to input (keyboard) or network card?
pragomer_1 2017-02-01 23:09:50
how to best install virtualbox under stretch? via deb-file from vbox-site? cause theres no package in the debian9-repo
Chrismeister 2017-02-01 23:09:59
jelly: No, that is very unlikely - I guess I thought that maybe a virus could do that. I'm just paranoid then. ;)
jim 2017-02-01 23:10:50
, v virtualbox
judd 2017-02-01 23:10:51
Package: virtualbox on amd64 -- wheezy-security: 4.1.42-dfsg-1+deb7u1; wheezy: 4.1.42-dfsg-1+deb7u1; wheezy-backports/contrib: 4.3.36-dfsg-1+deb8u1~bpo70+1; jessie-security/contrib: 4.3.36-dfsg-1+deb8u1; jessie/contrib: 4.3.36-dfsg-1+deb8u1; jessie-backports/contrib: 5.1.8-dfsg-6~bpo8+2; sid/contrib: 5.1.14-dfsg-1
jelly 2017-02-01 23:11:44
Chrismeister: a usb-storage device on its own won't do much on debian. This isn't windows 98 with autorun.inf
jim 2017-02-01 23:11:52
hmm, doesn't look like it's in stretch
erchache2000 2017-02-01 23:11:58
I would like to make a visual map of my dhcpd.conf
erchache2000 2017-02-01 23:12:10
how I can do it?
NoxiousPloK 2017-02-01 23:12:20
screenshot?
NoxiousPloK 2017-02-01 23:12:32
:+
jpw 2017-02-01 23:12:43
Chrismeister: to my knowledge no desktop environment in linux has the functionality to automatically execurte code from a connected device which would be a pre-requisite for any such attack vector without any hardware mods
jim 2017-02-01 23:13:40
erchache2000, html5 has svg... or you could do it in the dot language of ibm's graphviz
erchache2000 2017-02-01 23:13:56
jim: any script?
Chrismeister 2017-02-01 23:17:35
jelly jpw: okey, thank you for the response
jim 2017-02-01 23:18:53
erchache2000, a google search for the terms "linux script to make a visual map of dhcpd.conf" doesn't seem to have any interesting results
erchache2000 2017-02-01 23:19:19
jim: i know, i tried this before and for this i'm asking now here :(
jpw 2017-02-01 23:20:17
erchache2000: what are you attempting to visualise? network configuration? branch logic?...
erchache2000 2017-02-01 23:20:31
network map
erchache2000 2017-02-01 23:20:39
subnets
jim 2017-02-01 23:20:45
erchache2000 what would be included on this map?
erchache2000 2017-02-01 23:20:52
hosts only
erchache2000 2017-02-01 23:21:01
organized by subnets
jpw 2017-02-01 23:21:34
are you using any routing protocols? aquiring this information from your network directly would be of more value I think.
erchache2000 2017-02-01 23:22:27
i only want a visual map of dhcp info, to see holes on ip asignation
jim 2017-02-01 23:22:40
theree's this... https://gist.github.com/mattpascoe/4039747
jim 2017-02-01 23:23:03
I'm pretty sure that's pretty far afield of what you want,,,
erchache2000 2017-02-01 23:23:22
uhm
erchache2000 2017-02-01 23:23:25
thanks for info
jim 2017-02-01 23:24:06
maybe that script divides the hosts into subnets or something like that...
jpw 2017-02-01 23:25:10
erchache2000: try this - grep -E ^lease cat /var/lib/dhcp/dhcpd.leases | cut -d ' ' -f 2 | uniq | sort -n
jpw 2017-02-01 23:25:30
this will show all active leases
jpw 2017-02-01 23:26:34
grep -E ^lease /var/lib/dhcp/dhcpd.leases | cut -d ' ' -f 2 | uniq | sort -n
erchache2000 2017-02-01 23:28:15
I use macs to filter hosts i dont put autodiscover
erchache2000 2017-02-01 23:28:25
jim: jpw:
erchache2000 2017-02-01 23:38:56
jim: jpw: i dont use autoasign dhcp with lease
erchache2000 2017-02-01 23:39:12
i have a static ip asign by MAC on my dhcpd.conf
erchache2000 2017-02-01 23:39:26
but i want to sort, display all hosts to see holes graphically
jim 2017-02-01 23:41:51
why not have a list of the hosts you want in the dhcpd.conf, and build a script that generates the dhcpd.conf from it, and also generates a diagram
