Linux Security

AmigaOne X1000 platform specific issues related to Linux only.
Post Reply
User avatar
xeno74
Posts: 9319
Joined: Fri Mar 23, 2012 7:58 am

Linux Security

Post by xeno74 »

Hi All,

This our security thread. :-)

First, encrypting drives in Linux with LUKS on Void PPC:

Image
Wikipedia wrote: The Linux Unified Key Setup (LUKS) is a disk encryption specification created by Clemens Fruhwirth in 2004 and was originally intended for Linux.

While most disk encryption software implements different, incompatible, and undocumented formats[citation needed], LUKS implements a platform-independent standard on-disk format for use in various tools.
LUKS is used to encrypt a block device. The contents of the encrypted device are arbitrary, and therefore any filesystem can be encrypted, including swap partitions. There is an unencrypted header at the beginning of an encrypted volume, which allows up to 8 (LUKS1) or 32 (LUKS2) encryption keys to be stored along with encryption parameters such as cipher type and key size.

The presence of this header is a major difference between LUKS and plain dm-crypt, since the header allows multiple different passphrases to be used, with the ability to change and remove them with ease. However, if the header is lost or corrupted, the device will no longer be decryptable.
Further information: Linux_Unified_Key_Setup -- wikipedia.org

Cheers,
Christian
http://www.amigalinux.org
http://www.supertuxkart-amiga.de

Running Linux on AmigaONEs can require some tinkering.
User avatar
xeno74
Posts: 9319
Joined: Fri Mar 23, 2012 7:58 am

Re: Linux Security

Post by xeno74 »

Hello all,

I have scanned the MATE PowerPC Remix 2017 0.9.1 and Void PPC 20230317 with Greenbone Security Scanner and with Legion.

The MATE PowerPC Remix has a poor result due to its age. (Severity: High - a lot of security problems)

Void PPC 20230317 has good results during the first tests. (Severity: Low)

Then I opened the Telnet port, installed an Apache web server and a Samba server.
The result was not as good as the first tests because of the open Telnet port and enabled Apache debugging methods. (Severity: Medium)

See screenshot for more information.

Image

Cheers,
Christian
http://www.amigalinux.org
http://www.supertuxkart-amiga.de

Running Linux on AmigaONEs can require some tinkering.
Post Reply