How to Install KeePassX on CentOS 7

 Linux, Security  Comments Off on How to Install KeePassX on CentOS 7
Sep 232018

KeepassxEven if you’re an Einstein, there’s no way you can remember all the user names and passwords for your Hotmail, Netflix, Gmail, multiple Bank accounts, Credit Card accounts, Dropbox and other sundry login details.

People without a password manager tend to write the user names and passwords on a piece of paper (not good because you can easily lose it) or, worse, use the same set of user names and passwords for multiple accounts (more dangerous because if one of your accounts is compromised the others will soon be too).

The biggest plus of a password manager is that you no longer have to remember multiple user names and passwords but just one master password that provides you with access to all the other user names and passwords.

If you’re not using a password manager, get one immediately. There are several password managers but a lot of them charge a monthly fee.

Since there are open source password managers of high quality, there’s no need to sign up for a fee-based service.

My personal favorite is KeePassX.

KeePassX Password Manager

KeePassX is a decent password manager for Linux and has been around for more than a decade.

I’ve used KeePassX on various flavors of Linux for a few years now and like that it’s free, local (i.e., not cloud-based), and comes with a secure password generator.

The latest version is KeePassX 2.0.2-1 on Ubuntu/Linux Mint repositories but the version for CentOS 7 or CentOS 6 is 0.4.4. The official KeePassX version is newer, 2.0.3.

Default security setting for the KeePassX database on version 0.4.4 of my CentOS 7 machine is AES (Rijndael) 256-bit encryption.

KeePassX has URL open (ctrl u) and auto-fill (ctrl v) capabilities but I must caution that once in a while the auto-fill does not work.

KeePassX also features Groups to let you keep all your user names and passwords for a certain category (say different e-mail accounts) into Groups. So you can have one group for E-mail, another for Entertainment (Netflix, Amazon Videos, etc.), a third for your bank and credit card accounts and so on.

Installing KeePassX

Installing KeePassX on CentOS 7 or CentOS 6 is a no-brainer.

[thomaspc@localhost ~]$ sudo yum install keepassx
[sudo] password for thomaspc: 
Loaded plugins: fastestmirror, langpacks, product-id, search-disabled-repos, subscription-manager
Loading mirror speeds from cached hostfile
epel/x86_64/metalink                                                                                                                                     |  14 kB  00:00:00     
 * base:
 * epel:
 * extras:
 * updates:
base                                                                                                                                                     | 3.6 kB  00:00:00     
epel                                                                                                                                                     | 3.2 kB  00:00:00     
extras                                                                                                                                                   | 3.4 kB  00:00:00     
updates                                                                                                                                                  | 3.4 kB  00:00:00     
(1/2): epel/x86_64/updateinfo                                                                                                                            | 944 kB  00:00:00     
(2/2): epel/x86_64/primary                                                                                                                               | 3.6 MB  00:00:00     
epel                                                                                                                                                                12686/12686
Resolving Dependencies
--> Running transaction check
---> Package keepassx.x86_64 0:0.4.4-1.el7 will be installed
--> Finished Dependency Resolution

Dependencies Resolved

 Package                                    Arch                                     Version                                       Repository                              Size
 keepassx                                   x86_64                                   0.4.4-1.el7                                   epel                                   807 k

Transaction Summary
Install  1 Package

Total download size: 807 k
Installed size: 2.8 M
Is this ok [y/d/N]: y
Downloading packages:
keepassx-0.4.4-1.el7.x86_64.rpm                                                                                                                          | 807 kB  00:00:00     
Running transaction check
Running transaction test
Transaction test succeeded
Running transaction
  Installing : keepassx-0.4.4-1.el7.x86_64                                                                                                                                  1/1 
  Verifying  : keepassx-0.4.4-1.el7.x86_64                                                                                                                                  1/1 

  keepassx.x86_64 0:0.4.4-1.el7                                                                                                                                                 

Advantages & Disadvantages

Since every individual has unique needs, it’s hard to speak for everyone.

In my case, I prefer a password manager that’s local. So KeePassX is a plus for me.

But others may want a cloud-based password manager that they can access from any device anywhere.

KeePassX will not please such people because it lacks a cloud version. But you can keep a copy of the encrypted KeePassX database on Dropbox or similar online storage service and access the KeePassX database that way.

Overall, I’ve found KeePassX to be a reliable Password Manager on my CentOS 7 and Linux Mint 18 systems.

You can read more about KeePassX on the password manager’s web site

 Posted by at 2:17 pm

Early Christmas for KeePassX Users – KeePassX 2.0 Out

 Products, Security  Comments Off on Early Christmas for KeePassX Users – KeePassX 2.0 Out
Dec 072015

KeepassxFolks, Christmas has arrived 18 days early for password manager KeePassX users.

After five years of development, version 2.0 of KeePassX has been released.

The previous stable version of KeePassX was 0.4.3, which was released way back in March 2010.

Clearing Confusion

Let’s first clear up lingering confusion.

In the minds of end users, there’s considerable confusion between the two major password management utilities. KeePassX and KeePass.

Here’s the key difference between the two utilities.

KeePass is primarily a password management utility developed for various versions of Windows although it can run on other platforms like Mac OS X and Linux via Mono.

Unofficial ports of KeePass for different platforms are also available.

KeePassX, on the other hand, was developed from the get-go as a cross-platform password management utility.

KeePassX (written in QT) was originally known as KeePass/L since it was a Linux port of Keepass Password Safe.

After the utility became cross-platform in 2006, the L was dropped and the name was changed to KeePassX.

New Features in KeePassX 2.0

KeePassX developers have highlighted various new features in version 2.0: Continue reading »

 Posted by at 9:59 am

Free Anti-Virus Software for Linux Systems

 Linux, Security  Comments Off on Free Anti-Virus Software for Linux Systems
Nov 272015

If you’re a Linux aficionado, bravo.

You’re obviously more knowledgeable about computers than the average user.

Linux – Risks Lurk

The good thing about Linux systems is that they’re less vulnerable compared to, say, Windows or any other operating system.

But don’t be fooled by all those fanboys who claim Linux is like Fort Knox, virtually impenetrable to the hackers.

Linux, like every other operating system, is prone to malware, viruses and all the other bad stuff.

Further, even if malware does not attack a Linux system directly they can still cause widespread harm if you run a Linux web server to which Windows, Mac, Android and other systems connect to.

So Linux server and desktop users would be well advised to be on the alert for malware.

Although Linux still has a small installed base at the consumer level, its growing usage is also prompting hackers to target this operating system.

Thankfully, for all ye scrooges there are a few free anti-virus Linux software.

Here are a couple of them.

1. Sophos offers anti-virus protection for Linux providing on-access and on-demand scanning.

Sophos supports popular Linux distributions including Red Hat Enterprise Linux (versions 4, 5, 6 and 7), CentOS (5.8+, 6.2+ and 7) and Ubuntu LTS Server Edition 12.04 / 14.04 (version 9.6.1+).

You can download the free Sophos anti-virus software for Linux from the company’s web site.

2. Clamav is another free anti-virus software for popular Linux distros like Red Hat, CentOS and Ubuntu.

Red Hat & CentOS

For Red Hat and CentOS distributions, make sure you have the EPEL repository enabled before trying to install Clamav.

$ sudo yum install clamav clamd

Continue reading »

 Posted by at 2:35 pm

Nmap Security Scanner gets Major Upgrade in Version 7

 Security  Comments Off on Nmap Security Scanner gets Major Upgrade in Version 7
Nov 192015

If you’re still running nmap 6.0, now’s the time to upgrade!

Open source security scanner nmap has received a big upgrade in version 7, which debuted November 19, 2015.

Touted as the product of three and a half years of work, nmap 7 includes nearly 3,200 code commits and enhancements that are part of over a dozen point releases since the big nmap 6 release in May 2012.

Nmap 7 – Highlights

Since nmap 6, developers of the free security scanner have added 171 new scripts and 20 libraries including firewall-bypass, supermicro-ipmi-conf, oracle-brute-stealth, and ssl-heartbleed.

The Nmap Scripting Engine (NSE) is now reportedly powerful enough that scripts can take on core functions such as host discovery (dns-ip6-arpa-scan), version scanning (ike-version, snmp-info, etc.) and RPC grinding (rpc-grind).

There’s even a proposal to implement port scanning in NSE.

Nmap 7 provides full IPv6 support for CIDR-style address ranges, Idle Scan, parallel reverse-DNS, and more NSE script coverage.

Faster scans is another highlight of nmap 7.

Version scan is supposedly quicker in nmap 7 because of 56 more softmatch lines that prevent nmap from sending irrelevant probes to certain services.

The ssl-enum-ciphers script has been entirely revamped in release 7 to perform fast analysis of TLS deployment problems, and version scanning probes have been tweaked to quickly detect the newest TLS handshake versions.

A favorite of systems and network administrators, nmap is used for network inventory, managing service upgrade schedules, monitoring host or service uptime and other tasks.

The cross-platform nmap uses raw IP packets to determine what hosts are available on the network, what services (application name and version) those hosts are offering, what operating systems (and OS versions) they are running, what type of packet filters/firewalls are in use, and dozens of other characteristics.

Designed for rapid scan of large networks, nmap works well for single hosts too.

 Posted by at 11:03 pm

Tails 1.6 Out

 Linux, Security  Comments Off on Tails 1.6 Out
Sep 282015

The developers of Tails have put out version 1.6 of the privacy oriented Linux distribution.

Tails 1.6 is primarily a security fix for the several vulnerabilities found in the previous version (1.5.1).

The Tails’ team is asking users to immediately upgrade to version 1.6.

Tails 1.6 – Changes

The Tor Browser has been upgraded to version 5.0.3 (based on Firefox 38.3.0 ESR) in Tails 1.6. Continue reading »

 Posted by at 8:35 pm

Kali Linux 2.0 Upgrade is Out

 Security  Comments Off on Kali Linux 2.0 Upgrade is Out
Aug 112015

Fall on your knees and kiss the earth in gratitude.

Folks, Kali Linux 2.0 has just been released.

In case you’ve just arrived from Mars or Uranus, Kali is the mother of Linux penetrating distributions.

So what’s new in Kali 2.0?

A lot of goodies in there, a lot! So continue reading!

Kali Linux 2.0 Upgrade is Out

New Features in Kali Linux 2.0

Continue reading »