A blog about my exploits with the Cr-48 Chrome Notebook
A local high school was getting rid of those machines that had previously belonged to graduating seniors who had chosen not to buy them outright at the end of the year. I had never had much of a chance to play around in ChromeOS until now, so I was excited to get my hands dirty.
Even with Developer Mode activated more on that to come , it boots up in a manner of seconds. It has a pair of USB ports one 2. All-in-all, not a bad little machine. So, like any good offensive security professional with a new toy, the first question I had to ask is whether or not I could turn it into a decent pentesting rig. There are certainly some privacy issues to consider if you plan to use a Chromebook for all of your pentesting needs.
My purpose is really to get as much useful information as possible into one, easy-to-find location. Developer Mode The first step in building your new Chromebook pentesting box is to enable Developer Mode. Note: This will factory reset your machine. While your Chromebook is on, hold Escape and Refresh and then press the power button to enter Recovery Mode. Tap Control-D when you see the Recovery Mode screen. You will be presented with a new screen.
Press enter to confirm, and wait for the Chromebook to reboot. Press Control-D, or simply wait 30 seconds. As this is not dual-booting, switching between Chrome OS and Ubuntu is simple and speedy. No reboots are required which is really convenient. Also, there are nice keyboard shortcuts for switching between the two which makes the whole thing incredibly convenient.
Follow these steps to get Crouton and then Ubuntu up and running: 1 Download it from the page linked above or just click this link. The crouton binary should end up in your Downloads folder. You can choose to add a -n flag to name your chroot which is useful should you choose to install more than one. The -t flag is used to specify the options that you would like to include in your build.
For a complete list of available targets, enter the following command prior to installation. Not everything is officially supported, so keep that in mind when making your choices and expect some bugs here or there with those options that are starred in the list.
Use -r to select a release and -t for any options. If you are stuck with the defaults, substitute accordingly ie: startxfce4 instead of what you see below. These are not the arrow keys but rather the arrows taking the place of the traditional F1 and F2 keys. If you would prefer to run your chroot in a Window, use the xiwi target. You may have better luck. Again, this has all been said before, but my goal is to get it all into a single location. The following steps assume you have installed Ubuntu I have done this on The installation is a multi-step process and is the step that is most likely to cause hiccups down the line.
Run these commands to download the latest version of rvm, change your bashrc file to account for it, and then install Ruby 2.
In macOS Server 5. As the former systems administrator of a large number of mail servers, I firmly believe that there is a special kind of hell where only spam is served at every meal for spammers.
Here, the evil spammers must also read every piece of spam ever sent for eternity. By the end aka Ragnarok , they should have the chemically induced stamina of a 16 year old with the latest Sports Illustrated Swimsuit issue, enough pills of other types to not be able to use that stamina, plenty of African princes looking to donate large sums of money if only they can be helped out of their country which should cost about , compared to a 5,, payout, not a bad ROI, right?!?!?
All in all, a special kind of hell… But back to the point of the article, setting up mail. The things that mail administrators need to focus on to keep that mail server flowing mail to and from everyone else in the world: Static IP address.
Port Forwards. Port forwards need to be configured on the gateway for the SMTP port at a minimum and more than likely other ports used to access mail on client devices 25, , etc DNS records.
An MX record and some kind of mail. There should also be reverse records for the address of the server, usually created by the Internet Services Provider, or ISP, that match that record.
Check the RBLs. Mail filtration message hygiene. However, this is often not enough. Third party services such as MXLogic help to keep mail from coming into your network. At the configuration screen is a sparse number of settings: Edit Permissions: Limits the IP addresses capable of connecting to the server.
Domains: Configures all of the domains the mail server will listen for mail for. Each account on the server has a short name and each domain name will be available for each short name.
For example, an account with a shortname of charles will be available for email addresses of charles pretendco. Authentication: Click Edit for a list of sources that accounts can authenticate against e. Active Directory, Open Directory, Custom, Local, etc and in some cases the specific password algorithms used for mail. Relay outgoing mail through ISP: Provide a server that all mail will get routed through from the server. For example, this might be an account with your Internet Services Provider ISP , an account on an appliance that you own such as a Barracuda or with an external filtering service such as MXLogic.
Mailbox size: Configure the total amount of mail a user can have in the mail store, in Megabytes. Edit Filtering Settings: Configure antivirus, spam assassin and junk mail filters. At this point, you should be able to telnet into port 25 of the host to verify that SMTP is listening, preferably from another mail server: telnet mail.
By default, message size limits are enabled. But the open source project previously used, roundcube, is still available for download and easily installed the pre-reqs are all there, already.
Check out the roundcube wiki installation page here for more info on that. Also, mail groups. I hope to have a post about that soon enough. Unless, of course, I get sidetracked with having a life. Which is arguably not very likely… Share:.
How to install Linux on a Chromebook (and why you should)
Welcome to crosh, the Chrome OS developer shell. If you got here by mistake, don't panic! Just close this tab and carry on. Type 'help' for a list of commands. Installing is fairly simple. On the github page referenced above, there will be a goo. Click to download that to your Downloads folder. Crouton will allows you to chose many different Linux environments some supported, some not.
How to Play RuneScape on Your Chromebook (Complete Tutorial) – Updated for 2021
You can also run full X stacks on virtual terminals if that is what is needed. I'm focusing on having a clean development environment, so I'll leave research into other details on crouton up to the reader. Works quite well. Follow the instructions on the link. You will see a stylized C in the extension section of your chrome browsers. Verifying Crouton Extension Assuming that Crouton is working and the extension is present. You should be able to do the follow and get an xterm in a window again at a crosh tab.
These windows can be used in the same way as other chrome windows.
40 Handy Chrome OS Commands to Run in Crosh
You can also start full screen with startxiwi -F xterm and then use the fullscreen key to toggle. They prepackage deb files, so you can take the following steps to install Atom. About Browse Local Files on Your Cr There has been a lot of buzz around the internet about the Cr and one of its major weaknesses, the inability to browse the file structure on your SSD.
The content Browser is similarly restricted. This means that the only way to navigate your disk is by using the shell. SWFUpload manages to get access to the entire file structure and let you browse your whole device. Here you can see the SD card in the content browser. However, at this point, clicking it does nothing Today I spent some time trying to figure out how I could deal with this problem.
BUT, a symbolic link might achieve the same result. Now the view inside my Content Browser looked like this Navigating through the media link that I now had in my Downloads folder I was able to access my SD card. So you can browse your content, and clicking on images opens them in the browser window for preview.