Ttgjyuk

Why is this clock signal connected to a capacitor to gnd?

What type of content (depth/breadth) is expected for a short presentation for Asst Professor interview in the UK?

Mathematica command that allows it to read my intentions

Extract rows of a table, that include less than x NULLs

Assassin's bullet with mercury

What reasons are there for a Capitalist to oppose a 100% inheritance tax?

Expand and Contract

Am I breaking OOP practice with this architecture?

How can saying a song's name be a copyright violation?

How do conventional missiles fly?

How badly should I try to prevent a user from XSSing themselves?

How do I handle a potential work/personal life conflict as the manager of one of my friends?

Why no variance term in Bayesian logistic regression?

Are there any examples of a variable being normally distributed that is *not* due to the Central Limit Theorem?

What are some good books on Machine Learning and AI like Krugman, Wells and Graddy's "Essentials of Economics"

Is "remove commented out code" correct English?

What is the idiomatic way to say "clothing fits"?

Why is consensus so controversial in Britain?

How much of data wrangling is a data scientist's job?

Should I tell management that I intend to leave due to bad software development practices?

Plagiarism or not?

Which is the best way to check return result?

Im going to France and my passport expires June 19th

Why can't we play rap on piano?

How to prevent someone from logging in into Ubuntu without knowing the password?

I can not password protect logging into my accountHow do I log into the forum?Is the lock screen secure?Personal computer hacked: How do I block this user from logging in again? How do I find out how they are logging in?Prevent logging in without password“Remote host identification has changed” on server preventing SSHing inPrevent Ubuntu from asking passwordProblem logging into ubuntu 18.04Weird problem with Ubuntu 18.04 following changing boot order in BIOSPrevent Ubuntu from leaking information to the internet upon login

0

I just had my browser tabs changed when I just logged in today, it was Incognito so I can't tell if I can go back to it, but I'm very confused as to how can someone logged in to my computer without knowing the password. I had many incidents where when I logged in, something has changed even though I'm pretty sure no one can tell the password. I need help as to prevent someone from logging in physically, because right now, I can't prevent it by moving to a different place because of my circumstances.

18.04 login security login-screen privacy

share|improve this question

asked 1 hour ago

GodfreyGodfrey

95

• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  Well, there's fingerprint scanners you can buy online and set that up for logging in, although can't suggest a resource on that topic. Check also last and lastb logs, check /var/log/auth.log, it may show timestamps and attempts to log in, so if you find nothing between the times you weren't at the machine - there's two possibilities, altered logs or it's not a person who logged into computer, but maybe you have automatic process that cleans up users directory and removed Chrome cache/configs.
  
  – Sergiy Kolodyazhnyy
  1 hour ago
  

  
  
  
  


• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  Question, how can one alter the logs? All I see in clearing up logs is that you delete the whole thing, not delete a few things. Also I did not set up Chrome cache clean ups, there were times that when I logged in, nothing has changed there.
  
  – Godfrey
  1 hour ago
  
  

  
  
  
  


• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  Well, logs are just a text file ( in some cases - binary files, but mostly text). So if they have access to your account and you're sudo user - it's just as simple as invoking a text editor with sudo and deleting couple lines, or even sed or other tool.
  
  – Sergiy Kolodyazhnyy
  1 hour ago
  

  
  
  
  


• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  How do I prevent that? Also is there any way I can tell if the logs where altered? Like some sort of command that tells me if something has changed?
  
  – Godfrey
  1 hour ago
  

  
  
  
  


• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  Technically, yes, you could look at the modification time reported by stat /var/log/auth.log for example. But if you logged in with sudo after the file was changed, your record will be added and modification timestamp will refer to the time you signed in with sudo. So, really depends and one has to proceed carefully
  
  – Sergiy Kolodyazhnyy
  1 hour ago
  

  
  
  
  

 | 
show 3 more comments

0

I just had my browser tabs changed when I just logged in today, it was Incognito so I can't tell if I can go back to it, but I'm very confused as to how can someone logged in to my computer without knowing the password. I had many incidents where when I logged in, something has changed even though I'm pretty sure no one can tell the password. I need help as to prevent someone from logging in physically, because right now, I can't prevent it by moving to a different place because of my circumstances.

18.04 login security login-screen privacy

share|improve this question

asked 1 hour ago

GodfreyGodfrey

95

• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  Well, there's fingerprint scanners you can buy online and set that up for logging in, although can't suggest a resource on that topic. Check also last and lastb logs, check /var/log/auth.log, it may show timestamps and attempts to log in, so if you find nothing between the times you weren't at the machine - there's two possibilities, altered logs or it's not a person who logged into computer, but maybe you have automatic process that cleans up users directory and removed Chrome cache/configs.
  
  – Sergiy Kolodyazhnyy
  1 hour ago
  

  
  
  
  


• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  Question, how can one alter the logs? All I see in clearing up logs is that you delete the whole thing, not delete a few things. Also I did not set up Chrome cache clean ups, there were times that when I logged in, nothing has changed there.
  
  – Godfrey
  1 hour ago
  
  

  
  
  
  


• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  Well, logs are just a text file ( in some cases - binary files, but mostly text). So if they have access to your account and you're sudo user - it's just as simple as invoking a text editor with sudo and deleting couple lines, or even sed or other tool.
  
  – Sergiy Kolodyazhnyy
  1 hour ago
  

  
  
  
  


• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  How do I prevent that? Also is there any way I can tell if the logs where altered? Like some sort of command that tells me if something has changed?
  
  – Godfrey
  1 hour ago
  

  
  
  
  


• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  Technically, yes, you could look at the modification time reported by stat /var/log/auth.log for example. But if you logged in with sudo after the file was changed, your record will be added and modification timestamp will refer to the time you signed in with sudo. So, really depends and one has to proceed carefully
  
  – Sergiy Kolodyazhnyy
  1 hour ago
  

  
  
  
  

 | 
show 3 more comments

I just had my browser tabs changed when I just logged in today, it was Incognito so I can't tell if I can go back to it, but I'm very confused as to how can someone logged in to my computer without knowing the password. I had many incidents where when I logged in, something has changed even though I'm pretty sure no one can tell the password. I need help as to prevent someone from logging in physically, because right now, I can't prevent it by moving to a different place because of my circumstances.

18.04 login security login-screen privacy

share|improve this question

asked 1 hour ago

GodfreyGodfrey

95

share|improve this question

asked 1 hour ago

GodfreyGodfrey

95

share|improve this question

asked 1 hour ago

GodfreyGodfrey

95

asked 1 hour ago

GodfreyGodfrey

95

asked 1 hour ago

GodfreyGodfrey

95

1 Answer
1

active

oldest

votes

0

Are you sure that you at install time you did not tick the box to allow login without password?

If so, no wonder others can login without a password.

Otherwise, someone else still can login to your machine without a password, using a live USB and then read/tamper watever files that s/he wishes.

But if you are sure that your browser history has been change, so very probably the intruder does in fact KNOW your password or the login does not require a password. So either change your password or go change the settings to requre password for login.

But please notice that if:

1. The physical access to your unintended hard disk is possible


2. Your hard disk is not encrypted

your data can not be 100% secure.

An unintended, unencrypted disk is an easy target for anyone with a minimum linux knowledge and a live USB.

share|improve this answer

edited 20 mins ago

answered 27 mins ago

MilkywayMilkyway

112

add a comment | 

Your Answer

StackExchange.ready(function()
var channelOptions =
tags: "".split(" "),
id: "89"
;
initTagRenderer("".split(" "), "".split(" "), channelOptions);

StackExchange.using("externalEditor", function()
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled)
StackExchange.using("snippets", function()
createEditor();
);

else
createEditor();

);

function createEditor()
StackExchange.prepareEditor(
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: true,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: 10,
bindNavPrevention: true,
postfix: "",
imageUploader:
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
,
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
);



);

draft saved

draft discarded

Sign up or log in

StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);

Sign up using Google

Sign up using Facebook

Sign up using Email and Password

Post as a guest

Name

Email

Required, but never shown

StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2faskubuntu.com%2fquestions%2f1131038%2fhow-to-prevent-someone-from-logging-in-into-ubuntu-without-knowing-the-password%23new-answer', 'question_page');

);

Post as a guest

Name

Email

Required, but never shown

0

Are you sure that you at install time you did not tick the box to allow login without password?

If so, no wonder others can login without a password.

Otherwise, someone else still can login to your machine without a password, using a live USB and then read/tamper watever files that s/he wishes.

But if you are sure that your browser history has been change, so very probably the intruder does in fact KNOW your password or the login does not require a password. So either change your password or go change the settings to requre password for login.

But please notice that if:

1. The physical access to your unintended hard disk is possible


2. Your hard disk is not encrypted

your data can not be 100% secure.

An unintended, unencrypted disk is an easy target for anyone with a minimum linux knowledge and a live USB.

share|improve this answer

edited 20 mins ago

answered 27 mins ago

MilkywayMilkyway

112

add a comment | 

0

Are you sure that you at install time you did not tick the box to allow login without password?

If so, no wonder others can login without a password.

Otherwise, someone else still can login to your machine without a password, using a live USB and then read/tamper watever files that s/he wishes.

But if you are sure that your browser history has been change, so very probably the intruder does in fact KNOW your password or the login does not require a password. So either change your password or go change the settings to requre password for login.

But please notice that if:

1. The physical access to your unintended hard disk is possible


2. Your hard disk is not encrypted

your data can not be 100% secure.

An unintended, unencrypted disk is an easy target for anyone with a minimum linux knowledge and a live USB.

share|improve this answer

edited 20 mins ago

answered 27 mins ago

MilkywayMilkyway

112

add a comment | 

Are you sure that you at install time you did not tick the box to allow login without password?

If so, no wonder others can login without a password.

Otherwise, someone else still can login to your machine without a password, using a live USB and then read/tamper watever files that s/he wishes.

But if you are sure that your browser history has been change, so very probably the intruder does in fact KNOW your password or the login does not require a password. So either change your password or go change the settings to requre password for login.

But please notice that if:

1. The physical access to your unintended hard disk is possible


2. Your hard disk is not encrypted

your data can not be 100% secure.

An unintended, unencrypted disk is an easy target for anyone with a minimum linux knowledge and a live USB.

share|improve this answer

edited 20 mins ago

answered 27 mins ago

MilkywayMilkyway

112

share|improve this answer

edited 20 mins ago

answered 27 mins ago

MilkywayMilkyway

112

answered 27 mins ago

MilkywayMilkyway

112

answered 27 mins ago

MilkywayMilkyway

112