I recently wiped my NVMe drive on my Lenovo laptop and installed the latest version of Ubuntu, but I'm encountering a frustrating problem. Whenever I try to use the terminal, a new terminal window instantly pops up, making it difficult to do anything. Here's the backstory: I've been dealing with ongoing unauthorized access to my devices, possibly from someone I know who's an IT admin. I've reported this to the FBI over various issues, including disabled USB ports and suspicious files that I can't delete despite having admin access. After some frustrating experiences, I decided to switch to Linux. I've successfully installed Ubuntu by flashing it onto a USB stick and verified the ISO. Now, I need help understanding some BIOS settings and how to ensure my laptop is secure. My current BIOS settings show conflicting information about Secure Boot, and I'm not sure what else to adjust. Here are my questions: 1. Why does the terminal keep reopening in Ubuntu? 2. What BIOS settings should I disable to make my system more secure? 3. Could this IT person still access my system after wiping the drive? 4. What initial steps should I take to secure my system and start learning ethical hacking and cybersecurity?
2 Answers
It sounds like you might be dealing with some leftover configurations or malware from before the wipe, even if you wiped the drive. When a terminal opens unexpectedly, it could be due to a misconfigured startup script or an application trying to launch. I recommend checking your startup applications in Ubuntu to see if anything strange is set to appear at startup. As for the BIOS, it's crucial to keep things like PXE boot disabled unless you need it for specific purposes. Anything pointing to remote management tools should be disabled to prevent unauthorized access. Honestly, do a fresh install of Ubuntu without any additional software first to rule out issues, then start securing your system before you dive deeper into learning.
From what you've described, it sounds like that admin might still have some sort of backdoor or remote access. After wiping, if you took all necessary steps (like disconnecting from the internet and ensuring nothing was reinstalled) you should be safer, but continuing to harden your system is essential. Start with disabling things like IPV4 PXE and check your network settings to ensure no remote connections can be initiated. For learning ethical hacking, consider setting up a separate machine or virtual environment where you can experiment safely without risking your main device.
Great tips! I'd also suggest getting involved in online courses or communities focused on ethical hacking; they can be very helpful for practical advice.
Definitely check those startup applications! I've seen similar issues before. Also, make sure Secure Boot is actually disabled if you can access that setting. It's better to be cautious.