| |
| |
| |
|
Page: 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57
Comments:
<0> WEP is inherently insecure, not to mention a pain in the ***, tho
<1> FarrisG: so that way we have convenience, no overhead, and no joe schmoe
<0> WPA with RADIUS auth!
<2> Stevie: Well, ultimately, WEP is a tiny bit more secure than NO wep
<3> wpasuppository is even more of a PITA...
<0> this is true
<4> For network-management, I did not want to setup each MAC/IP pair in iptables and in dhcp3-config every time, so I wrote a script creating the host bla{..} entries and a iptables.sh script ...
<1> Stevie: think "guests from partner companies"
<5> what to use in console
<5> to list installed soft and delte part of it
<6> anyone ever hosted a domain bought from godaddy.com?
<0> nope
<2> Stevie: How is WPA/radius any less of a pain in the *** than WEP?
<2> dusty-: I do
<4> Stevie, dondelelcaro, is there a way for dhcp3d to take part of the configuration from another config?
<3> FarrisG: it's even more annoying, becuase WPA doesn't work on all hardware.
<0> well, I'm sure if you add RADIUS it's pretty nasty
<7> using WEP is kinda like putting "the club" on your car. its not going to stop someone who really wants in, but it will likely make a casual p***erby to move along to an easier target
<0> just plain WPA, when it's supported, is nice
<0> stew: aye
<4> Stevie, dondelelcaro, I have found the "extensions-path" option in the manpage of the config, but it seems not to work
<0> extensions-path?
<3> ludwig: yes; use include "foo/bar/baz"
<1> stew: exactly and for our purposes, it's fine. we're not gonna make every visitor install/configure additional software just so he/she can check mail when on our site :-)
<2> Speaking of throttling, I'm currently using some embar***ing hackery to do so on the wifi subnet. Any ideas on how to throttle bandwidth for non-vpned wireless users, but not through the VPN?
<3> or at least, that's what the manpage says...
<1> stew: that would be going a bit far
<8> Has anyone here had a run-in with _elf_lib ?
<3> FarrisG: you should be able to tag the traffic to the VPN gateway, and then use tc to stick it in a better queue.
<0> host foo { hardware ethernet fe:ed:c0:ed:ba:be; fixed-address 192.168.0.10; }
<4> dondelelcaro, OK, at least it does not complain :) Now I will have a try ...
<3> FarrisG: the lartc has some good examples on iptables<->tc interaction iirc.
<0> anyway.... Is there an rsync server anywhere for the nightly netinst cd images?
<3> Stevie: there should be
<8> Does anyone know how they get _elf_lib on the box? I can't tell if it was proftp, apache or cvs but I think it was one of them.
<4> dondelelcaro, it works, thanks
<0> okay, I don't know how to find out what it is
<4> dondelelcaro, it works, thanks
<5> wtf?
<0> ftw!
<5> noone knows what can I use in console to browse installed packages? and remove some of them?
<0> aptitude
<8> aptitude
<5> thanks
<9> who's noone?
<0> apparently I am
<0> either that or Pendragon is
<5> d0uglas: that is the person that got you laid
<5> ;)
<8> lol I am someone
<9> zing
<0> dondelelcaro: How would I find such an rsync server?
<10> symantical accuracy != intelligence :/
<0> semantical accuracy
<9> heh symantical
<8> hey Stevie, have you ever heard of the _elf_lib exploit
<4> bye!
<6> FarrisG, dude mshs
<0> Does it involves Santa Claus?
<0> or Tolkien, or WoW, or Nethack?
<5> Pendragon: wtf is it
<3> Stevie: rsync -l cdimage.debian.org::cdimage-testing/
<8> It was our ***
<11> Ok, what the hell, how do I use ntpdate?
<8> a hole in woody's kernel that gives root access to anyone who runs it
<8> in 2.4 kernel
<11> I've tried it with a dozen servers and it complained about all of them.
<5> Pendragon: ommfg
<5> Pendragon: url?
<2> dusty-: mshs?
<8> someone used cvs, ftp or apache and got it on our box and compromise one of our boxes
<0> hrm
<0> there is only beta1 there
<8> I was wondering if anyone here has ever had a run in with it and has any ideas how the hell someone would use cvs to get a file on our box, and then run it
<5> Pendragon: where is the url regarding that exploit?
<0> wait, what's etch_d-i ?
<8> one sec on the url, I am remoted to a winbox for mirc, i was browsing the url on another box
<8> brb
<5> thanks
<3> Stevie: that should be the daily
<0> oh, I see, 'daily' is a symlink
<3> Stevie: it's possible that the rsync server doesn't quite do what it should, in which case, you'd need to har*** someone to make it available
<12> anyone wanting a good deal on dual xeon procs?
<8> http://www.webhostingtalk.com/archive/thread/361482-1.html
<0> dondelelcaro: Well, I'm using rsync -n to find the file in question
<0> and there's only
<12> 2x2.4ghz Xeon 533mhz FSB procs for $185 shipped at Anandtech
<1> Pendragon: when you set up cvs, you're effectively giving access to (parts of) your filesystem
<12> I'd get them myself if I had the extra cash
<1> Pendragon: was it a chroot'd cvs pserver?
<3> b0xy: please don't advertise for hardware here...
<0> and there's only daily/i386/beta1/
<0> except, shouldn't we be in beta 2?
<12> dondelelcaro: I was just saying it's a great deal for anyone that has the extra cash
<13> how can I configure a touchpad that it issues a mouse click when i tip it shortly?
<14> I need help with an initial install of linux. My distro is debian sarge. Whenever I boot I get the informational message: Error while initializing the sound driver:
<14> device /dev/dsp can't be opened (No such device)
<12> I wand them but can't afford
<14> The sound server will continue, using the null output device.
<3> amee2k: depends on the touchpad.
<15> eeyore- i've tried the using the linux 2.6 kernel but it still doesn't detect it
<1> b0xy: why would i want a xeon processor?
<9> amee2k: i like pads that do that
<3> b0xy: right, and I'm saying that it's kind of OT here; we can all use pricewatch.com
<8> I was just corrected by a co-worker, it couldn't have been cvs
<1> WildTuRkey: nevermind "detection", load it yourself
<8> it wsa either apache or ftp
<12> eeyore-: some people like them
<13> dondelelcaro:: it's a dell laptop. FC4 used synaptics (so similiarily sounding) driver and it worked fine there
<15> how do i do that??
<12> dondelelcaro: these are a better deal than on pricewatch. just tryin to spread it so someone could get a good deal on them if they wanted
<7> amee2k: possibly "/msg dpkg synaptics" if its a synaptics touchpad
<1> WildTuRkey: there should be a menu item to let you load drivers ....
<8> anyhow it is an exploit that corrupts memory
<1> Pendragon: was your apache running as www-data or root?
<1> Pendragon: and your ftp, was it wuftpd? :-)
<8> I am really worried about it, I am a newbie at foriegnsics, and we have a few boxes out there with the 2.4 kernel
<8> no it ws proftp
<15> u know what the driver is called??
<8> www-data
<8> it doesn't have to run as root to get root
<3> Pendragon: which 2.4 kernel?
<8> woody
<13> k, i'll try what the dpkg has
<8> with 2.4 for i386, I think I am saying that right
<16> Hi everyone.. I installed Debian-ETCH but I seem to be pulling really old packages.. I think my sources.list is no good.. How can I get some better package repos?
<8> not sure
<3> Pendragon: woody shipped with a couple different ones; which one exactly was being run?
<1> Pendragon: are you sure they got in via http? kind of unlikely, unless they take some unusual URL exploits
<3> Pendragon: also, you should image the drives, take the machine down, and bring it back up with a known good install.
<8> oh we are
<8> 2.4.27
<17> amee2k: maybe xfree86-driver-synaptics
<3> duckdown: use the paster bot to give us the output of apt-cache policy; also, you've run apt-get update; apt-get upgrade; right?
<1> Pendragon: unless of course you have some exploitable scripts in there ... maybe some php ... that might do it, but pure apache/http ...
<8> I know,
<16> dondelelcaro: I've done apt-get update, i dont know about upgrade though.. sure i'll paste it somewhere one sec
<13> mox:: i just installed it but no effect,even after reconfiguring X. do i need to enable it?
<3> duckdown: just update is needed...
<17> amee2k: what are you using? xorg or xfree?
<8> elf is the name of some file in c that controls memory with the kernel, _elf_lib found an exploit in that control of the memory and is able to corrupt it and have it grant root to whoever is running it.
<13> xfree86. I installed the selection "Desktop Environment"
<16> dondelelcaro: Not sure how to use paster bot, here is the pastebin http://pastebin.ca/43064
<18> duckdown: how did you get out of my duvet?P!
<18> -P
<17> amee2k: new install of sarge?
<8> That's what I've firgured out about it so far. I think I got all of that about right, there isn't much out there in google that I can find about it.
<19> /quit
<18> akant wait
<16> blondie: :D
<18> :D
Return to
#debian
or
Go to some related
logs:
banshee playing mp4a
xorg.conf trident 9750
susefirewall2 sled
xbuntu screensaver
#openzaurus
#xorg
#linux
sbcl cl-opengl
ueagle-usb mirrors
python setDaemon segmentation fault
|
|