| |
| |
| |
|
Page: 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26
Comments:
<0> hmm
<1> I hope to get $150 for a 1.1GHz/256MB/unknown HD right now with Fedora. if they want XP Home, $250 for it. a better deal than the computer store for a 600MHz
<2> yea
<0> daMaestro: what would i use to block users from ssh if they enter the p***word wrong 3 times
<3> mrrcparish, denyhosts
<3> mrrcparish, yum install denyhosts
<1> so that's my logic in putting linux, but offering windows at an additional cost, so we stay 100% legal
<4> stevo9999: check your spelling/syntax
<3> I use it in production.
<3> I like it.
<0> so it will block them from everything
<3> it needs to be tuned.. and you need to add yourself to the hosts.allow (if you also connect in remotely)
<0> ?
<3> mrrcparish, you set that.
<0> sweet
<3> mrrcparish, it watches for failed login attempts.. then you tell it what you want blocked.
<3> mrrcparish, i personally block everything :-) ALL :-)
<2> cubey: sell win for a lot more than that
<3> mrrcparish, the config file is /etc/denyhosts.conf
<2> put them right off :D
<0> thx
<2> well, off windows...
<0> uhm
<1> Tinned_Tuna: can get it cheaply off ebay, and i'm allocating about $10-$15 for the "labor" of installing it.
<0> so if i want to add vsftp in there damaestro
<3> ??
<2> heh :)
<0> nm
<3> you want to block ppl after they fail to login via ftp?
<0> yep and ssh
<3> ssh it will do
<3> let me see what it does about ftp
<0> k thankx
<3> sounds like you want to change BLOCK_SERVICE = ALL
<3> for one.
<3> look around in the config.. it is really easy
<0> lets say they try to login via shh on my system and failed.. if i had it to all would it block access to the httpd as well?
<3> correct
<3> ALL will add a block to tcpwrapper.. and that will block them from any service.
<0> hmm
<3> it is possible that the denyhosts package only denies for failed ssh logins
<3> not sure if it will 'see' failed ftp logins
<5> denyhosts - denyhosts is a Python script that analyzes the sshd server log messages to determine which hosts are attempting to hack into your system. It also determines what user accounts are being targeted. It keeps track of the frequency of attempts from each host and, upon discovering a repeated attack host, updates the /etc/hosts.deny file to prevent future break-in attempts from that host. Email reports can be sent to a system
<5> admin.
<6> pam_abl
<3> ahhh
<3> yes.
<3> pam_abl
<2> :'(
<2> i just tried setting my hotmail p***wd to penis
<3> that is the other one that you can use.. it will just ensure they can not login... but it wont block them out. (although it should be able to be configured to block out)
<2> it told me my p***wd wasn't long enough. :(
<3> LOL
<5> pam_abl = auto blacklist
<5> they will always be allowed to "attempt" but guaranteed to fail regardless of correct username/p***word
<5> you could blacklist whole netblocks
<3> right. i also read that is it possible to configure pam_abl to deny also.. but i never got that running.
<0> hmm
<3> *the deny*
<0> da im havin probs
<0> http://rafb.net/paste/results/DSj5r866.html
<3> you need to configure how to send the email
<3> or turn of email notifications
<7> xenix, which is how some message boards fool the trolls. the trolls think they can still post (login), but only THEY see 'em
<7> afterall, don't want to deny the troll, he might have a l33t D0S botnet, yo
<8> where can I learn about fundamental UNIX principles? Unix Haters Handbook is amusing but doesn't teach you very much
<7> ram_einstein, http://www.cs.usfca.edu/~parrt/course/601/lectures/unix.util.html
<8> eg. what _is_ a file, what's a device and the like... not command-line commands
<8> thanks zcat
<3> stevo9999, well you have the new kernel running now
<8> zcat: that's almost exactly what I wanted
<8> thanks again
<9> does the yum configuration offered at fedorafaq.org also work for fc5t2?
<1> well thanks for the help :) bye for now
<8> yeti: why not? and don't get it from there
<8> get it from the official repo sites
<8> fedorafaq.org is useless
<9> but as i understand it, the configs from the official repo sites won't give me the ability to install nvidia binary drivers, lame, and all that sort of stuff?
<8> yeti: why not? as long as you get the right repos, it's fine
<8> get livna, freshrpms and ivazquez in addition to base and extras
<8> they should work perfectly
<9> ah... okay. thanks.
<8> fedorafaq doesn't do anything but list these things; it is sometimes outdated
<10> dont mix them.
<8> yeti: ^^ disable them by default. Enable them with a --enablerepo
<8> when you need to use them
<11> although freshrpms n dag work together well
<8> even after years of devel, I don't understand why there have to be conflicts
<5> livna and dag work well together too
<0> hmm
<0> daMaestro: u around still
<11> xenix dag and freshrpms are intentionally linked... livna is NOT
<10> xenix : they dont. conflicts.
<11> hey livna spelled backwards is anvil! lmao
<8> livna doesn't work well with anything
<11> livna is old fedora.us isnt it?
<10> ram_einstein : it works well with core and extras.
<5> i have always used livna and dag .. as well as allt he default fedora repos
<10> f_newton : it's not.
<8> f_newton: I hadn't noticed earlier, but now, yeah, lol
<5> never had a single problem
<8> Anvil: ah yes, apart from those I mean
<8> Anvil: how so? are you one of the maintainers of livna or something? maybe just coincidence
<7> Anvil, I've mixed all the repos 'cept ATRPMS since day one and have only ran into minor conflicts twice: once with VLC, and once with something I can't remember... (but I uninstalled it to shut it up).
<3> mrrcparish, sorta
<7> Good track record IMO
<3> lol.. hacking the joomla api today.
<7> And this with an "Everything" install.
<11> I use livna exclusively except for stock repos of course
<8> zcat: consider yourself lucky
<10> zcat : the conflict of the moment is ffmpeg.
<8> f_newton: same here. Otherwise it's just core and extras
<11> yeah
<10> zcat : which is kind of a core piece of the multimedia stuff.
<11> and for what I use the box for thats just fine
<3> i also have good luck with mixing repos.. but i have lost many machines when i didn't know what I was doing.
<7> Anvil, yeah, transcode was the other conflict, I believe
<8> ffmpeg is _important_
<3> as long as you don't 'update' to anything but base and livan
<3> livna*
<3> it works well.
<3> i don't use at however.. almost another distro it is :-P
<0> hmm
<9> is fc5t2 up on some mirrors already? torrent's kinda slow today...
<7> yep. still can't install transcode.
<10> yeti : test2 has been released for some weeks.
<9> Anvil: seems i'm too stupid to find it on the mirrors though
<9> where would i have to look for it?
<10> yeti : on the mirror page ? -_-
<8> yeti: I'm surprised torrents are slow
<8> they're usually the best way to obtain such large isos
<10> yeti : google fedora mirror
<12> sorry to ask this but i have a very slow machine i am working with right now running fedora...can you tell me what the kernel header package would be for a machine running 2.6.11-1.1369_FC4 kernel? The machine is slow slow yum package search will take hours!
<7> ram_einstein, some ppl are firewalled and throttled (comcast!)
<7> hikenboot, kernel-devel
<12> thanks zcat you just saved me about 4 hours
<12> the machine isnt half bad after installing the vmware tools which makes it faster and easier to manupulate but before i get to that point..oh what a pain it is!
<11> I used to be throttled on a regular basis..... then my gf left
<11> sigh
<11> hmmm
<11> I wonder if it was the machine or the connection
<11> probably both
<8> question: Is it possible to modify a file by first cat'ing it and then piping the output to tr and then redirecting tr's output back into the same file? It isn't. Why not?
<7> ram_einstein, use a tempfile.
<13> damn I'm friggin sick of gentoo... compile compile... takes so long... I'm installing fedora
<8> zcat: that's possible. But what if I _want_ to modify the file in-place?
<7> ram_einstein, then use perl
<8> zcat: can't you explain why the process I described doesn't work?
<7> ram_einstein, e.g.: cat foo.txt | tr 'a-z' 'A-Z' > foo.tmp && mv foo.txt foo.txt.old && mv foo.tmp foo.txt
<7> ram_einstein, you can't overwrite the stream you're reading from
Return to
#fedora
or
Go to some related
logs:
install SQLite Cannot find autoconf. Please check your autoconf installation and
DBDesigner error 121
splash+kinitrd
#linux
repeats grub
#php
#sql
apt-get dependtry process_queue
ldapsearch: ldap_search_ext: Bad search filter (-7)
css text-justify text-wrap
|
|