Re: [gentoo-user] Re: SSH brute force attacks and blacklist.py
On Wednesday 27 February 2008, Remy Blank wrote: Steve wrote: I'm one of the (many) people who has opportunists trying usernames and passwords against SSH... while every effort has been made to secure this service by configuration; strong passwords; no root login remotely etc. I would still prefer to block sites using obvious dictionary attacks against me. The best advice I can give is to use public key authentication only. This will defend against all dictionary-based attacks, which is what you describe. The only remaining problem is that your log files will be filled with unsuccessful login attempts. A simple solution is to run sshd on a non-standard, high-numbered port, e.g. in the 30'000. Bots only ever try to connect on port 22. This will *not* improve the protection of your server, but it will avoid having your logs spammed. Agreed. For me, changing the port SSH listens on alone eliminated 99% of brute force attempts. I also agree on public key authentication. Depending on the OP's needs and context), he might also be interested in portknocking (no flames please :-)). -- gentoo-user@lists.gentoo.org mailing list
Re: [gentoo-user] System locale charset is ANSI_X3.4-1968
On Thursday 28 February 2008, Richard Marzan wrote: $ echo $LC_ALL - $LANG give - C I don't have an /etc/env.d/02locale file. I don't know the syntax of this file. I will need a sample...I'll goog-it. Maybe this can help: http://www.gentoo.org/doc/en/guide-localization.xml -- gentoo-user@lists.gentoo.org mailing list
Re: [gentoo-user] Re: SSH brute force attacks and blacklist.py
Thanks for all your suggestions... I will look into fail2ban... that might be what I need... While I could crank BLOCKING_PERIOD for blacklist.py to an absurdly high value, this (AFAIK) will not persist blocks when the server is powered down or rebooted. I need to retain port 22 and can't easily do port-knocking - since some of the clients I require to connect to my server are in restrictive environments. I've another idea too... I'm happy to entirely cut off all services from any IP that attempts to brute-force SSH passwords... as it is an unequivocal act of aggression that would not arise with any legitimate clients... Another aside is that in some restrictive environments it is hard to securely obtain my private key without first obtaining a secure off-site connection. For this reason, I prefer to have the facility to log in using username/password - my compromise is to make my password extremely complex... plus using a non-obvious user-id, which again hampers attackers. While interesting, I don't think the connection rate limiter is for me... I may want to legitimately make rapid connections at some time or other. :-) -- gentoo-user@lists.gentoo.org mailing list
[gentoo-user] adding python module
Hi, Can anyone tell me how to add a python module to python, or give me a url telling me how? THANKS GAVIN -- gentoo-user@lists.gentoo.org mailing list
[gentoo-user] Re: Digest of gentoo-user@lists.gentoo.org issue 1419 (76128-76177)
Por las nuevas políticas de calidad ISO 9001 que la empresa está implementando, todos los temas relacionados con soporte técnico deben ser realizadas al correo electrónico [EMAIL PROTECTED] Muchas gracias y disculpe las molestías. Automáticamente este email será reenvio a [EMAIL PROTECTED] -- gentoo-user@lists.gentoo.org mailing list
[gentoo-user] Grub hangs when a USB disk is attached
I had no problem booting since last time I partitoned my USB external disk. == Disk /dev/sdc: 80.0 GB, 80026361856 bytes 255 heads, 63 sectors/track, 9729 cylinders Units = cylinders of 16065 * 512 = 8225280 bytes Disk identifier: 0x Device Boot Start End Blocks Id System /dev/sdc1 1243319543041 83 Linux /dev/sdc22434486619543072+ 83 Linux /dev/sdc34867729919543072+ 83 Linux /dev/sdc47300972919518975 83 Linux === When I boot and the disk is plugged, right after BIOS screen I get a GRUB_ and the boot process hangs. I guessed it was a BIOS problem so I tried to edit boot order and also to disable USB boot (that I don't need). BTW when the disk is unplugged grub loads perfectly. Thanks in advance. signature.asc Description: This is a digitally signed message part
Re: [gentoo-user] Emacs and info dir -- SOLVED?
On Tue, Feb 26, 2008 at 10:46:59PM +, Graham Murray wrote: [EMAIL PROTECTED] writes: Two things wrong with that. First, I have eselect'ed emacs-23, yet I still see what I believe to be emacs-21 info (I have been looking at the macro help in particular; maybe there is a better way of finding the info version). Second, eselect only shows the emacs-22 and emacs-23 options, which presumably correspond to the two subdirs of the same name, but I still have the three year old .gz info files which are probably the emacs-21 files, and which is what info finds. I know that this is not much help to you, but it works for me. I am currently running emacs-23. If, in a normal user bash session I type 'info emacs' it tells me it is for version 23.0.50. I then changed to emacs-22 using eslect in a root session. Back in the original user session I then typed 'source /etc/profile' (to pick up the changes made by eslect) then ran 'info emacs' and it indicated it was for version 22.1. This is, I believe, the expected behaviour. I had not thought that env vars were at work, so that might have been a problem if I ever got that far, but I was always getting emacs-21 info regardless. So I moved all the old emacs-21 info files into a subdir where they can't be found by mistake, rebooted for other reasons, and now get emacs-23 info. I think those old stale files were the visible problem hiding what would have been a new problem. -- ... _._. ._ ._. . _._. ._. ___ .__ ._. . .__. ._ .. ._. Felix Finch: scarecrow repairman rocket surgeon / [EMAIL PROTECTED] GPG = E987 4493 C860 246C 3B1E 6477 7838 76E9 182E 8151 ITAR license #4933 I've found a solution to Fermat's Last Theorem but I see I've run out of room o -- gentoo-user@lists.gentoo.org mailing list
Re: [gentoo-user] Re: SSH brute force attacks and blacklist.py
On Thu, Feb 28, 2008 at 11:13:10AM +, Penguin Lover Steve squawked: Thanks for all your suggestions... I will look into fail2ban... that might be what I need... While I could crank BLOCKING_PERIOD for blacklist.py to an absurdly high value, this (AFAIK) will not persist blocks when the server is powered down or rebooted. Hum, that is interesting. I haven't played with blacklist.py, but if it runs on top of iptables, the iptables init script *should* save the current config when powering down. I sort of depended on that when I cobbled together a perl script 2 years ago to parse the sshd log and ban sites using iptables. Also, I would not suggest banning forever. I started with the same mentality as you and coded as such. I switched quickly to banning for 1 hour when once, due to not noticing the caps-lock light, I banned my work computer completely... After switching to the 1 hour ban, I did a small experiment and saved about 2 months worth of logs. Not a single ip address has been banned more than once (but there were several /24 in Korea, Taiwan, and Mexico that have many ip addresses banned). Based on this, I don't think it is strictly necessary to ban forever. Just my 2 cents. W -- Santa's helpers are subordinate clauses. Sortir en Pantoufles: up 447 days, 14:37 -- gentoo-user@lists.gentoo.org mailing list
Re: [gentoo-user] Re: SSH brute force attacks and blacklist.py
On Wed, Feb 27, 2008 at 10:39:15PM +0100, Penguin Lover Anno v. Heimburg squawked: It limits the number of new connections on each port in INPUT_LIMITER_TCPPORTS from any individual host to INPUT_LIMITER_COUNT within INPUT_LIMITER_TIME. My experience suggests that finding the right INPUT_LIMITER_TIME would be difficult. From my experience (by reading the logs after I cobbled together a patch work solution to blacklist hosts), the typical behaviour of a sshd bruteforce attack, after you start dropping packets from it, is that it will begin to add a geometrically increasing sleep time between attempts and continue for about 30 minutes to an hour. So if your time parameter is on the order of several seconds, the attack will be like try, try, try, doh! connection timed out, wait a bit, try again, doh! still timed out, wait a bit longer, hey it works now, try, try , doh! time out again rinse and repeat. But if you set the time parameter to minutes or tens of minutes, then you risk banning yourself if you need multiple instances of ssh. (Yes, screen is nice, but sometimes I like to keep two terminals open. And there's always the case of saving work, quitting, logging out; doh! forgot to do something, log back in again scenario.) W -- When a clock is hungry it goes back four seconds. Sortir en Pantoufles: up 447 days, 14:54 -- gentoo-user@lists.gentoo.org mailing list
[gentoo-user] Grub hangs when a USB disk is attached
I had no problem booting since last time I partitoned my USB external disk. == Disk /dev/sdc: 80.0 GB, 80026361856 bytes 255 heads, 63 sectors/track, 9729 cylinders Units = cylinders of 16065 * 512 = 8225280 bytes Disk identifier: 0x Device Boot Start End Blocks Id System /dev/sdc1 1243319543041 83 Linux /dev/sdc22434486619543072+ 83 Linux /dev/sdc34867729919543072+ 83 Linux /dev/sdc47300972919518975 83 Linux === When I boot and the disk is plugged, right after BIOS screen I get a GRUB_ and the boot process hangs. I guessed it was a BIOS problem so I tried to edit boot order and also to disable USB boot (that I don't need). BTW when the disk is unplugged grub loads perfectly. Thanks in advance. -- Momesso Andrea -BEGIN PGP SIGNATURE- Version: GnuPG v2.0.7 (GNU/Linux) iD8DBQBHxsyXTusdC+HYtiIRAgM/AKC/hksdT1s0FVrrQP8erkKvS3WvwACgw+jV BqnY2+QyuVUfHM55I5iuvIk= =Owxp -END PGP SIGNATURE-
Re: [gentoo-user] Grub hangs when a USB disk is attached
I've had problems with disk presentation order changing (fairly randomly) when USB disks are attached during boot. Apparently there's a race between the SCSI controller and the USB controller(s). If you attach the USB disk later the SCSI stuff has all been discovered so of course it gets allocated later in the list, but if it's attached while booting the USB disk might come first or in the middle somewhere. This might lead to grub looking for its files in the wrong place, which might explain the hang. If you want to test this theory, boot from a CD while the USB is installed and see where it winds up in /dev, then boot without it. Be very careful about assuming drive identities! That's how I lost my system disk last time -- /dev/sdb seemed to be partitioned funny and I figured it out just a little too late. On 2/28/08, andrea [EMAIL PROTECTED] wrote: I had no problem booting since last time I partitoned my USB external disk. == Disk /dev/sdc: 80.0 GB, 80026361856 bytes 255 heads, 63 sectors/track, 9729 cylinders Units = cylinders of 16065 * 512 = 8225280 bytes Disk identifier: 0x Device Boot Start End Blocks Id System /dev/sdc1 1243319543041 83 Linux /dev/sdc22434486619543072+ 83 Linux /dev/sdc34867729919543072+ 83 Linux /dev/sdc47300972919518975 83 Linux === When I boot and the disk is plugged, right after BIOS screen I get a GRUB_ and the boot process hangs. I guessed it was a BIOS problem so I tried to edit boot order and also to disable USB boot (that I don't need). BTW when the disk is unplugged grub loads perfectly. Thanks in advance. -- gentoo-user@lists.gentoo.org mailing list
Re: [gentoo-user] Grub hangs when a USB disk is attached
I've had problems with disk presentation order changing (fairly randomly) when USB disks are attached during boot. Apparently there's a race between the SCSI controller and the USB controller(s). If you attach the USB disk later the SCSI stuff has all been discovered so of course it gets allocated later in the list, but if it's attached while booting the USB disk might come first or in the middle somewhere. This might lead to grub looking for its files in the wrong place, which might explain the hang. If you want to test this theory, boot from a CD while the USB is installed and see where it winds up in /dev, then boot without it. Be very careful about assuming drive identities! That's how I lost my system disk last time -- /dev/sdb seemed to be partitioned funny and I figured it out just a little too late. On 2/28/08, andrea [EMAIL PROTECTED] wrote: I had no problem booting since last time I partitoned my USB external disk. == Disk /dev/sdc: 80.0 GB, 80026361856 bytes 255 heads, 63 sectors/track, 9729 cylinders Units = cylinders of 16065 * 512 = 8225280 bytes Disk identifier: 0x Device Boot Start End Blocks Id System /dev/sdc1 1243319543041 83 Linux /dev/sdc22434486619543072+ 83 Linux /dev/sdc34867729919543072+ 83 Linux /dev/sdc47300972919518975 83 Linux === When I boot and the disk is plugged, right after BIOS screen I get a GRUB_ and the boot process hangs. I guessed it was a BIOS problem so I tried to edit boot order and also to disable USB boot (that I don't need). BTW when the disk is unplugged grub loads perfectly. Thanks in advance. -- gentoo-user@lists.gentoo.org mailing list
Re: [gentoo-user] Grub hangs when a USB disk is attached
On gio, 2008-02-28 at 12:54 -0500, Don Jerman wrote: I've had problems with disk presentation order changing (fairly randomly) when USB disks are attached during boot. Apparently there's a race between the SCSI controller and the USB controller(s). If you attach the USB disk later the SCSI stuff has all been discovered so of course it gets allocated later in the list, but if it's attached while booting the USB disk might come first or in the middle somewhere. This might lead to grub looking for its files in the wrong place, which might explain the hang. This is exactly what happens here. If you want to test this theory, boot from a CD while the USB is installed and see where it winds up in /dev, then boot without it. Be very careful about assuming drive identities! That's how I lost my system disk last time -- /dev/sdb seemed to be partitioned funny and I figured it out just a little too late. I booted in a livecd and opened a grub command line. It reads my usb disk as (hd0,0). By the way I don't like this behavior and I need a solution to fix it. It is a laptop and I don't want to umount and unplug my usb disk every time I need to hibernate my system. signature.asc Description: This is a digitally signed message part
Re: [gentoo-user] Grub hangs when a USB disk is attached
Hi, never tried that and might only be a temporary workaround. You could install grub in the mbr of both disk and then point them only to your internal disk. That way you should always be able to boot, shouldn't you? kh andrea wrote: On gio, 2008-02-28 at 12:54 -0500, Don Jerman wrote: I've had problems with disk presentation order changing (fairly randomly) when USB disks are attached during boot. Apparently there's a race between the SCSI controller and the USB controller(s). If you attach the USB disk later the SCSI stuff has all been discovered so of course it gets allocated later in the list, but if it's attached while booting the USB disk might come first or in the middle somewhere. This might lead to grub looking for its files in the wrong place, which might explain the hang. This is exactly what happens here. If you want to test this theory, boot from a CD while the USB is installed and see where it winds up in /dev, then boot without it. Be very careful about assuming drive identities! That's how I lost my system disk last time -- /dev/sdb seemed to be partitioned funny and I figured it out just a little too late. I booted in a livecd and opened a grub command line. It reads my usb disk as (hd0,0). By the way I don't like this behavior and I need a solution to fix it. It is a laptop and I don't want to umount and unplug my usb disk every time I need to hibernate my system. -- gentoo-user@lists.gentoo.org mailing list
Re: [gentoo-user] Grub hangs when a USB disk is attached
On gio, 2008-02-28 at 19:23 +0100, KH wrote: Hi, never tried that and might only be a temporary workaround. You could install grub in the mbr of both disk and then point them only to your internal disk. That way you should always be able to boot, shouldn't you? kh ┌─([EMAIL PROTECTED]:pts/4)(~)─┐ └─(19:29:#)── grub-install /dev/sdd ──(gio,feb28)─┘ /dev/sdd does not have any corresponding BIOS drive. mmmh... what does it mean? signature.asc Description: This is a digitally signed message part
Re: [gentoo-user] problem with kernel and net-wireless/linux-wlan-ng
Fei Liu wrote: Hello, Group, I am trying to install and use NetGear MA111 usb wireless network. I followed the instructions here: http://gentoo-wiki.com/HOWTO_Prism2_USB_on_Gentoo http://gentoo-wiki.com/HOWTO_Prism2_USB_on_Gentoo But I get errors when I try to install the kernel module. linux-wlan-ng-0.2.8 # modprobe prism2_usb prism2_doreset=1 WARNING: Error inserting p80211 (/lib/modules/2.6.19-gentoo-r5/linux- wlan-ng/p80211.ko): Invalid module format FATAL: Error inserting prism2_usb (/lib/modules/2.6.19-gentoo-r5/linux- wlan-ng/prism2_usb.ko): Invalid module format My system is built with gentoo 2007.0 livecd for i386 system. Here is uname -a Linux map 2.6.19-gentoo-r5 #1 SMP Wed Apr 4 05:44:43 UTC 2007 i686 Celeron (Mendocino) GenuineIntel GNU/Linux Initially, my /usr/src/linux - linux-2.6.19-gentoo-r5, and it's not configured or compiled, so I don't have .config or include/linux/ version.h files that linux-wlan-ng-0.2.8 looks for. I created a simple config (has wireless support, usb support), compiled it but never installed it. So I have .config and include/ linux/version.h files. linux-wlan-ng could compile but the result kernel modules cannot be installed unless forced: modprobe -f prism2_usb prism2_doreset=1 Segmentation fault map # lsmod Module Size Used by prism2_usb 60755 1 p80211 24844 1 prism2_usb This causes the kernel to panic when I do 'reboot' but everything else seems fine. How could I go about solving this problem. I had no problem installing this card and the softwares on a Fedora core 8 release. In this case, it seems like some wierd kernel config problem causing errors when I insert modules. Is there a way to get the config file used to create the stock kernel in 2007.0 gentoo livecd? Thanks, Fei Ah it tends out the kernel vermagic must match. I copied /proc/config.gz and applied it to kernel source. problem solved. Fei -- gentoo-user@lists.gentoo.org mailing list
[gentoo-user] sshfs issue
I'm running sshfs very often and I've noticed the following issue: whenever the hub/swich(what ever is that keeping my lan together) suddenly stops working while I'm using sshfs my computer crashes, or if I;m lucky enough I get to do an umount before everything falls. Is there any way to prevent this? Also since this is a lan is there a null encryption algorithm I could use to speed things up a bit? Or lower the CPU usage? Thanks! -- gentoo-user@lists.gentoo.org mailing list
Re: [gentoo-user] sshfs issue
On Thursday 28 February 2008 04:19:22 pm ionut cucu wrote: I'm running sshfs very often and I've noticed the following issue: whenever the hub/swich(what ever is that keeping my lan together) suddenly stops working while I'm using sshfs my computer crashes, or if I;m lucky enough I get to do an umount before everything falls. Is there any way to prevent this? Also since this is a lan is there a null encryption algorithm I could use to speed things up a bit? Or lower the CPU usage? Thanks! Dude... time for a new switch... -- From the Desk of: Jerome D. McBride -- gentoo-user@lists.gentoo.org mailing list
Re: [gentoo-user] sshfs issue
On Thu, 28 Feb 2008 16:51:59 -0500 Jerry McBride [EMAIL PROTECTED] wrote: On Thursday 28 February 2008 04:19:22 pm ionut cucu wrote: I'm running sshfs very often and I've noticed the following issue: whenever the hub/swich(what ever is that keeping my lan together) suddenly stops working while I'm using sshfs my computer crashes, or if I;m lucky enough I get to do an umount before everything falls. Is there any way to prevent this? Also since this is a lan is there a null encryption algorithm I could use to speed things up a bit? Or lower the CPU usage? Thanks! Dude... time for a new switch... Yeah well it's a campus *(1) switch, the campus's *(2) lan, the campus's *(3) gatewayso on so forth till the A class IP so I can do nothing about it Note *(1) to *(2) are ugly words and shouldn't be used around children -- gentoo-user@lists.gentoo.org mailing list
Re: [gentoo-user] sshfs issue
ionut cucu wrote: Yeah well it's a campus *(1) switch, the campus's *(2) lan, the campus's *(3) gatewayso on so forth till the A class IP so I can do nothing about it You could try telling (asking nicely ;) ) the campus tech guys to get their act together. It seems, from what you have said, that you are at their mercy. :( Be lucky, Neil -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. -- gentoo-user@lists.gentoo.org mailing list
Re: [gentoo-user] sshfs issue
On Thursday 28 February 2008 04:58:32 pm ionut cucu wrote: On Thu, 28 Feb 2008 16:51:59 -0500 Jerry McBride [EMAIL PROTECTED] wrote: On Thursday 28 February 2008 04:19:22 pm ionut cucu wrote: I'm running sshfs very often and I've noticed the following issue: whenever the hub/swich(what ever is that keeping my lan together) suddenly stops working while I'm using sshfs my computer crashes, or if I;m lucky enough I get to do an umount before everything falls. Is there any way to prevent this? Also since this is a lan is there a null encryption algorithm I could use to speed things up a bit? Or lower the CPU usage? Thanks! Dude... time for a new switch... Yeah well it's a campus *(1) switch, the campus's *(2) lan, the campus's *(3) gatewayso on so forth till the A class IP so I can do nothing about it Note *(1) to *(2) are ugly words and shouldn't be used around children Hmmm no help How about this? http://fuse.sourceforge.net/wiki/index.php/SshfsFaq Has a section concerning locking up... Also... how about reporting a bug to the developer? Send bug reports to [EMAIL PROTECTED] I just glossed over the documentation and saw no mention of a null encryption engine. If you are willing to use no encryption... maybe you should try another transport protocol... NFS works well. Also sshfs runs via the FUSE architecture Not well know for performance, more for as a means to an end and it runs slow too. Cheers. -- From the Desk of: Jerome D. McBride -- gentoo-user@lists.gentoo.org mailing list
Re: [gentoo-user] sshfs issue
Are you sure the switch/hub/router is failing? With any remote connection such as smb/nfs/sshfs, if the target becomes unavailable for some reason such as lag or a bad route from Point A to Point B then that terminal window will hang till point B is reachable. ionut cucu wrote: On Thu, 28 Feb 2008 16:51:59 -0500 Jerry McBride [EMAIL PROTECTED] wrote: On Thursday 28 February 2008 04:19:22 pm ionut cucu wrote: I'm running sshfs very often and I've noticed the following issue: whenever the hub/swich(what ever is that keeping my lan together) suddenly stops working while I'm using sshfs my computer crashes, or if I;m lucky enough I get to do an umount before everything falls. Is there any way to prevent this? Also since this is a lan is there a null encryption algorithm I could use to speed things up a bit? Or lower the CPU usage? Thanks! Dude... time for a new switch... Yeah well it's a campus *(1) switch, the campus's *(2) lan, the campus's *(3) gatewayso on so forth till the A class IP so I can do nothing about it Note *(1) to *(2) are ugly words and shouldn't be used around children -- gentoo-user@lists.gentoo.org mailing list
[gentoo-user] How to use mplayer play file online?
Hi, I want to use mplayer to play files on the ftp server. For example, I have some files on: ftp://user:[EMAIL PROTECTED]/thefile. Now I want to play it, but I won't need to download all the file first then play it. Is there any advice? Thanks in advanced! -- wcw -- gentoo-user@lists.gentoo.org mailing list
Re: [gentoo-user] Renaming tons of files
On Wednesday 27 February 2008, Markus Schönhaber wrote: Alan McKinnon wrote: And it's not A rename the OP wants to do - check the thread title The thread title, the OP and the OP's reply to the suggestion to let rename do the job make me think that a rename is exactly what the OP wants to do. Yes, he does want to rename files - tons of them per the title. As in, the same behaviour you get from 'ren *.txt *.doc' in Windows and DOS. This gets exceptionally painful on *nix if you have a few thousand *.txt files -- Alan McKinnon alan dot mckinnon at gmail dot com -- gentoo-user@lists.gentoo.org mailing list
Re: [gentoo-user] How to use mplayer play file online?
On Friday 29 February 2008, Chuanwen Wu wrote: Hi, I want to use mplayer to play files on the ftp server. For example, I have some files on: ftp://user:[EMAIL PROTECTED]/thefile. Now I want to play it, but I won't need to download all the file first then play it. Is there any advice? You have to download it as it has to be in RAM before mplayer can use it. And you have to download the whole thing as it's a container file, not a stream. -- Alan McKinnon alan dot mckinnon at gmail dot com -- gentoo-user@lists.gentoo.org mailing list
Re: [gentoo-user] How to use mplayer play file online?
You have to download it as it has to be in RAM before mplayer can use it. And you have to download the whole thing as it's a container file, not a stream. So, you mean mplayer can NOT play stream? As far as I know, mplayer can play file on a web(html) site. In man mplayer, I can see that : Stream from HTTP: mplayer http://mplayer.hq/example.avi Stream using RTSP: mplayer rtsp://server.example.com/streamName So, I think there may be some ways to play mplayer from the ftp(or other protocol). Somebody work it out and suggested me to do it like this: wget ftp://THE_FTPSERVER/1.RM -O - | mplayer -cache 8192 - But I just failed every time I tried to do it in this way. Can you do it successfully? -- Alan McKinnon alan dot mckinnon at gmail dot com -- gentoo-user@lists.gentoo.org mailing list -- wcw -- gentoo-user@lists.gentoo.org mailing list