Re: waaay offtopic

[Tom Dial]

On 5/29/20 11:21, Gene Heskett wrote:
> On Friday 29 May 2020 13:00:58 David Wright wrote:
> 

(Omitted material)

>> David.
> 
> Obviously then you have never "reset" firefox.  That makes it a brand new 
> install, clearing ALL your passwds and logins and restoring ALL its 
> defaults. I still do not have full access to my bank although online 
> purchases are working. It did NOT warn me of that 'side' effect.  So 
> yes, I'm pi$$ed, I've had to do new passwd resets at all the places I do 
> business with. And while chromium has remembered a few of the renewed 
> ones, it is not saving them all. And I've yet to decipher why.  So I 
> need to pull down a whole slew of post-it notes and put up new ones.

I would expect you could find, under ~/.mozilla.firefox, the second most
recent (random-string).default configuration directory (mine is
gosylbn0.default). If not, it should be recoverable from backups that
from following this list I believe you have.

Mozilla support lists might provide a better or more "authorized" way,
but I suspect the reset FF would restart if the line in
~/.mozilla/firefox/profiles.ini that specifies the Default profile were
changed to specify the older profile. And I suspect your missing
passwords and maybe some other things, would then be available.

I think I actually have done that, but it would be a long time back and
I do not remember why.

Regards,
Tom Dial

> 
> Cheers, Gene Heskett
> 

Re: waaay offtopic

[davidson]

On Fri, 29 May 2020, Gene Heskett wrote:


On Friday 29 May 2020 15:50:38 David Wright wrote:


On Fri 29 May 2020 at 13:21:45 (-0400), Gene Heskett wrote:

On Friday 29 May 2020 13:00:58 David Wright wrote:

On Fri 29 May 2020 at 18:49:26 (+0300), Andrei POPESCU wrote:

On Vi, 29 mai 20, 14:26:25, Joe wrote:

On Fri, 29 May 2020 15:25:16 +0300 Andrei POPESCU

 wrote:

And what would the advantage of RADIUS be over WAP2-PSK, for
Gene's use-case?


I believe he is using passwords and his unwanted user can
crack them. I agree it isn't clear whether he is using WPA or
WPA2. I don't know the current state of play with cracking
WPA2-PSK.


Gene mentioned several times (in completely unrelated threads)
that he keeps the wireless turned off, because apparently his
neighbour is able to steal his internet more or less instantly.

No mention whatsoever was made about what (if any!) wireless
security option is in use. It might as well have been WEP (which
is known to be crackable for many years now) or none.

Or it might have been some incompetent or malicious[1] website
using up Gene's internet and the neighbour is inocent. Or a
download script stuck in a loop, or... etc.

Occam's razor suggests Gene will be just fine with WPA2-PSK.

[1] see Hanlon's razor


Perhaps something is explained by
https://lists.debian.org/debian-user/2019/05/msg01315.html
but I couldn't understand any of
https://lists.debian.org/debian-user/2020/05/msg00736.html


Obviously then you have never "reset" firefox.  That makes it a
brand new install, clearing ALL your passwds and logins and
restoring ALL its defaults. I still do not have full access to my
bank although online purchases are working. It did NOT warn me of
that 'side' effect.  So yes, I'm pi$$ed, I've had to do new passwd
resets at all the places I do business with. And while chromium has
remembered a few of the renewed ones, it is not saving them all. And
I've yet to decipher why.  So I need to pull down a whole slew of
post-it notes and put up new ones.


What does this have to do with your router and wifi security, which
was being discussed—why does FF have anything to do with that.


Because that was where the routers username and passwd were stored.


The Tragedy of Pudd’nhead Wilson by Mark Twain | Ch. XV, 2nd epigraph
https://www.gutenberg.org/files/102/102-h/102-h.htm#link2HCH0015

 Behold, the fool saith, "Put not all thine eggs in the one basket"---

 which is but a manner of saying, "Scatter your money and your
 attention";

 but the wise man saith, "Put all your eggs in the one basket and---

 WATCH THAT BASKET."

--
 The day will come  |  Last words, August Spies (1855--1887).
 When our silence will be   |  Hanged, by the state of Illinois,
 More powerful than |  alongside fellow journalists
 The voices you strangle today  |  Adolf Fischer and Albert Parsons.

Re: waaay offtopic

[Gene Heskett]

On Friday 29 May 2020 15:50:38 David Wright wrote:

> On Fri 29 May 2020 at 13:21:45 (-0400), Gene Heskett wrote:
> > On Friday 29 May 2020 13:00:58 David Wright wrote:
> > > On Fri 29 May 2020 at 18:49:26 (+0300), Andrei POPESCU wrote:
> > > > On Vi, 29 mai 20, 14:26:25, Joe wrote:
> > > > > On Fri, 29 May 2020 15:25:16 +0300 Andrei POPESCU 
 wrote:
> > > > > > And what would the advantage of RADIUS be over WAP2-PSK, for
> > > > > > Gene's use-case?
> > > > >
> > > > > I believe he is using passwords and his unwanted user can
> > > > > crack them. I agree it isn't clear whether he is using WPA or
> > > > > WPA2. I don't know the current state of play with cracking
> > > > > WPA2-PSK.
> > > >
> > > > Gene mentioned several times (in completely unrelated threads)
> > > > that he keeps the wireless turned off, because apparently his
> > > > neighbour is able to steal his internet more or less instantly.
> > > >
> > > > No mention whatsoever was made about what (if any!) wireless
> > > > security option is in use. It might as well have been WEP (which
> > > > is known to be crackable for many years now) or none.
> > > >
> > > > Or it might have been some incompetent or malicious[1] website
> > > > using up Gene's internet and the neighbour is inocent. Or a
> > > > download script stuck in a loop, or... etc.
> > > >
> > > > Occam's razor suggests Gene will be just fine with WPA2-PSK.
> > > >
> > > > [1] see Hanlon's razor
> > >
> > > Perhaps something is explained by
> > > https://lists.debian.org/debian-user/2019/05/msg01315.html
> > > but I couldn't understand any of
> > > https://lists.debian.org/debian-user/2020/05/msg00736.html
> >
> > Obviously then you have never "reset" firefox.  That makes it a
> > brand new install, clearing ALL your passwds and logins and
> > restoring ALL its defaults. I still do not have full access to my
> > bank although online purchases are working. It did NOT warn me of
> > that 'side' effect.  So yes, I'm pi$$ed, I've had to do new passwd
> > resets at all the places I do business with. And while chromium has
> > remembered a few of the renewed ones, it is not saving them all. And
> > I've yet to decipher why.  So I need to pull down a whole slew of
> > post-it notes and put up new ones.
>
> What does this have to do with your router and wifi security, which
> was being discussed—why does FF have anything to do with that.
>
Because that was where the routers username and passwd were stored.

> You've posted elsewhere about your router and it's reflashed firmware,
> and how others might be better off with it, but its wifi performance
> seems hopeless. I agree with Andrei, that's it's probably
> misconfigured.
>
> As for FF, it appears that you're telling us that all your login IDs
> and passwords are stored within its configuration. This is crazy.
> I can believe that when you reset FF, you may have to answer extra
> security questions (gat authorisation codes, and so forth), but not
> carry out password resets at places like banks. Don't you keep a
> record of your userIDs even?
>
> And what's this about factory-resetting the router? No idea.
> Nor about selling FF to the spammers. As usual, our experiences
> seem to be completely divergent. I guess IPv6 will be the next
> sudden lurch in this thread, or the resolver, or another of your
> usual bêtes noires.
>
> Cheers,
> David.


Cheers, Gene Heskett
-- 
"There are four boxes to be used in defense of liberty:
 soap, ballot, jury, and ammo. Please use in that order."
-Ed Howdershelt (Author)
If we desire respect for the law, we must first make the law respectable.
 - Louis D. Brandeis
Genes Web page 

Re: waaay offtopic

[Joe]

On Fri, 29 May 2020 13:21:45 -0400
Gene Heskett  wrote:

> On Friday 29 May 2020 13:00:58 David Wright wrote:
> 
> > On Fri 29 May 2020 at 18:49:26 (+0300), Andrei POPESCU wrote:  
> > > On Vi, 29 mai 20, 14:26:25, Joe wrote:  
> > > > On Fri, 29 May 2020 15:25:16 +0300 Andrei POPESCU   
>  wrote:
> > > > > And what would the advantage of RADIUS be over WAP2-PSK, for
> > > > > Gene's use-case?  
> > > >
> > > > I believe he is using passwords and his unwanted user can crack
> > > > them. I agree it isn't clear whether he is using WPA or WPA2. I
> > > > don't know the current state of play with cracking WPA2-PSK.  
> > >
> > > Gene mentioned several times (in completely unrelated threads)
> > > that he keeps the wireless turned off, because apparently his
> > > neighbour is able to steal his internet more or less instantly.
> > >
> > > No mention whatsoever was made about what (if any!) wireless
> > > security option is in use. It might as well have been WEP (which
> > > is known to be crackable for many years now) or none.
> > >
> > > Or it might have been some incompetent or malicious[1] website
> > > using up Gene's internet and the neighbour is inocent. Or a
> > > download script stuck in a loop, or... etc.
> > >
> > > Occam's razor suggests Gene will be just fine with WPA2-PSK.
> > >
> > > [1] see Hanlon's razor  
> >
> > Perhaps something is explained by
> > https://lists.debian.org/debian-user/2019/05/msg01315.html
> > but I couldn't understand any of
> > https://lists.debian.org/debian-user/2020/05/msg00736.html
> >
> > Cheers,
> > David.  
> 
> Obviously then you have never "reset" firefox.  That makes it a brand
> new install, clearing ALL your passwds and logins and restoring ALL
> its defaults. I still do not have full access to my bank although
> online purchases are working. It did NOT warn me of that 'side'
> effect.  So yes, I'm pi$$ed, I've had to do new passwd resets at all
> the places I do business with. And while chromium has remembered a
> few of the renewed ones, it is not saving them all. And I've yet to
> decipher why.  So I need to pull down a whole slew of post-it notes
> and put up new ones.

I'm using a password manager (KeePass2) with database backups rather
than having a browser save them. I always consider all browsers to have
fallen into enemy hands...
> 
>
You might try installing Midori as a backup. It's not nearly as capable
as Firefox, but it can deal with many JS-based sites. I keep it because
I've known it to render sites that Firefox was having trouble with.
Comes with DuckDuckGo as default search, but that's easy to change.

-- 
Joe

Re: waaay offtopic

[David Wright]

On Fri 29 May 2020 at 13:21:45 (-0400), Gene Heskett wrote:
> On Friday 29 May 2020 13:00:58 David Wright wrote:
> > On Fri 29 May 2020 at 18:49:26 (+0300), Andrei POPESCU wrote:
> > > On Vi, 29 mai 20, 14:26:25, Joe wrote:
> > > > On Fri, 29 May 2020 15:25:16 +0300 Andrei POPESCU 
> > > >  wrote:
> > > > > And what would the advantage of RADIUS be over WAP2-PSK, for
> > > > > Gene's use-case?
> > > >
> > > > I believe he is using passwords and his unwanted user can crack
> > > > them. I agree it isn't clear whether he is using WPA or WPA2. I
> > > > don't know the current state of play with cracking WPA2-PSK.
> > >
> > > Gene mentioned several times (in completely unrelated threads) that
> > > he keeps the wireless turned off, because apparently his neighbour
> > > is able to steal his internet more or less instantly.
> > >
> > > No mention whatsoever was made about what (if any!) wireless
> > > security option is in use. It might as well have been WEP (which is
> > > known to be crackable for many years now) or none.
> > >
> > > Or it might have been some incompetent or malicious[1] website using
> > > up Gene's internet and the neighbour is inocent. Or a download
> > > script stuck in a loop, or... etc.
> > >
> > > Occam's razor suggests Gene will be just fine with WPA2-PSK.
> > >
> > > [1] see Hanlon's razor
> >
> > Perhaps something is explained by
> > https://lists.debian.org/debian-user/2019/05/msg01315.html
> > but I couldn't understand any of
> > https://lists.debian.org/debian-user/2020/05/msg00736.html
> 
> Obviously then you have never "reset" firefox.  That makes it a brand new 
> install, clearing ALL your passwds and logins and restoring ALL its 
> defaults. I still do not have full access to my bank although online 
> purchases are working. It did NOT warn me of that 'side' effect.  So 
> yes, I'm pi$$ed, I've had to do new passwd resets at all the places I do 
> business with. And while chromium has remembered a few of the renewed 
> ones, it is not saving them all. And I've yet to decipher why.  So I 
> need to pull down a whole slew of post-it notes and put up new ones.

What does this have to do with your router and wifi security, which
was being discussed—why does FF have anything to do with that.

You've posted elsewhere about your router and it's reflashed firmware,
and how others might be better off with it, but its wifi performance
seems hopeless. I agree with Andrei, that's it's probably misconfigured.

As for FF, it appears that you're telling us that all your login IDs
and passwords are stored within its configuration. This is crazy.
I can believe that when you reset FF, you may have to answer extra
security questions (gat authorisation codes, and so forth), but not
carry out password resets at places like banks. Don't you keep a
record of your userIDs even?

And what's this about factory-resetting the router? No idea.
Nor about selling FF to the spammers. As usual, our experiences
seem to be completely divergent. I guess IPv6 will be the next
sudden lurch in this thread, or the resolver, or another of your
usual bêtes noires.

Cheers,
David.

Re: waaay offtopic

[Gene Heskett]

On Friday 29 May 2020 13:00:58 David Wright wrote:

> On Fri 29 May 2020 at 18:49:26 (+0300), Andrei POPESCU wrote:
> > On Vi, 29 mai 20, 14:26:25, Joe wrote:
> > > On Fri, 29 May 2020 15:25:16 +0300 Andrei POPESCU 
 wrote:
> > > > And what would the advantage of RADIUS be over WAP2-PSK, for
> > > > Gene's use-case?
> > >
> > > I believe he is using passwords and his unwanted user can crack
> > > them. I agree it isn't clear whether he is using WPA or WPA2. I
> > > don't know the current state of play with cracking WPA2-PSK.
> >
> > Gene mentioned several times (in completely unrelated threads) that
> > he keeps the wireless turned off, because apparently his neighbour
> > is able to steal his internet more or less instantly.
> >
> > No mention whatsoever was made about what (if any!) wireless
> > security option is in use. It might as well have been WEP (which is
> > known to be crackable for many years now) or none.
> >
> > Or it might have been some incompetent or malicious[1] website using
> > up Gene's internet and the neighbour is inocent. Or a download
> > script stuck in a loop, or... etc.
> >
> > Occam's razor suggests Gene will be just fine with WPA2-PSK.
> >
> > [1] see Hanlon's razor
>
> Perhaps something is explained by
> https://lists.debian.org/debian-user/2019/05/msg01315.html
> but I couldn't understand any of
> https://lists.debian.org/debian-user/2020/05/msg00736.html
>
> Cheers,
> David.

Obviously then you have never "reset" firefox.  That makes it a brand new 
install, clearing ALL your passwds and logins and restoring ALL its 
defaults. I still do not have full access to my bank although online 
purchases are working. It did NOT warn me of that 'side' effect.  So 
yes, I'm pi$$ed, I've had to do new passwd resets at all the places I do 
business with. And while chromium has remembered a few of the renewed 
ones, it is not saving them all. And I've yet to decipher why.  So I 
need to pull down a whole slew of post-it notes and put up new ones.

Cheers, Gene Heskett
-- 
"There are four boxes to be used in defense of liberty:
 soap, ballot, jury, and ammo. Please use in that order."
-Ed Howdershelt (Author)
If we desire respect for the law, we must first make the law respectable.
 - Louis D. Brandeis
Genes Web page 

Re: waaay offtopic

[David Wright]

On Fri 29 May 2020 at 18:49:26 (+0300), Andrei POPESCU wrote:
> On Vi, 29 mai 20, 14:26:25, Joe wrote:
> > On Fri, 29 May 2020 15:25:16 +0300 Andrei POPESCU 
> >  wrote:
> > > 
> > > And what would the advantage of RADIUS be over WAP2-PSK, for Gene's 
> > > use-case?
> > 
> > I believe he is using passwords and his unwanted user can crack them. I
> > agree it isn't clear whether he is using WPA or WPA2. I don't know the
> > current state of play with cracking WPA2-PSK.
> 
> Gene mentioned several times (in completely unrelated threads) that he 
> keeps the wireless turned off, because apparently his neighbour is able 
> to steal his internet more or less instantly.
> 
> No mention whatsoever was made about what (if any!) wireless security 
> option is in use. It might as well have been WEP (which is known to be 
> crackable for many years now) or none.
> 
> Or it might have been some incompetent or malicious[1] website using up 
> Gene's internet and the neighbour is inocent. Or a download script stuck 
> in a loop, or... etc.
> 
> Occam's razor suggests Gene will be just fine with WPA2-PSK.
> 
> [1] see Hanlon's razor

Perhaps something is explained by
https://lists.debian.org/debian-user/2019/05/msg01315.html
but I couldn't understand any of
https://lists.debian.org/debian-user/2020/05/msg00736.html

Cheers,
David.

Re: waaay offtopic

[Andrei POPESCU]

On Vi, 29 mai 20, 14:26:25, Joe wrote:
> On Fri, 29 May 2020 15:25:16 +0300
> Andrei POPESCU  wrote:
> > 
> > And what would the advantage of RADIUS be over WAP2-PSK, for Gene's 
> > use-case?
> 
> I believe he is using passwords and his unwanted user can crack them. I
> agree it isn't clear whether he is using WPA or WPA2. I don't know the
> current state of play with cracking WPA2-PSK.

Gene mentioned several times (in completely unrelated threads) that he 
keeps the wireless turned off, because apparently his neighbour is able 
to steal his internet more or less instantly.

No mention whatsoever was made about what (if any!) wireless security 
option is in use. It might as well have been WEP (which is known to be 
crackable for many years now) or none.

Or it might have been some incompetent or malicious[1] website using up 
Gene's internet and the neighbour is inocent. Or a download script stuck 
in a loop, or... etc.

Occam's razor suggests Gene will be just fine with WPA2-PSK.

[1] see Hanlon's razor

Kind regards,
Andrei
-- 
http://wiki.debian.org/FAQsFromDebianUser


signature.asc
Description: PGP signature

Re: waaay offtopic

[Gene Heskett]

On Friday 29 May 2020 09:26:25 Joe wrote:

> On Fri, 29 May 2020 15:25:16 +0300
>
> Andrei POPESCU  wrote:
> > On Vi, 29 mai 20, 10:37:33, Joe wrote:
> > > On Fri, 29 May 2020 11:23:42 +0300
> > >
> > > Andrei POPESCU  wrote:
> > > > Why should anyone bother with RADIUS for a wireless with at most
> > > > a couple of *trusted* users?
> > >
> > > I think the issue is usually the *untrusted* and indeed,
> > > unauthorised users.
> >
> > And what would the advantage of RADIUS be over WAP2-PSK, for Gene's
> > use-case?
>
> I believe he is using passwords and his unwanted user can crack them.
> I agree it isn't clear whether he is using WPA or WPA2. I don't know
> the current state of play with cracking WPA2-PSK.
>
> As far as I am aware, the only more secure setup than WPA2-PSK is
> WPA2-Enterprise aka RADIUS.

Or, how about reseting firefox, which clears all logins.  So the only way 
I have now to get back into this router is to reset it to factory and 
start all over.  That means I'll have to go back to dd-wrt's site and 
get the initial uploader, the webloader can't be used to update it. 
Thats a longer process obviously. Firefox has obviously been sold to the 
spammers. I can recall when it was a good browser, years ago.  Grr.

Thanks.

Cheers, Gene Heskett
-- 
"There are four boxes to be used in defense of liberty:
 soap, ballot, jury, and ammo. Please use in that order."
-Ed Howdershelt (Author)
If we desire respect for the law, we must first make the law respectable.
 - Louis D. Brandeis
Genes Web page 

Re: waaay offtopic

[Joe]

On Fri, 29 May 2020 15:25:16 +0300
Andrei POPESCU  wrote:

> On Vi, 29 mai 20, 10:37:33, Joe wrote:
> > On Fri, 29 May 2020 11:23:42 +0300
> > Andrei POPESCU  wrote:
> > 
> >   
> > > 
> > > Why should anyone bother with RADIUS for a wireless with at most
> > > a couple of *trusted* users?
> > >   
> > 
> > I think the issue is usually the *untrusted* and indeed,
> > unauthorised users.  
> 
> And what would the advantage of RADIUS be over WAP2-PSK, for Gene's 
> use-case?
> 

I believe he is using passwords and his unwanted user can crack them. I
agree it isn't clear whether he is using WPA or WPA2. I don't know the
current state of play with cracking WPA2-PSK.

As far as I am aware, the only more secure setup than WPA2-PSK is
WPA2-Enterprise aka RADIUS.

-- 
Joe

Re: waaay offtopic

[Andrei POPESCU]

On Vi, 29 mai 20, 10:37:33, Joe wrote:
> On Fri, 29 May 2020 11:23:42 +0300
> Andrei POPESCU  wrote:
> 
> 
> > 
> > Why should anyone bother with RADIUS for a wireless with at most a 
> > couple of *trusted* users?
> > 
> 
> I think the issue is usually the *untrusted* and indeed, unauthorised
> users.

And what would the advantage of RADIUS be over WAP2-PSK, for Gene's 
use-case?

Kind regards,
Andrei
-- 
http://wiki.debian.org/FAQsFromDebianUser


signature.asc
Description: PGP signature

Re: waaay offtopic

[Joe]

On Fri, 29 May 2020 11:23:42 +0300
Andrei POPESCU  wrote:


> 
> Why should anyone bother with RADIUS for a wireless with at most a 
> couple of *trusted* users?
> 

I think the issue is usually the *untrusted* and indeed, unauthorised
users.

-- 
Joe

Re: waaay offtopic

[Gene Heskett]

On Friday 29 May 2020 04:23:42 Andrei POPESCU wrote:

> On Jo, 28 mai 20, 13:35:38, Joe wrote:
> > On Thu, 28 May 2020 07:29:30 -0400
> >
> > Gene Heskett  wrote:
> > > > If one of your machines is always on, and your router can do it
> > > > (most can), you could try RADIUS...
> > >
> > > They are up 24/7. tell me more plz.
> >
> > The comment was a bit light-hearted, RADIUS can be a beast. Debian
> > makes it relatively easy, unless you want to use an authentication
> > method not enabled by default, as I did.
>
> Sorry, but one can't think you are making fun of Gene by even
> mentioning RADIUS to him.
>
Radius may not be so strange to me, as I've been familiar with its head 
honcho for nearly 35 years, we both traveled largely the same path thru 
the trs-80 color computer field to get where we are today.

> Why should anyone bother with RADIUS for a wireless with at most a
> couple of *trusted* users?
>
In my case, maybe 5 users total. But I haven't looked at it in several 
years. And FreeRadius might be just what I'm looking for today.  
Probably depends on its support/compatibility with dd-wrt.  And that 
question hasn't even been asked yet.  Time for some googling I think.

Thanks for reminding me of it.

> Kind regards,
> Andrei


Cheers, Gene Heskett
-- 
"There are four boxes to be used in defense of liberty:
 soap, ballot, jury, and ammo. Please use in that order."
-Ed Howdershelt (Author)
If we desire respect for the law, we must first make the law respectable.
 - Louis D. Brandeis
Genes Web page 

Re: waaay offtopic

[Andrei POPESCU]

On Jo, 28 mai 20, 13:35:38, Joe wrote:
> On Thu, 28 May 2020 07:29:30 -0400
> Gene Heskett  wrote:
> 
> 
> > >
> > > If one of your machines is always on, and your router can do it
> > > (most can), you could try RADIUS...  
> > 
> > They are up 24/7. tell me more plz.
> 
> The comment was a bit light-hearted, RADIUS can be a beast. Debian
> makes it relatively easy, unless you want to use an authentication
> method not enabled by default, as I did.

Sorry, but one can't think you are making fun of Gene by even mentioning 
RADIUS to him.

Why should anyone bother with RADIUS for a wireless with at most a 
couple of *trusted* users?

Kind regards,
Andrei
-- 
http://wiki.debian.org/FAQsFromDebianUser


signature.asc
Description: PGP signature

Re: waaay offtopic

[Andrei POPESCU]

On Jo, 28 mai 20, 07:39:12, John Hasler wrote:
> Andrei writes:
> > You might want to write the password on a piece of paper to show it to
> > guests that you want to grant access.
> 
> You should write it down in the same little black book or card you write
> all your passwords down in.  And since it is going to be written down it
> might as well be a truly random string such as those generated by pwgen.
> 
> Memorizing passwords only makes sense when you only have two or three of
> them and use them all frequently.

The 'S' in PSK stands for "shared", as opposed to most other passwords.
It must also be entered on a touchscreen.

What is the threat model that warrants a random string as a password for 
the WiFi vs. an XKCD 936-style password?

I believe the entities capable of cracking such a password have better 
things to do than stealing my internet or sniffing through my lan ;)

Kind regards,
Andrei
-- 
http://wiki.debian.org/FAQsFromDebianUser


signature.asc
Description: PGP signature

Re: waaay offtopic

[Andrei POPESCU]

On Jo, 28 mai 20, 06:43:00, rhkra...@gmail.com wrote:
> On Thursday, May 28, 2020 12:58:54 AM Andrei POPESCU wrote:
> > I've been carrying by mobile phones in the back pocket of my jeans since
> > they became slim enough to fit (i.e. smartphones) and never cracked a
> > screen due to this.
> 
> I'm guerssing that you do so without a case or any kind of screen protector, 
> and probably with the front against your body?

Silicon case only, don't care about which way (though I probably use one 
or the other without thinking about it).

Kind regards,
Andrei
-- 
http://wiki.debian.org/FAQsFromDebianUser


signature.asc
Description: PGP signature

Re: waaay offtopic

[James H. H. Lampert]

Personally, I have a clamshell.

It's my second clamshell, an LG VN220. It replaced my previous 
clamshell, after my first vacation to Canada: the previous clamshell was 
a paperweight from the moment my bus from Seattle to Vancouver crossed 
the Canadian border, up to the moment my flight from Toronto landed back 
in the U.S.


It has a camera, a rudimentary web browser, and a totally useless email 
reader that will not connect to my ISP's mail server AT ALL. 
(Fortunately, the web browser works just fine with my ISP's web-mail 
interface.)


And if I need to go online with my tablet, my phone can provide a WiFi 
hotspot for it. (I flatly refuse to accept a home broadband connection 
until such time as Net Neutrality is legislated, court-tested, settled law.)


Before my first clamshell, I had "candy bar" phones. Then, while on 
vacation, I chest-dialed home, and nearly put my mother in the hospital 
with worry.


--
JHHL

Re: waaay offtopic

[John Hasler]

Andrei writes:
> You might want to write the password on a piece of paper to show it to
> guests that you want to grant access.

You should write it down in the same little black book or card you write
all your passwords down in.  And since it is going to be written down it
might as well be a truly random string such as those generated by pwgen.

Memorizing passwords only makes sense when you only have two or three of
them and use them all frequently.
-- 
John Hasler 
jhas...@newsguy.com
Elmwood, WI USA

Re: waaay offtopic

[Joe]

On Thu, 28 May 2020 07:29:30 -0400
Gene Heskett  wrote:


> >
> > If one of your machines is always on, and your router can do it
> > (most can), you could try RADIUS...  
> 
> They are up 24/7. tell me more plz.

The comment was a bit light-hearted, RADIUS can be a beast. Debian
makes it relatively easy, unless you want to use an authentication
method not enabled by default, as I did.

I did get it running on my server some years ago (about 10-15) after
several days work. It didn't help that the (Cisco!) router I was using
had a serious configuration bug in the RADIUS section, which took me a
day or two to discover.

It was a proof of concept, really, and something extra to put on my CV.

There are various authentication methods, I picked EAP-TLS, which
requires certificates signed by a local certificate authority (you
*don't* want to link this to the public infrastructure) on client
computers. Guaranteed neighbour-proof, but could be a lot of work, and
no good for visitors. But I had a separate wifi channel for visitors,
only enabled when necessary. 

https://wiki.freeradius.org/guide/Getting-Started

-- 
Joe

Re: waaay offtopic

[Gene Heskett]

On Thursday 28 May 2020 04:13:24 Joe wrote:

> On Thu, 28 May 2020 10:01:27 +0200
>
>  wrote:
> > On Thu, May 28, 2020 at 08:30:14AM +0300, Andrei POPESCU wrote:
> > > On Jo, 28 mai 20, 00:04:01, Gene Heskett wrote:
> > > > I need to get something here wifi enabled so I don't run my
> > > > sprint bill up. Just getting the weather does that. I probably
> > > > need to update my dd-wrt router and enable the wifi in it, but
> > > > I'll have to set it so the neighbors are locked out, probably by
> > > > catching this ones MAC and disallowing anything else.
> > >
> > > MACs can be cloned (though I doubt your neighbours would do this).
> >
> > Don't rely on MACs for device identification. These days it's quite
> > probable that a mobile device picks a random MAC, for (well-founded,
> > alas) privacy reasons [1].
> >
> > Cheers
> >
> > [1] https://en.wikipedia.org/wiki/MAC_address#Randomization
> > -- tomás
>
> If one of your machines is always on, and your router can do it (most
> can), you could try RADIUS...

They are up 24/7. tell me more plz.

Cheers, Gene Heskett
-- 
"There are four boxes to be used in defense of liberty:
 soap, ballot, jury, and ammo. Please use in that order."
-Ed Howdershelt (Author)
If we desire respect for the law, we must first make the law respectable.
 - Louis D. Brandeis
Genes Web page 

Re: waaay offtopic

[rhkramer]

On Thursday, May 28, 2020 12:58:54 AM Andrei POPESCU wrote:
> I've been carrying by mobile phones in the back pocket of my jeans since
> they became slim enough to fit (i.e. smartphones) and never cracked a
> screen due to this.

I'm guerssing that you do so without a case or any kind of screen protector, 
and probably with the front against your body?

Re: waaay offtopic (and solved.)

[David]

On Thu, 28 May 2020 at 06:33, Gene Heskett  wrote:

> > > All I can find are you-tube vids that go by faster than the guys
> > > making them can talk, let along actually follow along.

Hi, in case you are not aware, at the bottom of the youtube video
display area (find the play button and then look to the right hand
side) if you click on the gear-shaped icon for "Settings" then it
presents a menu that includes the ability to reduce the playback speed.

Re: waaay offtopic

[Joe]

On Thu, 28 May 2020 10:01:27 +0200
 wrote:

> On Thu, May 28, 2020 at 08:30:14AM +0300, Andrei POPESCU wrote:
> > On Jo, 28 mai 20, 00:04:01, Gene Heskett wrote:  
> > > I need to get something here wifi enabled so I don't run my
> > > sprint bill up. Just getting the weather does that. I probably
> > > need to update my dd-wrt router and enable the wifi in it, but
> > > I'll have to set it so the neighbors are locked out, probably by
> > > catching this ones MAC and disallowing anything else.  
> > 
> > MACs can be cloned (though I doubt your neighbours would do this).  
> 
> Don't rely on MACs for device identification. These days it's quite
> probable that a mobile device picks a random MAC, for (well-founded,
> alas) privacy reasons [1].
> 
> Cheers
> 
> [1] https://en.wikipedia.org/wiki/MAC_address#Randomization
> -- tomás

If one of your machines is always on, and your router can do it (most
can), you could try RADIUS...

-- 
Joe

Re: waaay offtopic

[tomas]

On Thu, May 28, 2020 at 08:30:14AM +0300, Andrei POPESCU wrote:
> On Jo, 28 mai 20, 00:04:01, Gene Heskett wrote:
> > I need to get something here wifi enabled so I don't run my sprint 
> > bill up. Just getting the weather does that. I probably need to update 
> > my dd-wrt router and enable the wifi in it, but I'll have to set it so 
> > the neighbors are locked out, probably by catching this ones MAC and 
> > disallowing anything else.
> 
> MACs can be cloned (though I doubt your neighbours would do this).

Don't rely on MACs for device identification. These days it's quite
probable that a mobile device picks a random MAC, for (well-founded,
alas) privacy reasons [1].

Cheers

[1] https://en.wikipedia.org/wiki/MAC_address#Randomization
-- tomás


signature.asc
Description: Digital signature

Re: waaay offtopic

[Andrei POPESCU]

On Jo, 28 mai 20, 01:43:06, Gene Heskett wrote:
> 
> They are dumb, but the offender apparently has a cracker app on his 
> phone. Changing the simple pw only locks him out for 3 or so minutes.  
> He's a cast iron PITA in person too.

Your router is not configured properly.

Kind regards,
Andrei
-- 
http://wiki.debian.org/FAQsFromDebianUser


signature.asc
Description: PGP signature

Re: waaay offtopic

[Gene Heskett]

On Thursday 28 May 2020 01:30:14 Andrei POPESCU wrote:

> On Jo, 28 mai 20, 00:04:01, Gene Heskett wrote:
> > I need to get something here wifi enabled so I don't run my sprint
> > bill up. Just getting the weather does that. I probably need to
> > update my dd-wrt router and enable the wifi in it, but I'll have to
> > set it so the neighbors are locked out, probably by catching this
> > ones MAC and disallowing anything else.
>
> MACs can be cloned (though I doubt your neighbours would do this).
>
I know, I am doing it so I have a fixed inet4 address regardless of which 
router is in service.

> You will get better protection by enabling  WPA2-PSK (pre-shared key),
> with encryption type AES and setting a reasonably long and complicated
> password / phrase.

> Unless you're neighbours are some super-hackers

They are dumb, but the offender apparently has a cracker app on his 
phone. Changing the simple pw only locks him out for 3 or so minutes.  
He's a cast iron PITA in person too.

> there's no real need 
> to go wild here, something like https://xkcd.com/936/ will be more
> than enough (do note the words are *random*). There's xkcdpass in
> Debian and several online password generators inspired by XKCD 936.

I've seen that, great stuff.

> You might want to write the password on a piece of paper to show it to
> guests that you want to grant access.
>
> For additional protection DD-WRT can probably enable a dedicated
> "guest" WiFi. This is useful only if you want to isolate guests from
> the rest of your network while still allowing them to use your
> internet access.

Thats how it works, I can't "see" their traffic until I  get the monthly 
bill.

> Kind regards,
> Andrei


Cheers, Gene Heskett
-- 
"There are four boxes to be used in defense of liberty:
 soap, ballot, jury, and ammo. Please use in that order."
-Ed Howdershelt (Author)
If we desire respect for the law, we must first make the law respectable.
 - Louis D. Brandeis
Genes Web page 

Re: waaay offtopic

[Andrei POPESCU]

On Jo, 28 mai 20, 00:04:01, Gene Heskett wrote:
> I need to get something here wifi enabled so I don't run my sprint 
> bill up. Just getting the weather does that. I probably need to update 
> my dd-wrt router and enable the wifi in it, but I'll have to set it so 
> the neighbors are locked out, probably by catching this ones MAC and 
> disallowing anything else.

MACs can be cloned (though I doubt your neighbours would do this).

You will get better protection by enabling  WPA2-PSK (pre-shared key), 
with encryption type AES and setting a reasonably long and complicated 
password / phrase.

Unless you're neighbours are some super-hackers there's no real need to 
go wild here, something like https://xkcd.com/936/ will be more than 
enough (do note the words are *random*). There's xkcdpass in Debian and 
several online password generators inspired by XKCD 936.

You might want to write the password on a piece of paper to show it to 
guests that you want to grant access.

For additional protection DD-WRT can probably enable a dedicated "guest" 
WiFi. This is useful only if you want to isolate guests from the rest of 
your network while still allowing them to use your internet access.

Kind regards,
Andrei
-- 
http://wiki.debian.org/FAQsFromDebianUser


signature.asc
Description: PGP signature

Re: waaay offtopic

[Andrei POPESCU]

On Mi, 27 mai 20, 20:12:44, Nate Bargmann wrote:
> Hi Gene.
> 
> I've had the same exact model since last September.  Overall it's a good
> phone except my older Motorola could get data and service in places this
> one won't.  Getting used to Android in 2013 had me befuddled for a bit
> but a bit with a tutorial got me going.  My A10e is running Android 9,
> a.k.a. Pie.  One thing I have noticed is that in some settings screens
> at the bottom (might have to scroll by dragging your finger along the
> screen) there are links to related options.

One of the first things I enable on Android phones is:

Accessibility -> Interaction and dexterity -> Answering and ending calls 
and enable:
* Press Home button to answer
(or whatever other button you still have)
* Press Power key to end

I still miss the keyboard on my Nokia E6 though I did eventually get 
used to typing on touch screens. I get better accuracy with Gboard than 
with the default Samsung keyboard, though I'm trying to avoid it for 
privacy reasons.

Kind regards,
Andrei
-- 
http://wiki.debian.org/FAQsFromDebianUser


signature.asc
Description: PGP signature

Re: waaay offtopic

[Andrei POPESCU]

On Mi, 27 mai 20, 20:50:12, Nate Bargmann wrote:
> 
> I recall some of the early smart phone models having a slide-out
> keyboard, the Blackberry being about the most popular, at least a lot of
> techs where I used to work had them at the time.  I've always been leery
> of putting my phone in my pocket as I figure it is more apt to get a
> cracked screen that way.  I carry it in a case clipped on my belt.

I've been carrying by mobile phones in the back pocket of my jeans since 
they became slim enough to fit (i.e. smartphones) and never cracked a 
screen due to this.

Kind regards,
Andrei
-- 
http://wiki.debian.org/FAQsFromDebianUser


signature.asc
Description: PGP signature

Re: waaay offtopic

[Gene Heskett]

On Wednesday 27 May 2020 21:12:44 Nate Bargmann wrote:

> Hi Gene.
>
> I've had the same exact model since last September.  Overall it's a
> good phone except my older Motorola could get data and service in
> places this one won't.  Getting used to Android in 2013 had me
> befuddled for a bit but a bit with a tutorial got me going.  My A10e
> is running Android 9, a.k.a. Pie.  One thing I have noticed is that in
> some settings screens at the bottom (might have to scroll by dragging
> your finger along the screen) there are links to related options.
>
> Your finger(s) is the mouse.  There are a number of gestures that will
> soon become second nature.  A lot is down by tapping one finger on an
> icon/item or dragging it around the screen.  Zooming out and in is
> usually a thumb and forefinger squeeze together or apart,
> respectively. On some things an additional function is performed by
> pressing and holding on the item (if you have an Elecraft K3 you'll be
> familiar with the concept).
>
> Android doesn't use the left/right swipe gesture as much as Apple iOS,
> but it does for some crucial things like changing from your home
> screen to another screen by swiping on your wall paper.  Also, there
> is a quick menu to various settings and features by dragging down from
> the top of the screen.  Finally, one of the things I was used to on
> the older versions of Android and what I had to enable was leaving the
> "Home bar" on the screen all the time and since I was used to the
> position, setting the back (left) arrow on that bar to the left end of
> it.  Much like Debian there is much to explore and learn.
>
> Typing on the screen is the very slowest thing I do as I want type a
> lot like on a real keyboard.  I have not adapted to thumbs only for
> typing after seven years and I doubt that I ever will.
>
> At the time I considered a Google Pixel but the lack of being able to
> insert a microSD card kept me away.  I don't know if their RF
> capability is better than this Sammy or not.
>
> - Nate

Its different, thats for sure, all I've ever used is a tracfone, hundred 
$ a year model, nothing but a phone. Camera is worthless. My boys have 
all got something like it, but so many buttons along the edge they can't 
call up a pix they want to show me but when I touch it I somehow push a 
button and it all goes away.  So they dig it out again and hold it for 
me. And I was bound that whatever I bought, wasn't going to have all 
those gotcha buttons on the edge.  That leaves the iphones on the 
counter. First thing is apparently a bigger memory card. Getting out the 
eject clip I see an empty hole for a u-sd, so I put a blank 64GB in it. 
It found it on power-up and I made it the default pix storage location. 
But while the cameras both look good I've not taken any rat eradicators 
yet. I need to get something here wifi enabled so I don't run my sprint 
bill up. Just getting the weather does that. I probably need to update 
my dd-wrt router and enable the wifi in it, but I'll have to set it so 
the neighbors are locked out, probably by catching this ones MAC and 
disallowing anything else.  I did have it on so my boys could use it 
when they were here, but found the neighbors were too, to the tune of 
about 100GB a month. So I turned that off, and have done the same with 
the pi4 running my big lathe, the neighbors were using that too.  Now 
I've an excuse to re-enable the radio. And you folks get to see an old 
fart, one whose kids intro as the smartest man in any building he's in, 
drug kicking and screaming, into the 21st century.  I am sure some 
hilarity will ensue.

Thanks Nate.  Stay safe and well.

Cheers, Gene Heskett
-- 
"There are four boxes to be used in defense of liberty:
 soap, ballot, jury, and ammo. Please use in that order."
-Ed Howdershelt (Author)
If we desire respect for the law, we must first make the law respectable.
 - Louis D. Brandeis
Genes Web page 

Re: waaay offtopic

[Nate Bargmann]

* On 2020 27 May 20:33 -0500, Carl Fink wrote:
> On 5/27/20 9:12 PM, Nate Bargmann wrote:
> > Typing on the screen is the very slowest thing I do as I want type a lot
> > like on a real keyboard.  I have not adapted to thumbs only for typing
> > after seven years and I doubt that I ever will.
> 
> I hate the glass keyboard. A BT keyboard is cheap
> and works well, and nobody carries them because
> we just want to stick the phones in our pockets.

I recall some of the early smart phone models having a slide-out
keyboard, the Blackberry being about the most popular, at least a lot of
techs where I used to work had them at the time.  I've always been leery
of putting my phone in my pocket as I figure it is more apt to get a
cracked screen that way.  I carry it in a case clipped on my belt.

So far the only cracked screen I've had was due to my old Motorola
dropping about 40 feet down the side of our upright silo hitting a
number of steps on the way down and then the last 15 to 20 feet onto
concrete unimpeded when I was putting an antenna up there.  My brother
had upgraded phones not long before and I was able to rob his old screen
and keep mine going a few more years.  He now has a cheap Motorola that
he got a couple of months after I got this Sammy and it has two cracks
in the screen.  Sigh...

- Nate

-- 

"The optimist proclaims that we live in the best of all
possible worlds.  The pessimist fears this is true."

Web: https://www.n0nb.us
Projects: https://github.com/N0NB
GPG fingerprint: 82D6 4F6B 0E67 CD41 F689 BBA6 FB2C 5130 D55A 8819



signature.asc
Description: PGP signature

Re: waaay offtopic

[Carl Fink]

On 5/27/20 9:12 PM, Nate Bargmann wrote:

Typing on the screen is the very slowest thing I do as I want type a lot
like on a real keyboard.  I have not adapted to thumbs only for typing
after seven years and I doubt that I ever will.


I hate the glass keyboard. A BT keyboard is cheap
and works well, and nobody carries them because
we just want to stick the phones in our pockets.

--
Carl Fink   nitpick...@nitpicking.com

Read my blog at blog.nitpicking.com.  Reviews!  Observations!

Re: waaay offtopic

[Nate Bargmann]

Hi Gene.

I've had the same exact model since last September.  Overall it's a good
phone except my older Motorola could get data and service in places this
one won't.  Getting used to Android in 2013 had me befuddled for a bit
but a bit with a tutorial got me going.  My A10e is running Android 9,
a.k.a. Pie.  One thing I have noticed is that in some settings screens
at the bottom (might have to scroll by dragging your finger along the
screen) there are links to related options.

Your finger(s) is the mouse.  There are a number of gestures that will
soon become second nature.  A lot is down by tapping one finger on an
icon/item or dragging it around the screen.  Zooming out and in is
usually a thumb and forefinger squeeze together or apart, respectively.
On some things an additional function is performed by pressing and
holding on the item (if you have an Elecraft K3 you'll be familiar with
the concept).

Android doesn't use the left/right swipe gesture as much as Apple iOS,
but it does for some crucial things like changing from your home screen
to another screen by swiping on your wall paper.  Also, there is a quick
menu to various settings and features by dragging down from the top of
the screen.  Finally, one of the things I was used to on the older
versions of Android and what I had to enable was leaving the "Home bar"
on the screen all the time and since I was used to the position, setting
the back (left) arrow on that bar to the left end of it.  Much like
Debian there is much to explore and learn.

Typing on the screen is the very slowest thing I do as I want type a lot
like on a real keyboard.  I have not adapted to thumbs only for typing
after seven years and I doubt that I ever will.

At the time I considered a Google Pixel but the lack of being able to
insert a microSD card kept me away.  I don't know if their RF capability
is better than this Sammy or not.

- Nate

-- 

"The optimist proclaims that we live in the best of all
possible worlds.  The pessimist fears this is true."

Web: https://www.n0nb.us
Projects: https://github.com/N0NB
GPG fingerprint: 82D6 4F6B 0E67 CD41 F689 BBA6 FB2C 5130 D55A 8819



signature.asc
Description: PGP signature

Re: waaay offtopic

[Will Mengarini]

* Gene Heskett  [20-05/27=We 14:48 -0400]:
> I need [...] to make a video call before the doc will renew the 
> prescription for pro-air thats keeping her alive.  COPD, end stage.

FYI, Medicare and Medicaid now (as of April 30) reimburse audio-only
visits at the same rate as video visits, to address exactly the
problem you're having (technology limiting medication access).

https://www.healthleadersmedia.com/finance/cms-announces-pay-parity-audio-only-telephone-visits

Of course that's U.S-only.  I couldn't tell whether you're
in the U.S because right now `whois` is unresponsive.  Also,
other U.S insurance alternatives may not have the same options.

-- 
 Will Mengarini  
KADAN: We're helping them to lead productive, happy lives.
RAVOC: By altering their memories?
KADAN: The treatment I provide improves their lives and makes them
  better workers.  In turn, our economy benefits.
RAVOC: You're profiting from this, aren't you?
KADAN: Doesn't a physician deserve to be compensated for his services?
-- from ST:Voy 7x17 "Workforce, Part II"

Re: waaay offtopic

[Charles Curley]

On Wed, 27 May 2020 14:48:53 -0400
Gene Heskett  wrote:

> I've been forced to buy a smartfone, a galaxy A10e TBE by the medics.
> I need to get it to make a video call before the doc will renew the 
> prescription for pro-air thats keeping her alive.  COPD, end stage.

I'm guessing the medics want a particular video call app. The medics or
the app vendors should have instructions on their respective web sites.

-- 
Does anybody read signatures any more?

https://charlescurley.com
https://charlescurley.com/blog/

Re: waaay offtopic (and solved.)

[Gene Heskett]

On Wednesday 27 May 2020 14:57:11 Joe wrote:

> On Wed, 27 May 2020 14:48:53 -0400
>
> Gene Heskett  wrote:
> > I've been forced to buy a smartfone, a galaxy A10e TBE by the
> > medics. I need to get it to make a video call before the doc will
> > renew the prescription for pro-air thats keeping her alive.  COPD,
> > end stage.
> >
> > Has anyone a link to a printable set of operating docs for this? 
> > All I can find are you-tube vids that go by faster than the guys
> > making them can talk, let along actually follow along.
>
> https://www.samsung.com/uk/support/model/SM-A105FZBUBTU/
>
> Try here. If it's recent, it's probably Android 10, which is model QQ
> in the downloads section. Beware, most Android help on the Net is for
> earlier versions, rarely specified, and 10 is a bit different.

Thanks, a bunch Joe. I found my google-fu was out of spec, but I found 
the real thing when I changed "tutorial" to "printable", and the first 
hit was it.  Just now punched it and put it in a slim 3 ring, 150 some 
pages.  And the doc is busy so I'll have a day or so to study it. 

Cheers, Gene Heskett
-- 
"There are four boxes to be used in defense of liberty:
 soap, ballot, jury, and ammo. Please use in that order."
-Ed Howdershelt (Author)
If we desire respect for the law, we must first make the law respectable.
 - Louis D. Brandeis
Genes Web page 

Re: waaay offtopic

[Carl Fink]

On 5/27/20 2:48 PM, Gene Heskett wrote:

I've been forced to buy a smartfone, a galaxy A10e TBE by the medics.
I need to get it to make a video call before the doc will renew the
prescription for pro-air thats keeping her alive.  COPD, end stage.

Has anyone a link to a printable set of operating docs for this?  All I
can find are you-tube vids that go by faster than the guys making them
can talk, let along actually follow along.


https://www.att.com/ecms/dam/att/devicesupport/ATT-A102U-EN-UM-TN-SFG-070319.pdf

--
Carl Fink   nitpick...@nitpicking.com

Read my blog at blog.nitpicking.com.  Reviews!  Observations!

Re: waaay offtopic

[Joe]

On Wed, 27 May 2020 14:48:53 -0400
Gene Heskett  wrote:

> I've been forced to buy a smartfone, a galaxy A10e TBE by the medics.
> I need to get it to make a video call before the doc will renew the 
> prescription for pro-air thats keeping her alive.  COPD, end stage.
> 
> Has anyone a link to a printable set of operating docs for this?  All
> I can find are you-tube vids that go by faster than the guys making
> them can talk, let along actually follow along.
> 

https://www.samsung.com/uk/support/model/SM-A105FZBUBTU/

Try here. If it's recent, it's probably Android 10, which is model QQ
in the downloads section. Beware, most Android help on the Net is for
earlier versions, rarely specified, and 10 is a bit different.

-- 
Joe