Re: [gentoo-user] OpenSSH upgrade warning

On 11/10/2015 11:13 AM, J. Roeleveld wrote: > > What would take longer? > brute-forcing your root-password or a 4096 byte ssh key? > My password, by a lot. The password needs to be brute-forced over the network, first of all. And a 4096-bit public encryption key doesn't provide 4096 bits of

Re: [gentoo-user] OpenSSH upgrade warning

On 11/10/2015 10:30 AM, Alan McKinnon wrote: >> Maybe, but your argument isn't convincing. How am I better off doing it >> your way (what is your way)? > > The most common way is to disallow all remote logins as root. Admins log > in with their personal unpriv account using an ssh key. To become

Re: [gentoo-user] OpenSSH upgrade warning

On Tuesday, November 10, 2015 10:58:48 AM Michael Orlitzky wrote: > On 11/10/2015 10:30 AM, Alan McKinnon wrote: > >> Maybe, but your argument isn't convincing. How am I better off doing it > >> your way (what is your way)? > > > > The most common way is to disallow all remote logins as root.

Re: [gentoo-user] OpenSSH upgrade warning

On 10/11/2015 16:47, Michael Orlitzky wrote: > On 11/09/2015 10:26 PM, Jeff Smelser wrote: >> >> The question is, why would you want root login? If your still using it, >> your doing it wrong. > > Maybe, but your argument isn't convincing. How am I better off doing it > your way (what is your

Re: [gentoo-user] OpenSSH upgrade warning

On 11/09/2015 10:26 PM, Jeff Smelser wrote: > > The question is, why would you want root login? If your still using it, > your doing it wrong. Maybe, but your argument isn't convincing. How am I better off doing it your way (what is your way)?

Re: [gentoo-user] Better CPU for compiling with gcc

On 2015-11-10 14:07, Stanislav Nikolov wrote: On 11/10/2015 08:55 PM, Alan McKinnon wrote: On 10/11/2015 20:37, Stanislav Nikolov wrote: On 11/10/2015 08:17 PM, Mick wrote: On Tuesday 10 Nov 2015 17:47:08 Stanislav Nikolov wrote: Dear Gentoo users, I'm building a new PC. I have a budget

Re: [gentoo-user] OpenSSH upgrade warning

On Tue, Nov 10, 2015 at 11:55 AM, Michael Orlitzky wrote: > On 11/10/2015 01:26 PM, Alan McKinnon wrote: > > > > I think you are approaching this problem from the wrong viewpoint. You > > have to assume an attacker has vastly more resources to bear on the > > problem than you

Re: [gentoo-user] OpenSSH upgrade warning

On 11/10/2015 09:25 PM, Michael Orlitzky wrote: > On 11/10/2015 02:23 PM, Stanislav Nikolov wrote: >> Are you sure you know how such keys work? An extremely 15 character >> password (Upper case, lower case, numbers, 8 more symbols) gives you >> ~4747561509943000 combinations. Just a

Re: [gentoo-user] Better CPU for compiling with gcc

On Tuesday 10 Nov 2015 17:47:08 Stanislav Nikolov wrote: > Dear Gentoo users, > I'm building a new PC. I have a budget of ~$550-$650. No GPU, no special > case (I may use a card box), not even a hdd or ssd. So, as you can see, > it's pretty much "get the best CPU and mobo/ram that are compatible

Re: [gentoo-user] OpenSSH upgrade warning

On 10/11/2015 17:58, Michael Orlitzky wrote: > On 11/10/2015 10:30 AM, Alan McKinnon wrote: >>> Maybe, but your argument isn't convincing. How am I better off doing it >>> your way (what is your way)? >> >> The most common way is to disallow all remote logins as root. Admins log >> in with their

Re: [gentoo-user] OpenSSH upgrade warning

On 11/10/2015 01:26 PM, Alan McKinnon wrote: > > I think you are approaching this problem from the wrong viewpoint. You > have to assume an attacker has vastly more resources to bear on the > problem than you have. Thanks to Amazon and the cloud, this is now a > very true reality. Brute force

Re: [gentoo-user] OpenSSH upgrade warning

On 11/10/2015 11:26 AM, Michael Orlitzky wrote: > On 11/10/2015 11:13 AM, J. Roeleveld wrote: >> >> What would take longer? >> brute-forcing your root-password or a 4096 byte ssh key? >> > > My password, by a lot. The password needs to be brute-forced over the > network, first of all. I realized

Re: [gentoo-user] Better CPU for compiling with gcc

On 11/10/2015 08:55 PM, Alan McKinnon wrote: > On 10/11/2015 20:37, Stanislav Nikolov wrote: >> >> On 11/10/2015 08:17 PM, Mick wrote: >>> On Tuesday 10 Nov 2015 17:47:08 Stanislav Nikolov wrote: Dear Gentoo users, I'm building a new PC. I have a budget of ~$550-$650. No GPU, no

Re: [gentoo-user] OpenSSH upgrade warning

I am going to stop this convo. As soon as you say it cant be brute forced, I am going to move on. Good luck with that. On Tue, Nov 10, 2015 at 12:17 PM, Michael Orlitzky wrote: > On 11/10/2015 02:00 PM, Jeff Smelser wrote: > > > > I guess from this your assuming that everyones

Re: [gentoo-user] Better CPU for compiling with gcc

On 10/11/2015 21:07, Stanislav Nikolov wrote: > > > On 11/10/2015 08:55 PM, Alan McKinnon wrote: >> On 10/11/2015 20:37, Stanislav Nikolov wrote: >>> >>> On 11/10/2015 08:17 PM, Mick wrote: On Tuesday 10 Nov 2015 17:47:08 Stanislav Nikolov wrote: > Dear Gentoo users, > I'm building

Re: [gentoo-user] OpenSSH upgrade warning

On 11/10/2015 02:23 PM, Stanislav Nikolov wrote: > > > On 11/10/2015 09:17 PM, Michael Orlitzky wrote: >> On 11/10/2015 02:00 PM, Jeff Smelser wrote: >>> I guess from this your assuming that everyones passwords that >>> have been hacked are god, birthdays and such? >>> >> Again: assume that I'm

[gentoo-user] Better CPU for compiling with gcc

Dear Gentoo users, I'm building a new PC. I have a budget of ~$550-$650. No GPU, no special case (I may use a card box), not even a hdd or ssd. So, as you can see, it's pretty much "get the best CPU and mobo/ram that are compatible with it". The problem is, which is the best one. By "best" I

Re: [gentoo-user] Better CPU for compiling with gcc

On 11/10/2015 08:17 PM, Mick wrote: > On Tuesday 10 Nov 2015 17:47:08 Stanislav Nikolov wrote: >> Dear Gentoo users, >> I'm building a new PC. I have a budget of ~$550-$650. No GPU, no special >> case (I may use a card box), not even a hdd or ssd. So, as you can see, >> it's pretty much "get the

Re: [gentoo-user] OpenSSH upgrade warning

On 11/10/2015 02:23 PM, Stanislav Nikolov wrote: >> > Are you sure you know how such keys work? An extremely 15 character > password (Upper case, lower case, numbers, 8 more symbols) gives you > ~4747561509943000 combinations. Just a simple 2048 bit > key on the other hand (~180 of

Re: [gentoo-user] Better CPU for compiling with gcc

On 10/11/2015 20:37, Stanislav Nikolov wrote: > > > On 11/10/2015 08:17 PM, Mick wrote: >> On Tuesday 10 Nov 2015 17:47:08 Stanislav Nikolov wrote: >>> Dear Gentoo users, >>> I'm building a new PC. I have a budget of ~$550-$650. No GPU, no special >>> case (I may use a card box), not even a hdd

Re: [gentoo-user] OpenSSH upgrade warning

On 11/10/2015 02:00 PM, Jeff Smelser wrote: > > I guess from this your assuming that everyones passwords that have been > hacked are god, birthdays and such? > Again: assume that I'm not an idiot, and that I know how to choose a long, random password. It cannot be brute-forced. And if it could,

Re: [gentoo-user] OpenSSH upgrade warning

On 11/10/2015 09:17 PM, Michael Orlitzky wrote: > On 11/10/2015 02:00 PM, Jeff Smelser wrote: >> I guess from this your assuming that everyones passwords that have been >> hacked are god, birthdays and such? >> > Again: assume that I'm not an idiot, and that I know how to choose a > long, random

Re: [gentoo-user] OpenSSH upgrade warning

On 11/10/2015 09:31 PM, Michael Orlitzky wrote: > On 11/10/2015 02:23 PM, Stanislav Nikolov wrote: >> >> On 11/10/2015 09:17 PM, Michael Orlitzky wrote: >>> On 11/10/2015 02:00 PM, Jeff Smelser wrote: I guess from this your assuming that everyones passwords that have been hacked are

Re: [gentoo-user] OpenSSH upgrade warning

Michael Orlitzky wrote: > On 11/10/2015 11:13 AM, J. Roeleveld wrote: > > > > What would take longer? > > brute-forcing your root-password or a 4096 byte ssh key? > > > > My password, by a lot. The password needs to be brute-forced over the > network, first of all. > > And a

Re: [gentoo-user] OpenSSH upgrade warning

On 11/10/2015 02:32 PM, Stanislav Nikolov wrote: > > > On 11/10/2015 09:25 PM, Michael Orlitzky wrote: >> On 11/10/2015 02:23 PM, Stanislav Nikolov wrote: >>> Are you sure you know how such keys work? An extremely 15 character >>> password (Upper case, lower case, numbers, 8 more symbols) gives

Re: [gentoo-user] OpenSSH upgrade warning

On 11/10/2015 04:11 PM, waben...@gmail.com wrote: > > You can disable password login for that user on the server. Then he > can only login via ssh key. Only with the knowledge of the root > password it is not possible to gain root access to the server. An > attacker also needs the ssh key. And

Re: [gentoo-user] OpenSSH upgrade warning

Michael Orlitzky wrote: > On 11/10/2015 04:11 PM, waben...@gmail.com wrote: >> You can disable password login for that user on the server. Then he >> can only login via ssh key. Only with the knowledge of the root >> password it is not possible to gain root access to the server. An >> attacker

Re: [gentoo-user] Better CPU for compiling with gcc

Alan McKinnon wrote: > On 10/11/2015 21:07, Stanislav Nikolov wrote: >> >> 8GB of RAM are waaay more than I use daily (several firefox tabs, nvim = 2Gb >> max), I have a pretty fast SSD too. Even buying 8GB RAM and a brand new SSD, >> I have > $450 left. Can I buy a AMD CPU that will get the job

Re: [gentoo-user] OpenSSH upgrade warning

Again, your not understanding that brute force is not entirely how you think it works. As a former employee of a large tech company. They are much more cunning how they do it these days.. If you wanted to break into an account, would you really start with a and work your way up? Come on.

Re: [gentoo-user] OpenSSH upgrade warning

Michael Orlitzky wrote: > On 11/10/2015 03:52 PM, waben...@gmail.com wrote: > > > > That's right. If an attacker has the full control over your machine > > then it doesn't make any difference. > > > > But if he can only see what you are typing, for example by a > > keylogger

Re: [gentoo-user] OpenSSH upgrade warning

On 11/10/2015 03:52 PM, waben...@gmail.com wrote: > > That's right. If an attacker has the full control over your machine > then it doesn't make any difference. > > But if he can only see what you are typing, for example by a keylogger > or by detecting the electromagentic radiation of your

Re: [gentoo-user] printing problems

On Mon, Nov 02, 2015 at 05:01:26PM -0800, Daniel Frey wrote: > On 11/02/2015 04:46 PM, Philip Webb wrote: > > 151101 Daniel Frey wrote: > >> I had so many problems with hplip I stopped using it. I found another way > >> to use my hp CP1025nw with foomatic and that works trouble-free. > > > >

Re: [gentoo-user] OpenSSH upgrade warning

Hello, Jeff. On Mon, Nov 09, 2015 at 08:26:27PM -0700, Jeff Smelser wrote: > On Mon, Nov 9, 2015 at 6:38 PM, Michael Orlitzky wrote: > > A major upgrade to OpenSSH is being stabilized: > > https://bugs.gentoo.org/show_bug.cgi?id=18 > > The default of PermitRootLogin for

Re: [gentoo-user] OpenSSH upgrade warning

On Tue, 10 Nov 2015 09:53:52 +, Alan Mackenzie wrote: > By the way, anybody, what's the alternative to a password login when you > need to login remotely as root? key login, set "PermitRootLogin without-password" and add your public keys to .ssh/authorized_keys -- Neil Bothwick WINDOWS:

Re: [gentoo-user] OpenSSH upgrade warning

On 10/11/2015 11:53, Alan Mackenzie wrote: Hello, Jeff. On Mon, Nov 09, 2015 at 08:26:27PM -0700, Jeff Smelser wrote: On Mon, Nov 9, 2015 at 6:38 PM, Michael Orlitzky wrote: A major upgrade to OpenSSH is being stabilized:

Re: [gentoo-user] bring back emerge to terminal window

On Wednesday 11 Nov 2015 06:47:00 Alon Bar-Lev wrote: > Checkout app-misc/reptyr > Also consider emerging within screen or tmux, so that you can re-attach the terminal from any machine. -- Regards, Mick signature.asc Description: This is a digitally signed message part.

[gentoo-user] can't login

Hello, After doing a reset, I can't login. on trying to enter password I get for a second a screen which "This is gentoo unkown_domain", and then it get back to the login screen. I login using tty (alt_ctrl+f1) and changed the user password, but on trying to login again in the graphic logic, it

[gentoo-user] bring back emerge to terminal window

I was running and emerge -uDNavq world and accidentally closed the terminal window. I know the process ID as it is still running. ps fax |grep emerge -- 19131 pts/1 SN+ 4:03 | | \_ /usr/bin/python3.4 -b /usr/lib/python-exec/python3.4/emerge -uDNavq world Is there a way to ring it back to a

Re: [gentoo-user] bring back emerge to terminal window

Checkout app-misc/reptyr On 11 November 2015 at 08:38, wrote: > I was running and emerge -uDNavq world and accidentally closed the > terminal window. > I know the process ID as it is still running. > > ps fax |grep emerge > -- 19131 pts/1 SN+ 4:03 | | \_

Re: [gentoo-user] OpenSSH upgrade warning

Dale wrote: > Michael Orlitzky wrote: > > On 11/10/2015 04:11 PM, waben...@gmail.com wrote: > >> You can disable password login for that user on the server. Then > >> he can only login via ssh key. Only with the knowledge of the root > >> password it is not possible to gain

Re: [gentoo-user] OpenSSH upgrade warning

On Mon, Nov 09, 2015 at 08:38:20PM -0500, Michael Orlitzky wrote > A major upgrade to OpenSSH is being stabilized: > > https://bugs.gentoo.org/show_bug.cgi?id=18 > > The default of PermitRootLogin for sshd in the new version is > "prohibit-password". If you typically log in to the root

Re: [gentoo-user] Bind stole my /

On Tue, Nov 10, 2015 at 12:32 AM, Mike Gilbert wrote: > On Mon, Nov 9, 2015 at 2:36 PM, Jarry wrote: >> On 08-Nov-15 17:58, Mike Gilbert wrote: >>> On Fri, Nov 6, 2015 at 12:19 PM, Jarry wrote: I noted one strange thing

[gentoo-user] reading data cd/dvd

All my machines run gentoo / systemd / gnome3 On my older laptop when I plug in a data cd I get a popup suggesting that I open it with files. All is well On my newer laptop the disk spins up but no popup appears. What must I configure? On the old machine there is a directory /run/media/ with a