On Mon, Jan 16, 2012 at 08:23:33AM +0700, Pandu Poluan wrote
That depends on who are authorized to access the boxen via SSH. In my case,
only the IT Division is authorized to access them via SSH, so the real
sysadmin in me (g) decides it is much easier to shift the port rather than
On Monday 16 Jan 2012 01:35:04 Pandu Poluan wrote:
On Jan 16, 2012 12:58 AM, Walter Dnes waltd...@waltdnes.org wrote:
On Thu, Jan 12, 2012 at 06:30:03AM -0500, Tanstaafl wrote
This is nothing like changing the port for SSH - a port scanner can
figure that one out in seconds...
A
On Jan 17, 2012 6:11 AM, Mick michaelkintz...@gmail.com wrote:
On Monday 16 Jan 2012 01:35:04 Pandu Poluan wrote:
On Jan 16, 2012 12:58 AM, Walter Dnes waltd...@waltdnes.org wrote:
On Thu, Jan 12, 2012 at 06:30:03AM -0500, Tanstaafl wrote
This is nothing like changing the port for
On Jan 12, 2012 8:07 PM, Alan McKinnon alan.mckin...@gmail.com wrote:
, 8 snip
Changing the ssh port (and even crypto keys on DVDs) is just a
brain-dead approach, we agree on that. We rightfully rip a new one to
people advocating doing this.
Well, I *always* change my sshd ports, not
On 2012-01-15 3:50 AM, Pandu Poluan pa...@poluan.info wrote:
Well, I *always* change my sshd ports, not for added security, but
because I'm tired of seeing failed login attempts from China. The daily
log became *much* shorter after I moved the port somewhere else.
That is the *only* legitimate
On Sunday 15 Jan 2012 14:19:07 Tanstaafl wrote:
On 2012-01-15 3:50 AM, Pandu Poluan pa...@poluan.info wrote:
Well, I *always* change my sshd ports, not for added security, but
because I'm tired of seeing failed login attempts from China. The daily
log became *much* shorter after I moved the
On Thu, Jan 12, 2012 at 06:30:03AM -0500, Tanstaafl wrote
This is nothing like changing the port for SSH - a port scanner can
figure that one out in seconds...
A real BOFH would set up a dummy instance of sshd on the regular port,
as well as a real sshd instance on another port. The dummy
On 2012-01-15 12:54 PM, Walter Dnes waltd...@waltdnes.org wrote:
On Thu, Jan 12, 2012 at 06:30:03AM -0500, Tanstaafl wrote
This is nothing like changing the port for SSH - a port scanner can
figure that one out in seconds...
A real BOFH would set up a dummy instance of sshd on the regular
On Sun, 15 Jan 2012 12:54:51 -0500
Walter Dnes waltd...@waltdnes.org wrote:
On Thu, Jan 12, 2012 at 06:30:03AM -0500, Tanstaafl wrote
This is nothing like changing the port for SSH - a port scanner can
figure that one out in seconds...
A real BOFH would set up a dummy instance of
On Jan 16, 2012 3:56 AM, Alan McKinnon alan.mckin...@gmail.com wrote:
On Sun, 15 Jan 2012 12:54:51 -0500
Walter Dnes waltd...@waltdnes.org wrote:
On Thu, Jan 12, 2012 at 06:30:03AM -0500, Tanstaafl wrote
This is nothing like changing the port for SSH - a port scanner can
figure that
On Jan 16, 2012 12:58 AM, Walter Dnes waltd...@waltdnes.org wrote:
On Thu, Jan 12, 2012 at 06:30:03AM -0500, Tanstaafl wrote
This is nothing like changing the port for SSH - a port scanner can
figure that one out in seconds...
A real BOFH would set up a dummy instance of sshd on the
On Thursday 12 Jan 2012 14:06:26 Alan McKinnon wrote:
On Thu, 12 Jan 2012 08:58:02 -0500
Tanstaafl tansta...@libertytrek.org wrote:
But I still disagree. Would you also classify 'changing the locks on
your house' as security through obscurity? Because changing the
character set in PWM
On 2012-01-11 5:51 PM, Alan McKinnon alan.mckin...@gmail.com wrote:
2. Change the character set used (I always do this)
I like this one:-)
yes, I know it's really just security by obscurity in disguise but I
still like it.
Actually, I disagree vehemently that it is 'security through
On 2012-01-11 6:48 PM, Dale rdalek1...@gmail.com wrote:
That's why I like Lastpass. It fills them in for me so that I can have
a really nice strong password but I don't have to type it in each time.
Like I said, I like Lastpass too, but I simply do not like *storing* the
passwords somewhere,
On 2012-01-11 7:31 PM, Alan McKinnon alan.mckin...@gmail.com wrote:
Personally, I advocate using smart password generators like apg. The
password truly is a random distribution of junk, but one that can be
pronounced (a key factor in remembering it).
But that is the whole point... once you get
On 2012-01-12 6:39 AM, Tanstaafl tansta...@libertytrek.org wrote:
That, again, is why I like pwm... I only have to remember my 3 or 4
Master Passwords (and which category an account is in, but I have a
system and that is not a problem).
Oh... I have about 100 accounts in my passwordmaker
On Thu, 12 Jan 2012 06:30:03 -0500
Tanstaafl tansta...@libertytrek.org wrote:
On 2012-01-11 5:51 PM, Alan McKinnon alan.mckin...@gmail.com wrote:
2. Change the character set used (I always do this)
I like this one:-)
yes, I know it's really just security by obscurity in disguise but I
On 2012-01-12 8:03 AM, Alan McKinnon alan.mckin...@gmail.com wrote:
On Thu, 12 Jan 2012 06:30:03 -0500 Tanstaafl wrote:
On 2012-01-11 5:51 PM, Alan McKinnonalan.mckin...@gmail.com wrote:
yes, I know it's really just security by obscurity in disguise but I
still like it.
Actually, I
On Thu, 12 Jan 2012 08:58:02 -0500
Tanstaafl tansta...@libertytrek.org wrote:
So it's just a description, not an insult. Don't read it as such
Oh, I didn't, I did catch the 'but I still like it', sorry if my
reply made it sound like I was insulted ;)
But I still disagree. Would you
From: Alan McKinnon [mailto:alan.mckin...@gmail.com]
Sent: Wednesday, January 11, 2012 7:31 PM
To: gentoo-user@lists.gentoo.org
Subject: Re: [gentoo-user] Resetting the root passwd
On Wed, 11 Jan 2012 18:09:40 -0500
Mike Edenfield kut...@kutulu.org wrote:
I agree. Longer pass{words
On Thu, Jan 12, 2012 at 11:41:28AM -0500, Mike Edenfield wrote:
Actually, it's just the words purple RAIN with e/a/I replaced with 3/4/1;
I chose l33t-sp33k since I figured it was so over-used for password
generation that everyone would recognize it immediately :) But yes, I think
Randall's
On 2012-01-10 2:12 PM, Hinnerk van Bruinehsen
h.v.bruineh...@fu-berlin.de wrote:
The simpelest solution should be to copy the password-hash of a user
whose password is know to you.
Afterwards you can log in an change the password again.
Thanks, I like that better and it worked like a charm,
On Jan 11, 2012 5:57 PM, Tanstaafl tansta...@libertytrek.org wrote:
On 2012-01-10 2:12 PM, Hinnerk van Bruinehsen h.v.bruineh...@fu-berlin.de
wrote:
The simpelest solution should be to copy the password-hash of a user
whose password is know to you.
Afterwards you can log in an change the
On 2012-01-11 7:35 AM, Nilesh Govindarajan cont...@nileshgr.com wrote:
While booting, pass init=/bin/bash in the kernel command line
I did... otherwise, it still requires you to know the password... ;)
On Wed, 11 Jan 2012 07:26:07 -0500
Tanstaafl tansta...@libertytrek.org wrote:
On 2012-01-10 2:12 PM, Hinnerk van Bruinehsen
h.v.bruineh...@fu-berlin.de wrote:
The simpelest solution should be to copy the password-hash of a user
whose password is know to you.
Afterwards you can log in an
On 2012-01-11 9:16 AM, Alan McKinnon alan.mckin...@gmail.com wrote:
On Wed, 11 Jan 2012 07:26:07 -0500
Tanstaafltansta...@libertytrek.org wrote:
I couldn't live without Passwordmaker (Firefox Addon), with it, I can
have as strong and random passwords as I want on every site, it auto
fills the
On Wed, 11 Jan 2012 11:04:01 -0500, Tanstaafl wrote:
I couldn't live without Passwordmaker (Firefox Addon), with it, I can
have as strong and random passwords as I want on every site, it auto
fills the username/password for me (if it is a web login page), but
doesn't store any password
On 2012-01-11 11:27 AM, Neil Bothwick n...@digimed.co.uk wrote:
On Wed, 11 Jan 2012 11:04:01 -0500, Tanstaafl wrote:
I couldn't live without Passwordmaker (Firefox Addon), with it, I can
have as strong and random passwords as I want on every site, it auto
fills the username/password for me (if
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Neil Bothwick wrote:
On Wed, 11 Jan 2012 11:04:01 -0500, Tanstaafl wrote:
I couldn't live without Passwordmaker (Firefox Addon), with
it, I can have as strong and random passwords as I want on
every site, it auto fills the username/password
On Wed, 11 Jan 2012 11:35:57 -0500, Tanstaafl wrote:
So it stores the data and method needed to recreate the password, same
thing. Or does it not store the username, in which case you have to
use the same username everywhere?
It would be easier for you to understand how it works if you
Tanstaafl wrote:
On 2012-01-11 11:27 AM, Neil Bothwick n...@digimed.co.uk wrote:
On Wed, 11 Jan 2012 11:04:01 -0500, Tanstaafl wrote:
I couldn't live without Passwordmaker (Firefox Addon), with it, I can
have as strong and random passwords as I want on every site, it auto
fills the
On 2012-01-11 11:36 AM, Michael Mol mike...@gmail.com wrote:
Most of my passwords are some hash[1] of a common passcode[2] and some
site-specific or service-specific mnemonic. I imagine this would work
similarly, using the absolute URL in place of a mnemonic.
The downside would be if the server
On 2012-01-11 11:51 AM, Dale rdalek1...@gmail.com wrote:
I use Lastpass for my stuff. It is encypted locally but available
anywhere. It works pretty well.
Heard good things about it, but I prefer something that doesn't store
the passwords anywhere, ever...
These things sure beat trying to
Tanstaafl wrote:
On 2012-01-11 11:36 AM, Michael Mol mike...@gmail.com wrote:
Most of my passwords are some hash[1] of a common passcode[2] and some
site-specific or service-specific mnemonic. I imagine this would work
similarly, using the absolute URL in place of a mnemonic.
The downside
Tanstaafl wrote:
On 2012-01-11 11:51 AM, Dale rdalek1...@gmail.com wrote:
I use Lastpass for my stuff. It is encypted locally but available
anywhere. It works pretty well.
Heard good things about it, but I prefer something that doesn't store
the passwords anywhere, ever...
I have to many
On 2012-01-11 1:47 PM, Dale rdalek1...@gmail.com wrote:
Tanstaafl wrote:
On 2012-01-11 11:51 AM, Dale rdalek1...@gmail.com wrote:
I use Lastpass for my stuff. It is encypted locally but available
anywhere. It works pretty well.
Heard good things about it, but I prefer something that doesn't
Tanstaafl writes:
On 2012-01-11 11:51 AM, Dale rdalek1...@gmail.com wrote:
These things sure beat trying to remember a really strong password. My
bank and credit card passwords are off the chart.
Yeah, but what about those moron banks that only allow you to use
lowercase letters - and
Tanstaafl wrote:
On 2012-01-11 1:47 PM, Dale rdalek1...@gmail.com wrote:
Tanstaafl wrote:
On 2012-01-11 11:51 AM, Dale rdalek1...@gmail.com wrote:
I use Lastpass for my stuff. It is encypted locally but available
anywhere. It works pretty well.
Heard good things about it, but I prefer
On Wed, 11 Jan 2012 11:04:01 -0500
Tanstaafl tansta...@libertytrek.org wrote:
On 2012-01-11 9:16 AM, Alan McKinnon alan.mckin...@gmail.com wrote:
On Wed, 11 Jan 2012 07:26:07 -0500
Tanstaafltansta...@libertytrek.org wrote:
I couldn't live without Passwordmaker (Firefox Addon), with it, I
On 2012-01-11 3:56 PM, Alan McKinnon alan.mckin...@gmail.com wrote:
On Wed, 11 Jan 2012 11:04:01 -0500
Tanstaafltansta...@libertytrek.org wrote:
http://passwordmaker.org/
I haven't read the site yet, but just on the basis of your description,
all I'm seeing is a teeny-weeny amount of
On Wed, 11 Jan 2012 16:07:41 -0500
Tanstaafl tansta...@libertytrek.org wrote:
On 2012-01-11 3:56 PM, Alan McKinnon alan.mckin...@gmail.com wrote:
On Wed, 11 Jan 2012 11:04:01 -0500
Tanstaafltansta...@libertytrek.org wrote:
http://passwordmaker.org/
I haven't read the site yet, but
I tell you the right way todo it. Make it easy as possible, not so
difficult like the others in the thread!
Download system rescuecd (which is a nice gentoo system with lots of
beautiful tools running out of the box):
http://www.sysresccd.org/Download
download, burn and boot from the cd. This
On 2012-01-11 4:51 PM, Alan McKinnon alan.mckin...@gmail.com wrote:
The site doesn't say much. It has one page, no internal links (quite a
few external ones) and a single link to an image.
Weird... the wiki tree is gone... there are a *ton* of pages there, I'll
have to poke the maintainers...
Alan McKinnon wrote:
On Wed, 11 Jan 2012 16:07:41 -0500
Tanstaafl tansta...@libertytrek.org wrote:
On 2012-01-11 3:56 PM, Alan McKinnon alan.mckin...@gmail.com wrote:
On Wed, 11 Jan 2012 11:04:01 -0500
Tanstaafltansta...@libertytrek.org wrote:
http://passwordmaker.org/
I haven't read
On 2012-01-11 5:05 PM, Tanstaafl tansta...@libertytrek.org wrote:
Actually, it does, and once the site is back up I'll post here and you
can go read all about it...
Even weirder...
The menu tree is actually still there, but it is displayed way down the
page, so something definitely is
On Wed, 11 Jan 2012 17:08:04 -0500
Michael Mol mike...@gmail.com wrote:
I'm seriously unconvinced that concatenating words significantly
increases the difficulty of the problem. Just as a mentalist will
presume you're thinking about '7', your average demographic would
probably draw from a
On Wed, 11 Jan 2012 17:05:28 -0500
Tanstaafl tansta...@libertytrek.org wrote:
On 2012-01-11 4:51 PM, Alan McKinnon alan.mckin...@gmail.com wrote:
The site doesn't say much. It has one page, no internal links
(quite a few external ones) and a single link to an image.
Weird... the wiki tree
From: Alan McKinnon [mailto:alan.mckin...@gmail.com]
Sent: Wednesday, January 11, 2012 5:48 PM
On Wed, 11 Jan 2012 17:08:04 -0500
Michael Mol mike...@gmail.com wrote:
I'm seriously unconvinced that concatenating words significantly
increases the difficulty of the problem. Just as a
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 12.01.2012 00:09, Mike Edenfield wrote:
From: Alan McKinnon [mailto:alan.mckin...@gmail.com] Sent:
Wednesday, January 11, 2012 5:48 PM
On Wed, 11 Jan 2012 17:08:04 -0500 Michael Mol
mike...@gmail.com wrote:
I'm seriously unconvinced that
Alan McKinnon wrote:
On Wed, 11 Jan 2012 17:08:04 -0500
Michael Molmike...@gmail.com wrote:
I'm seriously unconvinced that concatenating words significantly
increases the difficulty of the problem. Just as a mentalist will
presume you're thinking about '7', your average demographic would
On Wed, 11 Jan 2012 17:48:50 -0600
Dale rdalek1...@gmail.com wrote:
On a security related question. Why does so many people have their
facebook accounts and other similar sites hacked? Do hackers just
guess their passwords or do they break into the websites? I have
facebook, myspace,
On Wed, 11 Jan 2012 18:09:40 -0500
Mike Edenfield kut...@kutulu.org wrote:
I agree. Longer pass{words,phrases} only increases the difficulty
of the problem, but not significantly so.
After I read the aforementioned xkcd comic, my main question was how
he defined the various bits of
Ok, I did something really dumb...
I changed the root passwd for a system I manage last week, but neglected
to write it down, and now what I *thought* I had changed it to isn't
working... I know, I know, really *really* dumb, but that's where I am...
I know I can boot into Single User mode,
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 10.01.2012 19:46, Tanstaafl wrote:
Ok, I did something really dumb...
I changed the root passwd for a system I manage last week, but
neglected to write it down, and now what I *thought* I had changed
it to isn't working... I know, I know,
On Tue, 10 Jan 2012 13:46:59 -0500
Tanstaafl tansta...@libertytrek.org wrote:
Ok, I did something really dumb...
I changed the root passwd for a system I manage last week, but
neglected to write it down, and now what I *thought* I had changed it
to isn't working... I know, I know, really
On Tue, Jan 10, 2012 at 08:12:53PM +0100, Hinnerk van Bruinehsen wrote:
On 10.01.2012 19:46, Tanstaafl wrote:
Ok, I did something really dumb...
I changed the root passwd for a system I manage last week, but
neglected to write it down, and now what I *thought* I had changed
it to isn't
Perfect answer Alan, many thanks...
On 2012-01-10 3:38 PM, Alan McKinnon alan.mckin...@gmail.com wrote:
On Tue, 10 Jan 2012 13:46:59 -0500
Tanstaafltansta...@libertytrek.org wrote:
Ok, I did something really dumb...
I changed the root passwd for a system I manage last week, but
neglected to
57 matches
Mail list logo