Re: Looking for an intern to play with a Linux-powered robot fleet

[Dan Garthwaite]

Forwarded to a local head of a first robotics team.
On Aug 1, 2015 10:23 AM, Paul Beaudet inof...@gmail.com wrote:

 By the looks of it I would assume Joshua's company is offering paid work.
 That type of, even green talent is fairly sought after. Plus unpaid is
 actually
 very legally sketchy ground when it renders something useful to the
 offering
 company.

 In response to Greg's humorous comment. I recently got an unpaid
 proposition like that.
 Guess its understandable when the entrepreneur is one broke person trying
 to scrap something
 out of nothing (which it is in the case of my offer).
 Maybe I'm only sympathetic because been that person myself.
 However I feel like in our industry if one has put their time in they
  likely have something to offer beyond a reference or a potential cut of
 kickstarter in return.

 For example I'm looking for a couple of details that would be nice (but
 not necessary)
 to help my open source project and maybe my business.
  **The project is a chorded keyer that looks to ease the learning curve of
 typing.
 Looking for
  --- PCB design files
  --- Case Design files (maybe make some prints given access to an
 affordable option)
  --- Assistance with a prototype type correction system (node or python)
  --- Help getting into OpenCV, webRTC, Sockets.io (or other interest)
 Offering
  --- Assistance with a organizing and structuring a complex arduino or
 like embedded project
   into manageable asynchronous pieces.
  --- Help getting into to C/C++, Python, Node, Express.js, MongoDB,
  --- Written help with presenting your project to others, like scripting a
 video

 Maybe that example is less hypothetical than I had intended...
 Sorry for the digression Joshua,

 On Fri, Jul 31, 2015 at 3:22 PM, Greg Rundlett (freephile) 
 g...@freephile.com wrote:

 On Fri, Jul 31, 2015 at 3:17 PM, Greg Rundlett (freephile) 
 g...@freephile.com wrote:

 Is this an unpaid internship?


  If so, I'm wondering how different this is compared to:

 I'm looking for a musician with some real experience, preferably with
 record deals and verifiable quality to play at my bbq.
 Ideally will also assist with grilling and cleanup.
 Experience mixing drinks a plus.
 Entertaining personality is a must.
 Please provide own transportation, setup and sound equipment.
 This is just a one-day event, and all my friends will be there so please
 be punctual.
 Thanks, we'll give you good references and since I have a lot of friends,
 you might get some work out of it.  And who knows, I could always throw
 some more parties in the future so there's a lot in it for you.

 ps. this is not a personal attack, I'm seriously wondering if this is
 what current CS grads have to look forward to.  My High School son is
 working right now for $9/hr and I have to give him good advice on what
 career path to follow.


 On Fri, Jul 31, 2015 at 1:15 AM, Joshua Judson Rosen 
 roz...@hackerposse.com wrote:

 Guys,

 I'm currently looking for an intern to come play with my company's
 Linux-powered
 autonomous robot fleet this summer: Harvest Automation 
 http://www.harvestai.com
 is looking to give one bright individual some industrial experience
 that includes:

 * Working with actual robots, simulations, testers, operations
 people,
   and developers to help solve issues in the application,
 network,
   and operating environments.

 * Creating test plans, test cases, and conditions for testing of
   the robot software (both on actual hardware, running around in
   the real world, and in simulation) from information in
 specifications,
   feature descriptions, or bug-reports.

 * Creation of test cases that address software scenarios, system
   testing, regression testing, negative testing, error or defect
   retest, performance monitoring and usability

 * Reproducing and resolving software issues with the database,
   UI, or communication protocol

 * Implementing a software solution from a requirement
   description within the code base using the database, UI, or
   communication protocol

 * Updating test results and requirement descriptions in
   our issue-tracker

 * Assisting in system set-up and software installation

 * Assisting in the installation/configuration of re-creations
   of the software production environments

 We're in Billerica, MA (~14 miles south of Nashua).

 We're really hoping to find someone who's already got a reasonably
 good grasp on what software-development entails; my boss has been
 recruit from the college CS programs around Boston, and is expecting
 to find someone working on a Master's CS Degree; I suspect that
 we'd do well to open up the search a bit--that there's probably
 someone on the list either who knows someone in college or high school
 (or *whatever*) who's already savvy enough to have read some of
 the more 

Re: Virtual machine host provider recommendations

[Dan Garthwaite]

I second Linode.com.  Been a fan for years.
___
gnhlug-discuss mailing list
gnhlug-discuss@mail.gnhlug.org
http://mail.gnhlug.org/mailman/listinfo/gnhlug-discuss/

Re: Nagios External Commands

[Dan Garthwaite]

Things to check:
command_check_interval=-1
command_file=/usr/local/nagios/var/rw/nagios.cmd

Make sure command_file is readable by nagios user.

What does the nagios log say?
  /var/log/nagios/nagios.log  (or somesuch)

Usually it is a permissions error.




On Fri, Oct 30, 2015 at 1:46 PM, Kenny Lussier  wrote:

> Hi All,
>
> I find myself back to working with Nagios after a long hiatus of using
> much friendlier monitoring systems
>
> I'm trying to set up snmp trap monitoring, which I've dome in the past,
> but I'm missing something that I just can't seem get. I can send a trap
> from a system, the trap is received by the trap catcher, it's handed off to
> snmptt for translation, which uses the EXEC line to put an external command
> in the nagios.cmd file. That all works. But notifications aren't sent, and
> the status of the service never changes.
>
> So:
>
> snmptrap -v 2c -c public util1 '' .1.3.6.1.6.3.1.1.5.5 ## runs on util2
>
>
> Fri Oct 30 17:42:03 2015 .1.3.6.1.6.3.1.1.5.5 Normal "Status Events" util2
> - An authenticationFailure trap signifies that the SNMP  ## Shows up on
> util1 in snmptt.log
>
> [1446226923] PROCESS_SERVICE_CHECK_RESULT;util2;TRAP;1;An
> authenticationFailure trap signifies that the SNMP  ## Shows up in
> nagios.cmd
>
> So, it appears that everything is set up correctly, but Nagios isn't
> processing the external service check command and setting the status to
> warning and sending me an email.
>
>
> Any ideas?
>
> TIA,
> Kenny
>
>
>
> My configs look like this:
>
> define service {
> nameTRAP
> service_description TRAP
> active_checks_enabled   0   ; Active service checks are enabled
> passive_checks_enabled  1   ; Passive service checks are
> enabled/accepted
> process_perf_data   0
> obsess_over_service 0   ; We should obsess over this
> service (if necessary)
> check_freshness 1   ; Default is to NOT check service
> 'freshness'
> freshness_threshold 93600
> notifications_enabled   1   ; Service notifications are enabled
> event_handler_enabled   1   ; Service event handler is enabled
> flap_detection_enabled  0   ; Flap detection is enabled
> process_perf_data   1   ; Process performance data
> retain_status_information   1   ; Retain status information across
> program restarts
> retain_nonstatus_information1   ; Retain non-status information
> across program restarts
> check_command   check-host-alive  ; This will be used
> to reset the service to "OK"
> is_volatile 1
> check_period24x7
> max_check_attempts  1
> normal_check_interval   1
> retry_check_interval100
> notification_interval   1
> notification_period 24x7
> notification_optionsw,u,c,r
> contact_groups  klussier   ; Modify this to match your
> Nagios contact group definitions
> register0
> }
>
> define contact{
> contact_nameklussier
> alias   klussier
> service_notification_period 24x7
> host_notification_period24x7
> service_notification_optionsw,u,c,r
> host_notification_options   d,u,r
> service_notification_commands   notify-by-email
> host_notification_commands  host-notify-by-email
> email   klussier@
> }
>
> define contactgroup{
> contactgroup_name   klussier
> alias   klussier
> members klussier
> }
>
>
> define service{
>host_name   util2
>use TRAP
>contact_groups  klussier
> }
>
> ___
> gnhlug-discuss mailing list
> gnhlug-discuss@mail.gnhlug.org
> http://mail.gnhlug.org/mailman/listinfo/gnhlug-discuss/
>
>
___
gnhlug-discuss mailing list
gnhlug-discuss@mail.gnhlug.org
http://mail.gnhlug.org/mailman/listinfo/gnhlug-discuss/

Re: Nagios External Commands

[Dan Garthwaite]

If you are on debian or ubuntu:
less /usr/share/doc/nagios-common/README.Debian

On Fri, Oct 30, 2015 at 2:40 PM, Dan Garthwaite <d...@garthwaite.org> wrote:

> Things to check:
> command_check_interval=-1
> command_file=/usr/local/nagios/var/rw/nagios.cmd
>
> Make sure command_file is readable by nagios user.
>
> What does the nagios log say?
>   /var/log/nagios/nagios.log  (or somesuch)
>
> Usually it is a permissions error.
>
>
>
>
> On Fri, Oct 30, 2015 at 1:46 PM, Kenny Lussier <kluss...@gmail.com> wrote:
>
>> Hi All,
>>
>> I find myself back to working with Nagios after a long hiatus of using
>> much friendlier monitoring systems
>>
>> I'm trying to set up snmp trap monitoring, which I've dome in the past,
>> but I'm missing something that I just can't seem get. I can send a trap
>> from a system, the trap is received by the trap catcher, it's handed off to
>> snmptt for translation, which uses the EXEC line to put an external command
>> in the nagios.cmd file. That all works. But notifications aren't sent, and
>> the status of the service never changes.
>>
>> So:
>>
>> snmptrap -v 2c -c public util1 '' .1.3.6.1.6.3.1.1.5.5 ## runs on util2
>>
>>
>> Fri Oct 30 17:42:03 2015 .1.3.6.1.6.3.1.1.5.5 Normal "Status Events"
>> util2 - An authenticationFailure trap signifies that the SNMP  ## Shows up
>> on util1 in snmptt.log
>>
>> [1446226923] PROCESS_SERVICE_CHECK_RESULT;util2;TRAP;1;An
>> authenticationFailure trap signifies that the SNMP  ## Shows up in
>> nagios.cmd
>>
>> So, it appears that everything is set up correctly, but Nagios isn't
>> processing the external service check command and setting the status to
>> warning and sending me an email.
>>
>>
>> Any ideas?
>>
>> TIA,
>> Kenny
>>
>>
>>
>> My configs look like this:
>>
>> define service {
>> nameTRAP
>> service_description TRAP
>> active_checks_enabled   0   ; Active service checks are
>> enabled
>> passive_checks_enabled  1   ; Passive service checks are
>> enabled/accepted
>> process_perf_data   0
>> obsess_over_service 0   ; We should obsess over this
>> service (if necessary)
>> check_freshness 1   ; Default is to NOT check service
>> 'freshness'
>> freshness_threshold 93600
>> notifications_enabled   1   ; Service notifications are
>> enabled
>> event_handler_enabled   1   ; Service event handler is enabled
>> flap_detection_enabled  0   ; Flap detection is enabled
>> process_perf_data   1   ; Process performance data
>> retain_status_information   1   ; Retain status information
>> across program restarts
>> retain_nonstatus_information1   ; Retain non-status information
>> across program restarts
>> check_command   check-host-alive  ; This will be used
>> to reset the service to "OK"
>> is_volatile 1
>> check_period24x7
>> max_check_attempts  1
>> normal_check_interval   1
>> retry_check_interval100
>> notification_interval   1
>> notification_period 24x7
>> notification_optionsw,u,c,r
>> contact_groups  klussier   ; Modify this to match
>> your Nagios contact group definitions
>> register0
>> }
>>
>> define contact{
>> contact_nameklussier
>> alias   klussier
>> service_notification_period 24x7
>> host_notification_period24x7
>> service_notification_optionsw,u,c,r
>> host_notification_options   d,u,r
>> service_notification_commands   notify-by-email
>> host_notification_commands  host-notify-by-email
>> email   klussier@
>> }
>>
>> define contactgroup{
>> contactgroup_name   klussier
>> alias   klussier
>> members klussier
>> }
>>
>>
>> define service{
>>host_name   util2
>>use TRAP
>>contact_groups  klussier
>> }
>>
>> ___
>> gnhlug-discuss mailing list
>> gnhlug-discuss@mail.gnhlug.org
>> http://mail.gnhlug.org/mailman/listinfo/gnhlug-discuss/
>>
>>
>
___
gnhlug-discuss mailing list
gnhlug-discuss@mail.gnhlug.org
http://mail.gnhlug.org/mailman/listinfo/gnhlug-discuss/

Re: Opinions on Tor?

[Dan Garthwaite]

I think the concern is that it was a tor node - and nefarious bits would be
embedded in the packets and no one would know.

On Fri, Sep 11, 2015 at 12:26 PM, Thomas Charron  wrote:

> On Thu, Sep 10, 2015 at 4:43 PM, jsf  wrote:
>
>> I believe TOR, although it, (like anything) can be used for ill/evil,
>> is essentially an important tool for good.  Thanks for the link to the
>> EFF petition. Shared it.
>
>
>
>   It occured to me, but, if they're concerned about it's use, can't the
> tor ode simply be behind a firewall, and provide the sample protections as
> any other joe shmoe who's at the library?
>
> --
> -- Thomas
>
> ___
> gnhlug-discuss mailing list
> gnhlug-discuss@mail.gnhlug.org
> http://mail.gnhlug.org/mailman/listinfo/gnhlug-discuss/
>
>
___
gnhlug-discuss mailing list
gnhlug-discuss@mail.gnhlug.org
http://mail.gnhlug.org/mailman/listinfo/gnhlug-discuss/

Re: New malware at work? Fake referrer 11m.php and trying various .asp URLs.

[Dan Garthwaite]

afraid.org is a community-driven dynamic DNS provider.
You can donate domain names to it and they make subdomains of those domain
names available to everyone.

That said - it is certainly abused by bad guys, too.

  -dan


On Wed, Dec 2, 2015 at 11:50 AM, Joshua Judson Rosen  wrote:

> On 2015-12-02 08:41, Ric Werme wrote:
> > Oh how cute.  After a break yesterday AM, the "assault" resumed.  One
> new actor
> > is from abuser.eu.  My guess is that's an official site that is
> investigating
> > the malware, as the registration info is impossibly brief:
> >
> > $ whois abuser.eu
> >
> >   Domain: abuser.eu
> >
> >   Registrant:
> >   NOT DISCLOSED!
> >   Visit www.eurid.eu for webbased whois.
> [...]
> > Oh - that's just boilerplate and probably prints on all queries
>
> The info in the `webbased whois' is a little weird, too:
>
> Registrant:
> Language: English
> Email: abuser...@gmail.com
>
> Onsite:
> Name: Hostmaster Of The Day
> Organisation: InterNetworX Ltd. & Co. KG
>
>
> Either it's actually owned/operated by InterNetworX, or
> whoever owns that domain is effectively behind two layers
> of `registrant privacy' obfuscation (one being the .eu
> `we really do whois--go see the website instead' thing;
> the second layer being the lack of real info from the registrar).
>
> Information that we _can_ glean from the absuer.eu whois data
> is that their DNS is hosted by afraid.org. Not sure what that
> tells us. If it's just forward DNS, I'd take the afraid.org DNS
> as suggesting that it's probably a personal machine on a consumer
> internet connection. But if you're getting "abuser.eu" from a
> *reverse* lookup, that's presumably not the case.
>
> But if a major organisation (InterNetworX?) actually owns the domain,
> why is the contact address something at gmail.com?
>
> --
> "Don't be afraid to ask (λf.((λx.xx) (λr.f(rr."
> ___
> gnhlug-discuss mailing list
> gnhlug-discuss@mail.gnhlug.org
> http://mail.gnhlug.org/mailman/listinfo/gnhlug-discuss/
>
___
gnhlug-discuss mailing list
gnhlug-discuss@mail.gnhlug.org
http://mail.gnhlug.org/mailman/listinfo/gnhlug-discuss/

Re: What Language for a kid

[Dan Garthwaite]

Python is the defacto intro language at colleges now.

I'm not sure what step one is to learn python but step two is
http://pythontutor.com

Click 'python' on the first page and then on each of the sample apps press
'Forward' until completion. That is pretty much all of computer science
10[0-9].

As for step 1?  Maybe http://checkio.com but I think that would be
overwhelming.



On Wed, Dec 23, 2015 at 11:24 AM, Kenny Lussier  wrote:

> Hi All,
>
> My daughter has expressed an interest in learning to code. It's a
> non-specific, very general interest. She doesn't have a specific area of
> interest that she wants to learn (UI, game development, HPC, etc.), she
> just want to learn how to code.
>
> What do people think is the best language for a 12yr old to learn? What is
> most flexible to use for different purposes? What tools are out there to
> teach a kid to code? Code Academy and the like seem to be a little dry and
> never yielded wonderful results for most of the adults I know, so other
> ideas would be welcome.
>
> Thanks,
> Kenny
>
>
> ___
> gnhlug-discuss mailing list
> gnhlug-discuss@mail.gnhlug.org
> http://mail.gnhlug.org/mailman/listinfo/gnhlug-discuss/
>
>
___
gnhlug-discuss mailing list
gnhlug-discuss@mail.gnhlug.org
http://mail.gnhlug.org/mailman/listinfo/gnhlug-discuss/

Re: Weird keyboard problems....

[Dan Garthwaite]

No. That is strange.  Try both control keys at the same time. The keyboard
controller will do a story if soft reset. (Ancient trick)
On Feb 7, 2016 3:55 AM, "Joshua Judson Rosen" 
wrote:

> So, this may be only marginally on-topic at best..., but
>
> I've got this weird problem with the keyboard on my laptop: I've got
> a bunch of keys that intermittently become dependent on some other keys.
>
> Every so often, the Y, U, J, 9, comma, Enter, and Home keys all stop
> working
> unless I hold down either W or left Shift or Caps Lock. Then they actually
> trigger (though not in a way that's useful since I'm holding down other
> keys
> that prevents software from interpreting them in the normal way...).
>
> I gather that the Y, U, J, 9, comma, Enter, and Home keys are all sharing
> a signal line or something, which would explain why they all go out
> together;
> how holding other keys effectively routes around that damage..., I'm
> clueless.
>
> But I think my question is: how likely is this to be caused by some sort
> of debris or
> corrosion somewhere (under one of the keys? on the contacts on the
> ribbon-cable?),
> and, if so, what would be the right (non-destructive) way of clearing it
> out?
>
> This can't possibly be a software issue, right?
>
> Anyone dealt with anything like this before?
>
> --
> "Don't be afraid to ask (λf.((λx.xx) (λr.f(rr."
> ___
> gnhlug-discuss mailing list
> gnhlug-discuss@mail.gnhlug.org
> http://mail.gnhlug.org/mailman/listinfo/gnhlug-discuss/
>
___
gnhlug-discuss mailing list
gnhlug-discuss@mail.gnhlug.org
http://mail.gnhlug.org/mailman/listinfo/gnhlug-discuss/

Re: iptables confusion.

[Dan Garthwaite]

There is a place for webmin - especially when you need to hand over a
system to users as a contractor.

For iptables everything got easier when I started using iptables -S which
displays the existing rules in the same manner that you specify them
instead of the constant mental context switching.

iptables -S -t nat
iptables -S

  -dan
___
gnhlug-discuss mailing list
gnhlug-discuss@mail.gnhlug.org
http://mail.gnhlug.org/mailman/listinfo/gnhlug-discuss/

Re: Data recovery

[Dan Garthwaite]

dd if=/dev/sda2 | gzip > /mnt/external/mydrive.img.gz

Or my pref:
apt-get install pv
pv -peat -B 10240 /dev/sda2 | gzip > /mnt/external/mydrive.img.gz

On Tue, Feb 16, 2016 at 11:46 AM, Matt Minuti  wrote:

> I did the same thing for the first time last spring and actually managed
> to save everything! Spinning platter, ext4. Here's the process I used, for
> everyone's future reference. Hopefully it helps, good luck!
>
>
>
> First thing I did was boot up a live usb and dd the partition to an image
> on an external hard drive (good practice to not mess with the original any
> more than necessary). `dd if=/dev/sda2 of=/mnt/external/mydrive.img`
>
> Next I used ext4magic (https://sourceforge.net/projects/ext4magic/ with
> usage scenarios stuff at http://ext4magic.sourceforge.net/howto_en.html),
> which is based on ext4undelete but seemed better to me, probably because
> you can easily recover only files deleted within a certain timeframe, so
> you don't have a ton of junk dredged up.
>
> Example:
> Files deleted roughly 2 days ago, recovering everything after 3 days ago
> and before 1 day ago, recovering from the backup image.
> ext4magic -R -a $(date -d "-3day" +%s) -b $(date -d "-1day" +%s) -d
> /mnt/external/recovered_files_here/ /mnt/external/mydrive.img
>
> Afterwards, I used fslint to search for duplicates and help me figure out
> which copy of the file to keep. Partly because fslint is really awesome,
> partly because I was really low on space at this point...
>
>
> On Tue, Feb 16, 2016 at 9:40 AM, Susan Cragin 
> wrote:
>
>>
>> It is an ssd but I'm going to try. What the heck. My favorite files are a
>> cluster of small txt and org files. And I haven't used the machine since
>> then.
>>
>>
>>
>>
>>
>> -Original Message-
>> >From: Joshua Judson Rosen 
>> >Sent: Feb 16, 2016 9:31 AM
>> >To: Susan Cragin , GNHLUG-discussion <
>> gnhlug-discuss@mail.gnhlug.org>
>> >Subject: Re: Data recovery
>> >
>> >On 02/16/2016 09:22 AM, Susan Cragin wrote:
>> >>
>> >> I recursively deleted my home folder, "susan."
>> >> I have days-old backup but want to try data recovery.
>> >
>> >Is this on a spinning-platter HDD, or on one of those
>> >new-fangled SSDs?
>> >
>> >As far as I understand it, you're unlikely to be able
>> >to recover any data from an SSD as they're so aggressive
>> >about remapping logical/physical blocks.
>> >
>> >
>> >--
>> >"Don't be afraid to ask (λf.((λx.xx) (λr.f(rr."
>>
>>
>> ___
>> gnhlug-discuss mailing list
>> gnhlug-discuss@mail.gnhlug.org
>> http://mail.gnhlug.org/mailman/listinfo/gnhlug-discuss/
>>
>
>
> ___
> gnhlug-discuss mailing list
> gnhlug-discuss@mail.gnhlug.org
> http://mail.gnhlug.org/mailman/listinfo/gnhlug-discuss/
>
>
___
gnhlug-discuss mailing list
gnhlug-discuss@mail.gnhlug.org
http://mail.gnhlug.org/mailman/listinfo/gnhlug-discuss/

Re: Amber screen?

[Dan Garthwaite]

I'm a fan of f.lux and redshift (the linux equiv).

Was he running vintage terminal emulator Cathode?
http://www.secretgeometry.com/apps/cathode/

Looks like the glass screen of a  VT420 (in my experience) and friends.

https://www.jwz.org/images/cathode2.jpg


On Tue, Apr 26, 2016 at 10:53 AM, Ryan Stack <4kby...@zoho.com> wrote:

> Yes that's probably f.lux, it has OS X version. Great app.
>
> Sent using Zoho Mail 
>
>
>  On Tue, 26 Apr 2016 07:45:21 -0700 Matt Minuti
> wrote 
>
> My first thought was something like f.lux or twilight. Something to adjust
> the color temperature. Is that about right?
> On Apr 26, 2016 10:43 AM, "Ken D'Ambrosio"  wrote:
>
> Okay, Stupid Geek Question Time.
>
> I'm at the Openstack Summit, and the room is awful dark.  So I've got my
> screen's backlighting down to minimum.  But someone up a few rows --
> probably on a Mac, the heathen -- has his screen in WYSE/amber mode, as
> far as I can tell.  (Well, okay, so the stock WYSE didn't support
> graphics.  Work with me.)  Anyway, that's really cool -- both from the
> "wow, I love amber WYSE screens" perspective, and from a "let's not bug
> the people sitting behind me" perspective.  I've done some googling, and
> haven't found anything of particular note, but I'm thinking if I could
> somehow modify the color palette to just choose amber, I'd be in decent
> shape.
>
> Anyone have any ideas on how to make this happen?  Or should I give up
> now and pay more attention to the keynote speaker?
>
> Thanks,
>
> -Ken
> ___
> gnhlug-discuss mailing list
> gnhlug-discuss@mail.gnhlug.org
> http://mail.gnhlug.org/mailman/listinfo/gnhlug-discuss/
>
> ___
> gnhlug-discuss mailing list
> gnhlug-discuss@mail.gnhlug.org
> http://mail.gnhlug.org/mailman/listinfo/gnhlug-discuss/
>
>
> ___
> gnhlug-discuss mailing list
> gnhlug-discuss@mail.gnhlug.org
> http://mail.gnhlug.org/mailman/listinfo/gnhlug-discuss/
>
>
___
gnhlug-discuss mailing list
gnhlug-discuss@mail.gnhlug.org
http://mail.gnhlug.org/mailman/listinfo/gnhlug-discuss/

Re: Need advice on domain management and transfer

[Dan Garthwaite]

I switched to AWS.
http://docs.aws.amazon.com/Route53/latest/DeveloperGuide/registrar.html

$12/yr and and their business model isn't based on domain registration
gimicks.  I also opted for the 50cent/mo DNS hosting.

Comes out to about $1.51/mo to host a static website on S3, all inclusive.

  -dan


On Wed, Aug 9, 2017 at 9:30 PM, Bruce Dawson (Simon) 
wrote:

> I would move away from register.com - they're not very responsive or
> understanding of small domain holders.
>
> I use OpenSRS at tucows.com, and I find them inexpensive, non-invasive,
> and they give one the ability to get in the "domain business" (which
> means they have a storefront you can use to let your "friends"
> manage/pay for their own domains.
>
> --Bruce
>
>
> On 08/09/2017 12:57 PM, Tyson Sawyer wrote:
> > I hold a couple of domains.  One is my own that I registered in '96
> > and the other belongs to a friend.  The "other" I registered for him
> > in '01 to help his small race engineering business.  I have few
> > issues.  Well, a few to discuss here, I won't bring up working with
> > Bobby Casey at this time... ;-)
> >
> > - We'd like to transfer the 2nd domain to be owned by my friend
> > - They are both registered with register.com.  Is that not the cool
> > thing these days?
> > - They ended up under two different accounts that I hold at
> > register.com with some messed up naming.
> >
> > The domains are j3.org (mine, Bill Sconce would have understood the
> > reference) and smallfortuneracing.com (my friend's).
> >
> > I'm asking for advice in part because I don't want to make any
> > mistakes and lose control of the domains.
> >
> > - Who should my friend register with, if not register.com?
> > - What are the steps to do the transfer?
> >
> > - Should I move my domain to a different registrar and if so, to whom?
> > - If not, is there a way to change or delete the "Registrant
> > Organization" and username of the account?
> >
> > I guess I should also ask about appropriate Tech contacts.  The person
> > I have listed at one time hosted the web site on both, is still in my
> > contacts list and could call, but someone I haven't contacted in
> > years.  Is it reasonable list myself for Registrant, Admin and Tech?
> >
> > Any advice would be greatly appreciated.
> >
> > Thanks!
> > Ty
> >
>
> ___
> gnhlug-discuss mailing list
> gnhlug-discuss@mail.gnhlug.org
> http://mail.gnhlug.org/mailman/listinfo/gnhlug-discuss/
>
___
gnhlug-discuss mailing list
gnhlug-discuss@mail.gnhlug.org
http://mail.gnhlug.org/mailman/listinfo/gnhlug-discuss/

Re: L-o-n-g delay for rc.local in systemd on Ubuntu.

[Dan Garthwaite]

+1 Tom.   Not to detract in any way from his answer - he is spot on and
everyone should learn systemd if they are using systemd.

If it isn't a daemon and just something that's gotta be done once after a
power outage I've used CRON's @REBOOT.  Especially for non-root users.
___
gnhlug-discuss mailing list
gnhlug-discuss@mail.gnhlug.org
http://mail.gnhlug.org/mailman/listinfo/gnhlug-discuss/

Re: What's the strategy for bad guys guessing a few ssh passwords?

[Dan Garthwaite]

If you can change the port number it does wonders against the script
kiddies.

Just remember to add the new port, restart sshd, then remove the old port.
 :)

On Sun, Jun 11, 2017 at 1:53 PM, Ted Roche  wrote:

> Thanks, all for the recommendations. I hadn't seen sshguard before;
> I'll give that a try.
>
> I do have Fail2Ban in place, and have customized a number of scripts,
> mostly for Apache (trying to invoke asp scripts on my LAMP server
> results in instaban, for example) and it is what it reporting the ssh
> login failures.
>
> I have always seen them, in the 10 years I've had this server running,
> but the frequency, periodicity and international variety (usually
> they're all China, Russian, Romania) seemed like there might be
> something else going on.
>
> Be careful out there.
>
> On Sun, Jun 11, 2017 at 11:19 AM, Mark Komarinski 
> wrote:
> > sshguard is really good since it'll drop in a iptables rule to block an
> IP
> > address after a number of attemps (and prevent knocking on other ports
> too).
> >
> > Yubikey as 2FA is pretty nice too.
> >
> >  Original message 
> > From: Bruce Dawson 
> > Date: 6/11/17 10:58 AM (GMT-05:00)
> > To: gnhlug-discuss@mail.gnhlug.org
> > Subject: Re: What's the strategy for bad guys guessing a few ssh
> passwords?
> >
> > sshguard takes care of most of them (especially the high bandwidth ones).
> >
> > The black hats don't care - they're looking for vulnerable systems. If
> > they find one, they'll exploit it (or not).
> >
> > Note that a while ago (more than a few years), comcast used to probe
> > systems to see if they're vulnerable. Either they don't do that any
> > more, or contract it out because I haven't see probes from any of their
> > systems in years. This probably holds true for other ISPs, and various
> > intelligence agencies in the world - both private and public, not to
> > mention various disreputable enterprises.
> >
> > --Bruce
> >
> >
> > On 06/11/2017 10:17 AM, Ted Roche wrote:
> >> For 36 hours now, one of my clients' servers has been logging ssh
> >> login attempts from around the world, low volume, persistent, but more
> >> frequent than usual. sshd is listening on a non-standard port, just to
> >> minimize the garbage in the logs.
> >>
> >> A couple of attempts is normal; we've seen that for years. But this is
> >> several each  hour, and each hour an IP from a different country:
> >> Belgium, Korea, Switzerland, Bangladesh, France, China, Germany,
> >> Dallas, Greece. Usernames vary: root, mythtv, rheal, etc.
> >>
> >> There's several levels of defense in use: firewalls, intrusion
> >> detection, log monitoring, etc, so each script gets a few guesses and
> >> the IP is then rejected.
> >>
> >> In theory, the defenses should be sufficient, but I have a concern
> >> that I'm missing their strategy here. It's not a DDOS, they are very
> >> low volume. It will take them several millennia to guess enough
> >> dictionary attack guesses to get through, so what's the point?
> >>
> >
> > ___
> > gnhlug-discuss mailing list
> > gnhlug-discuss@mail.gnhlug.org
> > http://mail.gnhlug.org/mailman/listinfo/gnhlug-discuss/
> >
> > ___
> > gnhlug-discuss mailing list
> > gnhlug-discuss@mail.gnhlug.org
> > http://mail.gnhlug.org/mailman/listinfo/gnhlug-discuss/
> >
>
>
>
> --
> Ted Roche
> Ted Roche & Associates, LLC
> http://www.tedroche.com
> ___
> gnhlug-discuss mailing list
> gnhlug-discuss@mail.gnhlug.org
> http://mail.gnhlug.org/mailman/listinfo/gnhlug-discuss/
>
___
gnhlug-discuss mailing list
gnhlug-discuss@mail.gnhlug.org
http://mail.gnhlug.org/mailman/listinfo/gnhlug-discuss/

Re: Need to copy a 200GB directory

[Dan Garthwaite]

Ditto Ken on two points:  200GB isn't that large (I've worked in an
animation studio) and rsync is restartable.  I'd go with rsync.

It has a dizzying array of options and even more finer points.  You don't
need the rsync daemon.  Try to use full paths.  Include trailing slashes if
copying directories.  Experiment and then write a bash script.
___
gnhlug-discuss mailing list
gnhlug-discuss@mail.gnhlug.org
http://mail.gnhlug.org/mailman/listinfo/gnhlug-discuss/

Re: What's the strategy for bad guys guessing a few ssh passwords?

[Dan Garthwaite]

There is no security in obscurity - what changing the port offers is orders
of magnitude less noise in the logs.  If you or your tools never look at
the logs than it understandably doesn't matter one whit to you.  However if
you are trying to keep on top of things with log analyzers, OSSEC,
elasticsearch, etc, it is on the MUST DO list.

On Tue, Jun 13, 2017 at 12:39 PM, Joshua Judson Rosen <
roz...@hackerposse.com> wrote:

> On 06/12/2017 01:27 PM, Dan Coutu wrote:
> >> On Jun 12, 2017, at 13:15, Tom Buskey <t...@buskey.name  t...@buskey.name>> wrote:
> >>
> >> As Ted said in the 2nd sentence, it's running on a non-standard port.
> Yes, it helps lot to reduce garbage in the logs.
> >
> > Insisting on the use of an ssh key instead of login credentials also
> helps a lot.
>
> Helps with the security, anyway; and not blacklisting based on
> source-address
> means that you'll never be locked out of your own server just because
> some machine at the hotel where you're staying is (or has been) part of
> the communist party^W^W^W a botnet.
>
> *Doesn't* help cut down on logspam. ;)
>
> But adding liberal ignore rules into logcheck (or whatever) helps a lot
> with logspam ;)
>
> I don't care about the probes of nonexistent accounts, for example;
> I just care about attempts on accounts that someone/something might
> actually
> be able to log into if they somehow got a compromised key;
> so I ignore attempts on nonexistent logins--and many usernames that do
> exist
> but aren't able to _log in_, and I explicitly monitor for things like
> attempts
> on my own specific username
>
> >> Maybe it's not non-standard enough?
>
> Portscans are easy enough, especially using the new `horde of slow brutes'
> techniques from the 1990s I've always been impressed with how _few_
> of those I saw, and by the fact that moving services to nonstandard ports
> was as effective as it was at reducing the connection-attempts to those
> services.
>
> The whole "I have ssh on a secret port to secure it against attacks" thing
> has always seemed fundamentally bogus to me: the _premise_ of ssh itself is
> that you're supposed to be able to assume that the network is in fact
> extremely hostile--more hostile than any network where
> `hiding in a non-standard port' could ever be useful.
>
>
> >> On Mon, Jun 12, 2017 at 12:42 PM, Bruce Dawson <j...@codemeta.com
> <mailto:j...@codemeta.com>> wrote:
> >>
> >> I have to second this suggestion - changing the port did wonders
> for our servers. Of course, as Dan says, it works
> >> for script kiddies, not so much against a determined attack on your
> server.
> >>
> >> --Bruce
> >>
> >>
> >> On 06/12/2017 09:59 AM, Dan Garthwaite wrote:
> >>> If you can change the port number it does wonders against the
> script kiddies.
> >>>
> >>> Just remember to add the new port, restart sshd, then remove the
> old port.  :)
> >>>
> >>> On Sun, Jun 11, 2017 at 1:53 PM, Ted Roche <tedro...@gmail.com
> <mailto:tedro...@gmail.com>> wrote:
> >>>
> >>> Thanks, all for the recommendations. I hadn't seen sshguard
> before;
> >>> I'll give that a try.
> >>>
> >>> I do have Fail2Ban in place, and have customized a number of
> scripts,
> >>> mostly for Apache (trying to invoke asp scripts on my LAMP
> server
> >>> results in instaban, for example) and it is what it reporting
> the ssh
> >>> login failures.
> >>>
> >>> I have always seen them, in the 10 years I've had this server
> running,
> >>> but the frequency, periodicity and international variety
> (usually
> >>> they're all China, Russian, Romania) seemed like there might be
> >>> something else going on.
> >>>
> >>> Be careful out there.
> >>>
> >>> On Sun, Jun 11, 2017 at 11:19 AM, Mark Komarinski <
> mkomarin...@wayga.org <mailto:mkomarin...@wayga.org>> wrote:
> >>> > sshguard is really good since it'll drop in a iptables rule
> to block an IP
> >>> > address after a number of attemps (and prevent knocking on
> other ports too).
> >>> >
> >>> > Yubikey as 2FA is pretty nice too.
> >>> >
> >>> >  Original message 
> >>> > From: Bruce Dawson <j...@

Re: bandwidth capture question

[Dan Garthwaite]

It _would_ be interesting to capture all the SYN packets and it would be
many orders of magnitude less to capture.

On Fri, May 4, 2018 at 1:51 PM, jsf  wrote:

> Hi Michael,
>
> Can you recommend a good SNMP capturing tool and a link to a setup how to?
> .. I'm really most interested in just seeing how we're doing with our
> 150/25 circuit and whether or not we should increase/move to fiber/move to
> symmetrical...
>
> Thanks!
>
> Joshua
>
> On Fri, May 4, 2018 at 1:37 PM,  wrote:
>
>> Joshua,
>>
>> A network tap might work if you are only looking for mirrored traffic
>> from one port.  One thing to keep in mind is that this is full duplex (TX &
>> RX) so you will most likely need 2 capture interfaces + 3rd for remote
>> access if you need that.  It might be possible to mirror a port off the
>> firewall, but if it's a 1 for 1 mirror you may end up in a situation where
>> you don't see all the traffic (1Gbps TX + 1Gbps RX on 1Gbos link).
>>
>> If all you are looking for is bandwidth, a SNMP monitoring tool might be
>> a better choice for you.  Most of these will show you the average bandwidth
>> over the polling period.  Not precise, but usually good enough.
>>
>> Michael
>>
>> On Friday, May 4, 2018 at 1:24 PM, Ken D'Ambrosio  wrote:
>>
>>
>> Hey, Joshua.  Honestly, you're "doing it wrong," for a few reasons.
>>
>> * Capturing *everything* would be huge -- almost certainly fill up your
>> hard disk in relatively short order.
>>
>> * Wireshark isn't the thing to capture it with.  If you want that, dump
>> it using "tcpdump" (or its Windows equivalent), and then look at it later,
>> with Wireshark.
>>
>> * But, as noted in the initial point, that gets big, VERY fast.  Instead,
>> I would recommend just watching metrics -- does Windows show byte counts on
>> an interface?  If so, monitor that minute-by-minute.  Or -- probably an
>> even better choice -- get some software that will monitor per-IP usage.
>> Though others may have actual suggestions on software to use, as I don't.
>>
>> However, NONE of that will even work if you don't have a switch set up
>> with port mirroring.  Ethernet these days is switched, which means that
>> simply plugging into the same switch will only show you broadcast traffic,
>> not point-to-point traffic.  So you'd miss out on something like 99% of the
>> data.  Given the scenario you mention (basically, "Comcast modem"), I think
>> you'll probably need to pick up a smart Ethernet switch -- one that has
>> port mirroring -- to even get started down this road.
>>
>> All of this is relatively non-trivial, but could probably be worked
>> through if you're really trying to make it happen.
>>
>> -Ken
>>
>>
>>
>> On 2018-05-04 13:09, jsf wrote:
>>
>> Hi friends,
>>
>> I am IT dir. at a small independent school in CT nowadays.  I have a
>> comcast modem.  my firewall plugs into a wired port in the comcast modem.
>> I have an old PC running windows 8.1.  I have installed wireshark on the
>> old PC.  I have plugged the old PC's network interface into another wired
>> port on the comcast modem.  Ideally I would like to use wireshark to
>> capture EVERYTHING going across the modem - basically everything that is
>> going in and out of the connection between the modem and my firewall.  I am
>> at a loss w/r/t how to set this up properly.
>>
>> a step-by-step how to, or even a quick shared screen session or phone
>> call would be appreciated.
>>
>> I am trying to get a sense regarding the schools' bandwidth usage.. we
>> have 150/25 over coax.  i think performance is pretty good most of the time
>> (we are a small school).. but not everyone agrees with me.  If we have too
>> little bandwidth (are hitting a max periodically) I'd like to know that.
>>
>> Thanks in advance for help with this and recommendations about anything
>> else I should put on this old PC to help with this exercise.
>>
>> best wishes,
>>
>> Joshua
>>
>> --
>> [View Joshua S. Freeman's profile on LinkedIn]
>> 
>>
>>
>> ___
>> gnhlug-discuss mailing list
>> gnhlug-discuss@mail.gnhlug.org
>> http://mail.gnhlug.org/mailman/listinfo/gnhlug-discuss/
>>
>>
>>
>>
>
>
> --
> [image: View Joshua S. Freeman's profile on LinkedIn]
> 
>
>
> ___
> gnhlug-discuss mailing list
> gnhlug-discuss@mail.gnhlug.org
> http://mail.gnhlug.org/mailman/listinfo/gnhlug-discuss/
>
>
___
gnhlug-discuss mailing list
gnhlug-discuss@mail.gnhlug.org
http://mail.gnhlug.org/mailman/listinfo/gnhlug-discuss/

Re: Edit over SSH.

[Dan Garthwaite]

Bill is correct.  Just stick to:
vim scp://target.host.com/.bashrc

On Mon, Feb 25, 2019 at 4:32 PM Bill Freeman  wrote:

> Resistance (like capacitance) is futile. Stay with the one true editor.
> Whatever nifty feature you saw, there is probably an extension to do it in
> emacs. (Or you can write one.)
>
> On Mon, Feb 25, 2019, 2:52 PM Ken D'Ambrosio  wrote:
>
>> Hi, all.  In Emacs, it's trivially easy to open a file on a remote host:
>>
>> emacs /user@host:/path/to/file
>>
>> And while I *do* enjoy Emacs, I admit that some of the other IDE/editors
>> I've seen look kind of nifty.  But opening files via SSH is really,
>> really handy -- to the point where I consider it a dealbreaker to not
>> have it.  I found Visual Code can do SSH, but you have to (at least, by
>> my reading) set up per-host profiles, etc.  Bleh.  I know that vim can
>> do it, but I'm just not a vim guy.  I'm just not interested in doing
>> some out-of-the-box thing like sshmount (or whatever it is).  So, at the
>> end of the day, anyone have an editor they enjoy where it's as easy to
>> open a file over SSH as it is in Emacs?
>>
>> Thanks for any thoughts you might have...
>>
>> -Ken
>> ___
>> gnhlug-discuss mailing list
>> gnhlug-discuss@mail.gnhlug.org
>> http://mail.gnhlug.org/mailman/listinfo/gnhlug-discuss/
>>
> ___
> gnhlug-discuss mailing list
> gnhlug-discuss@mail.gnhlug.org
> http://mail.gnhlug.org/mailman/listinfo/gnhlug-discuss/
>
___
gnhlug-discuss mailing list
gnhlug-discuss@mail.gnhlug.org
http://mail.gnhlug.org/mailman/listinfo/gnhlug-discuss/

$5/mo to sponsor linux multitouch touchpad support

[Dan Garthwaite]

I just saw on hacker news that this project has some legs and I signed up
as a $5 sponsor.

https://github.com/sponsors/gitclear

It's just one of those things standing in the way of widespread linux
adoption.  I'm a lifelong vim user, don't even own a mouse, and for me the
lack of multitouch gestures are galling. Everyone benefits if more people
pick linux for their daily driver and I perceive this outstanding issue as
a blocker.  If in a year I'm still making payments I'll reconsider but in
the meantime it is an easy decision for me to kick in a coffee to these
folks every month to coordinate the effort.

  Dan Garthwaite, Manchester, NH
___
gnhlug-discuss mailing list
gnhlug-discuss@mail.gnhlug.org
http://mail.gnhlug.org/mailman/listinfo/gnhlug-discuss/