On Thu, Dec 13, 2018 at 09:50:31AM +0100, Florian Obser wrote:
> On Thu, Dec 13, 2018 at 09:25:25AM +0100, Kollar Arpad wrote:
> > Any creative hints to defend against these kind of threats?
>
> Your system has been compromised. The attacker is able to replace
> binaries, you have lost. If your
"Kollar Arpad" wrote:
> Hello,
>
> How about blacklisting some often used passwords? ex.:
> https://github.com/eset/malware-ioc/tree/master/sshdoor (either used by
> humans often or by backdoors)
>
> When will "passwd" have option to give/generate passwords from 4 random
> english words
Hello,
just a FYI, maybe you havent seent the study:
https://www.welivesecurity.com/2018/12/05/dark-side-of-the-forsshe/
ESET researchers discovered a set of previously undocumented Linux malware
families based on OpenSSH. In the white paper, “The Dark Side of the ForSSHe”,
they release
On Thu, Dec 13, 2018 at 09:25:25AM +0100, Kollar Arpad wrote:
> Any creative hints to defend against these kind of threats?
Your system has been compromised. The attacker is able to replace
binaries, you have lost. If your package manager can still tell you
that the sshd binary has been replaced
On Thu, Dec 13, 2018 at 10:02:45AM +0100, Otto Moerbeek wrote:
> On Thu, Dec 13, 2018 at 09:50:31AM +0100, Florian Obser wrote:
>
> > On Thu, Dec 13, 2018 at 09:25:25AM +0100, Kollar Arpad wrote:
> > > Any creative hints to defend against these kind of threats?
> >
> > Your system has been
Trying to run OpenVPN in rdomain 1 by command
# sh /etc/netstart tap0
# cat /var/openvpn.log
...
Thu Dec 13 14:40:27 2018 us=655401 TUN/TAP device /dev/tap0 opened
Thu Dec 13 14:40:27 2018 us=655456 do_ifconfig,
tt->did_ifconfig_ipv6_setup=0
Thu Dec 13 14:40:27 2018 us=655500 /sbin/ifconfig tap0
On Thu, Dec 13, 2018 at 09:25:25AM +0100, Kollar Arpad wrote:
> https://www.welivesecurity.com/2018/12/05/dark-side-of-the-forsshe/
>
> ESET researchers discovered a set of previously undocumented Linux malware
> families based on OpenSSH. In the white paper, “The Dark Side of the
> ForSSHe”,
Hi, I want to run php-fpm as other did than www, but non www uid, cannot write
session file to /var/www/tmp.
(Is it good or bad, to run different uid?)
Why the /var/www/tmp permission is 1700?
Is it possible make /var/www/tmp permission 1777 by default?
Thanks.
Key fingerprint: CDB3 6C62 254B
After changed my from-to selectors in iked configuration, the gateway is almost
working.
[VPN Server] /etc/iked.conf:
ikev2 quick passive ipcomp esp \
from 0.0.0.0/0 to 192.168.1.0/24 \
local egress \
ikesa auth hmac-sha2-512 enc aes-256 prf hmac-sha2-512 group
Hi all,
Trying to install OpenBSD AMD64 (tried 6.4 und snapshot) with an
USB-Stick (tried install64.fs and miniroot64.fs, various USB-sticks,
tried different USB-hookups, confirmed the successfull boot on other
machines) the booting freezes at:
...
uhidev0 at uhub0 port 2 configuration 1
Hello,
you can create a new dir under /var/www, eg. /var/www/mytmp, set the
permissions to 1700 and ownership to your php user and then add the
following in /etc/php-fpm.conf to use it:
env[TMP] = /mytmp
env[TMPDIR] = /mytmp
env[TEMP] = /mytmp
php_admin_value[upload_tmp_dir] = /mytmp
I usually
Hi,
I'm trying to understand how interval timers work in OpenBSD,
but I'm a little stuck on this line from the getitimer / setitimer man page:
"Time values smaller than the resolution of the system clock
are rounded up to this resolution (typically 10 milliseconds)."
Does this mean that 10
About your card, you can extract it from the laptop and ask here for a
wi-fi PCIe model that is fully supported and functional. Then buy that
recommanded card and mail this one to a developer, since you can't
make use of it soon.
I'm using low profile HD 6450 which is now renamed as R5 230 and selling.
This card has HDMI, DVI and VGA connectors.
If you want to use VGA, you have to use one more card space
for low profile box.
Yes, it works very fine, and cheap.
Kenji
2018年12月13日(木) 4:14 Allan Streib :
> Still having
‐‐‐ Original Message ‐‐‐
On Thursday, December 13, 2018 9:36 AM, Mike Larkin
wrote:
> On Thu, Dec 13, 2018 at 12:41:10AM +, Adam Steen wrote:
>
> > Hi All
> > The Solo5/Mirage tender is in the process of enforcing that guest executable
> > code is not also writable (W^X), but it
On Thu, Dec 13, 2018 at 4:58 PM Paul Swanson wrote:
> Is the HPET timer on AMD64 available to
> developers in OpenBSD user land?
>
No.
The CPU TSC is available to userspace. Note you may need to use the RDTSCP
instruction on MP boxes (and VMs...) where the TSC is not consistent across
CPUs,
Hello,
I've got a PC running OpenBSD current.
After the latest upgrade I cannot ssh to it.
When I run "ssh 10.26.5.70"
I get this:
"Connection to 10.26.5.70 closed by remote host.
Connection to 10.26.5.70 closed."
As an SSH client I use another OpenBSD box and a Linux machine
with the same
On Thu, Dec 13, 2018 at 10:32:08PM +, Adam Steen wrote:
> ‐‐‐ Original Message ‐‐‐
> On Thursday, December 13, 2018 9:36 AM, Mike Larkin
> wrote:
>
> > On Thu, Dec 13, 2018 at 12:41:10AM +, Adam Steen wrote:
> >
> > > Hi All
> > > The Solo5/Mirage tender is in the process of
On Thu, Dec 13, 2018 at 10:40 AM Ted Unangst wrote:
> netstat -an tells me I am listening to all the udp.
>
> Active Internet connections (including servers)
> Proto Recv-Q Send-Q Local Address Foreign Address
> (state)
> udp 0 0 *.**.*
> udp
Hi,
Is the HPET timer on AMD64 available to
developers in OpenBSD user land?
If so, how?
Thanks in advance,
Paul S.
On Thu, Dec 13, 2018 at 09:27:12PM +, Paul Swanson wrote:
> Hi,
>
> I'm trying to understand how interval timers work in OpenBSD,
> but I'm a little stuck on this line from the getitimer / setitimer man page:
>
> "Time values smaller than the resolution of the system clock
> are rounded up
I’m having the same issue on OpenBSD 6.4. My iked.conf is similar to Rachel’s:
include "/etc/iked/macros.conf"
ikev2 quick active ipcomp esp proto gre\
from 192.168.1.0/24 to $iked_server \
local egress peer $iked_server \
ikesa auth hmac-sha2-512 enc aes-256 prf
netstat -an tells me I am listening to all the udp.
Active Internet connections (including servers)
Proto Recv-Q Send-Q Local Address Foreign Address(state)
udp 0 0 *.**.*
udp 0 0 127.0.0.1.53 *.*
23 matches
Mail list logo