Berkeley CSUA MOTD:Entry 15584
Berkeley CSUA MOTD
 
WIKI | FAQ | Tech FAQ
http://csua.com/feed/
2025/05/25 [General] UID:1000 Activity:popular
5/25    

1999/3/12-13 [Computer/SW/Security] UID:15584 Activity:nil
3/11    There's ssh and scp.  Is there sftp?  I want to interactively get
        and put a file.  scp is rather inconvenient.
        \_ DataFellows ships an sftp but it's just making an ssh tunnel
           to the ftp-cmd channel for you to use.  It only secures the
           command channel and requires that you have some account on the
           remote machine.  Due to the design of the ftp protocol, it
           is difficult to secure the data channel, though there are ways to
           do this that involve a bit of work on the part of an administrator.
           --jon
           \_ I'm sure you could just write a little script called sftp that
              would establish a secure channel and tunnel ftp automatically.
              \_ no, you can not do it with a simple shell script for
                 the data channel.  The command channel is simple, data is
                 not with most of the unix ftp clients available.
              \_ in many cases, you need to hack the ftp client from source
                 (or edit raw binary for the truly fooful) to get it to
                 use arbitary host:port's for the data channel (you need to
                 use ftp's passive mode btw).  There is a way to combine both
                 the data and command channel for easier forwarding through
                 a novel use of a socks proxy.  This is the "bit of work" to
                 which I earlier referred.  --jon
                 \_ Most people only really care about securing the command
                    channel because of the password.  If you were working
                    on something top secret, however, that would be a diff
                    story and you should just use the inconvenient scp.
                 \_ How about:
                    ssh -f -L 1234:csua.berkeley.edu:23 http://csua.berkeley.edu
                       sleep 20 </dev/null >/dev/null
                    as adapted from the fetchmail manpage?
           \_ What about writing an expect script to transfer files using
              ssh?  For example, if I want to get a file to my machine
              from soda I can do:
              ssh soda -C cat filenameOnSoda > fileNameOnMyMachine
              You can use the same trick to send a file.  You could
              write a script that would also let you do ls and other
              stuff too.  -emin
              \_ the nice thing about a "secure ftp" is that you
                 amortize the cost of the SSH authentication process
                 over the transfer time of a number of files rather
                 then once for each file transferred, and yet you
                 can still deal with files on a individual, interactive
                 basis.  Doing ls via another ssh-wrapper would just
                 add to the number of ssh-authentications needed, which
                 for some users is a high cost.  --jon
        \_ Try SRP. It provides a secure ftp and ftpd, along with a few other
           cool security features.
                \_ Can someome who has looked at SRP explain what it is about?
2025/05/25 [General] UID:1000 Activity:popular
5/25    

You may also be interested in these entries...
2012/8/26-11/7 [Computer/SW/Security] UID:54465 Activity:nil
8/26    Poll: how many of you pub/priv key users: 1) use private keys that
        are not password protected 2) password protect your private keys
        but don't use ssh-agent 3) use ssh-agent:
        1) .
        2) ..
        3) ...
	...
2012/8/7-10/17 [Computer/SW/Security] UID:54455 Activity:nil
8/6     Amazon and Apple have lame security policies:
        http://www.wired.com/gadgetlab/2012/08/apple-amazon-mat-honan-hacking/all
        "First you call Amazon and tell them you are the account holder, and
         want to add a credit card number to the account. All you need is the
         name on the account, an associated e-mail address, and the billing
         address. "
	...
2012/7/18-8/19 [Health/Men, Computer/SW/Security] UID:54438 Activity:nil
7/18    "Largest penis record holder arouses security suspicions at airport"
        http://www.csua.org/u/x2f (in.news.yahoo.com)
        \_ I often have that same problem.
        \_ I think the headline writer had some fun with that one.
           \_ One time when I glanced over a Yahoo News headline "U.S. busts
              largest-ever identity theft ring" all I saw was "U.S. busts
	...
2012/4/23-6/1 [Computer/SW/WWW/Browsers] UID:54360 Activity:nil
4/19    My Firefox 3.6.28 pops up a Software Update box that reads "Your
        version of Firefox will soon be vulnerable to online attacks."  Are
        they planning to turn off some security feature in my version of
        Firefox?
        \_ Not as such, no, but they're no longer developing this version,
           so if a 3.6.x-targeted hack shows up, you're not going to get
	...
2011/11/8-30 [Computer/SW/Security, Computer/SW/OS/Windows] UID:54218 Activity:nil
11/8    ObM$Sucks
        http://technet.microsoft.com/en-us/security/bulletin/ms11-083
        \_ How is this different from the hundreds of other M$ security
           vulnerabilities that people have been finding?
           \_ "The vulnerability could allow remote code execution if an
               attacker sends a continuous flow of specially crafted UDP
	...
2011/11/11-30 [Computer/SW/Security] UID:54224 Activity:nil
11/11   MacOSX's Sandbox security hole:
        http://preview.tinyurl.com/7ph2wtg [arstechnica]
	...
2011/2/10-19 [Computer/SW/Security] UID:54034 Activity:nil
2/9     http://www.net-security.org/secworld.php?id=10570
        Summary: iPhone passwd storage is unsafe after all
	...
Cache (1958 bytes)
csua.berkeley.edu
Science Undergraduate Association The Computer Science Undergraduate Association is dedicated to representing the undergraduate Computer Science student body and associates to the University of California at Berkeley, its representatives, and other related organizations; Our office is located in 343 Soda Hall, located at the corner of Hearst & LeRoy. May___| |May, 2004 | |_S___M___T___W___T___F___S_| | |1 | ||___| |2 |3 |4 |5 |6 |7 |8 | |___|___|___|___|___|___|___| |9 |10 |11 |12 |13 |14 |15 | |___|___|___|___|___|___|___| |16 |17 |18 |19 |20 |21 |22 | |___|___|___|___|___|___|___| |23 |24 |25 |26 |27 |28 |29 | |___|___|___|___|___|___|___| |30 |31 | | |___|___|| Calendar of Events Mon, May 3rd, (6:00 PM) General Meeting/Officer Elections Announcements: * CSUA t-shirts are now available in the office (343 Soda) for $12 each. Baby-doll cuts also available. View the design on front and back. The CSUA Mentoring Program is calling for new students to sign up to be mentored. Register to find out more information about this free program at the mentoring website. Members interested in mentoring should contact jhs as soon as possible. CSUA Officer Meetings: Politburo meetings for Spring 2004 are scheduled for every Monday at 6pm in 337 Soda Hall. New members always welcome. Help Sessions are being offered, open especially to new students. The topics, times, and locations are listed here. We just made a Costco run. If you don't know what this means, stop by 343 Soda to find out. The Constitution has been amended. Many thanks to AMD and the TDA Project. Secure remote logins require either SSH ( Java Client) or S/KEY ( Java Client). User Policy - The Rules * Frequently Asked Questions about the CSUA and Soda * CSUA Constitution * Message of the Day - Including downtime announcements * CSUA Library * CSUA Encyclopedia * Membership application form, in PDF, TeX, DVI, and Postscript. The Mentoring Program * Prospective LSCS Mailing List.