Entry 25164 (Berkeley CSUA MOTD)

Berkeley CSUA MOTD:Entry 25164

WIKI \| FAQ \| Tech FAQ
`http://csua.com/feed/`

2025/05/24 [General] UID:1000 Activity:popular

5/24

2002/6/21-22 [Computer/SW/Security] UID:25164 Activity:high

6/21    Since keyinit has been disabled and ssh doesn't work for me (behind
        company firewall/proxy), what other options do I have to login to
        csua?  Already tried ssh with http-tunnel and socks2http.  -allenchu
        \_ Find someone who'll let you telnet into their shell account
           and ssh in from there. -Someone who ran out of keys too.
           \_ People like you are simply irresponsible bastards. You know
              the difference between telnet and ssh but you're still insisting
              on using telnet, potentially compromissing not only the security
              of your personal account on both machines but also compromissing
              the host security of both machines in general. Lots of root
              breakins start with sniffed passwords. But you, of course, don't
              give a flying f**k to this because you're probably not the one
              who will end up fixing the problems later.
              \_ If the company's firewall didn't block port 22,
                 he would of use SSH.  Just because you are an irresponsible
                 idoit doesn't mean everyone else is.
                 \_ that's not an excuse for using telnet and
                    jeopardazing the security of the entire machine. I am
                    also surprised that a company that filters outgoing
                    ssh still allows outgoing telnet.
                    \_ I doubt there is one.  It's too stupid to comprehend.
        \_ How did you post your question without logging in?
           \_ Because I have ssh at home. Also have a few keys left.
        \_ can you ssh to port 80 on scotch.csua
           \_ Thank you.  This might be it.  Of couse this assumes the
              lovely M$ proxy that prevented http-tunnel to work will
              not do the same to this solution.  -op
        \_ sorry, I haven't been paying attention: why is keyinit disabled
           anyway?
           \_  The answer I got was some sort of security hole w/ skey.

2025/05/24 [General] UID:1000 Activity:popular

5/24

You may also be interested in these entries...

2012/8/26-11/7 [Computer/SW/Security] UID:54465 Activity:nil

8/26    Poll: how many of you pub/priv key users: 1) use private keys that
        are not password protected 2) password protect your private keys
        but don't use ssh-agent 3) use ssh-agent:
        1) .
        2) ..
        3) ...
	...

2012/9/20-11/7 [Computer/SW/Unix, Finance/Investment] UID:54482 Activity:nil

9/20    How do I change my shell? chsh says "Cannot change ID to root."
        \_ /usr/bin/chsh does not have the SUID permission set. Without
           being set, it does not successfully change a user's shell.
           Typical newbie sys admin (on soda)
           \_ Actually, it does: -rwsr-xr-x 1 root root 37552 Feb 15  2011 /usr/bin/chsh
	...

2012/9/24-11/7 [Computer/SW/Languages, Computer/SW/Unix] UID:54484 Activity:nil

9/24    How come changing my shell using ldapmodify (chsh doesn't work) doesn't
        work either? ldapsearch and getent show the new shell but I still get
        the old shell on login.
        \_ Scratch that, it magically took my new shell now. WTF?
           \_ probably nscd(8)
	...

2012/8/7-10/17 [Computer/SW/Security] UID:54455 Activity:nil

8/6     Amazon and Apple have lame security policies:
        http://www.wired.com/gadgetlab/2012/08/apple-amazon-mat-honan-hacking/all
        "First you call Amazon and tell them you are the account holder, and
         want to add a credit card number to the account. All you need is the
         name on the account, an associated e-mail address, and the billing
         address. "
	...

2012/7/18-8/19 [Health/Men, Computer/SW/Security] UID:54438 Activity:nil

7/18    "Largest penis record holder arouses security suspicions at airport"
        http://www.csua.org/u/x2f (in.news.yahoo.com)
        \_ I often have that same problem.
        \_ I think the headline writer had some fun with that one.
           \_ One time when I glanced over a Yahoo News headline "U.S. busts
              largest-ever identity theft ring" all I saw was "U.S. busts
	...

2012/5/8-6/4 [Computer/SW/Unix] UID:54383 Activity:nil

5/8     Hello everyone!  This is Josh Hawn, CSUA Tech VP for Spring 2012.
        About 2 weeks ago, someone brought to my attention that our script
        to periodically merge /etc/motd.public into /etc/motd wasn't
        running.  When I looked into it, the cron daemon was running, but
        there hadn't been any root activity in the log since April 7th.  I
        looked into it for a while, but got lost in other things I was
	...

2012/4/23-6/1 [Computer/SW/WWW/Browsers] UID:54360 Activity:nil

4/19    My Firefox 3.6.28 pops up a Software Update box that reads "Your
        version of Firefox will soon be vulnerable to online attacks."  Are
        they planning to turn off some security feature in my version of
        Firefox?
        \_ Not as such, no, but they're no longer developing this version,
           so if a 3.6.x-targeted hack shows up, you're not going to get
	...