Berkeley CSUA MOTD:Entry 40007
Berkeley CSUA MOTD
 
WIKI | FAQ | Tech FAQ
http://csua.com/feed/
2024/11/23 [General] UID:1000 Activity:popular
11/23   

2005/10/6-9 [Computer/SW/Security] UID:40007 Activity:nil
10/6    What's the easiest way to get the ip from the env var
        SSH_CLIENT="10.10.10.10 1212 22" in bash? I want to use it to
        set the DISPLAY env var.
        \_ see man pages for any/all of: sed, awk, perl, cut, tr (and many
           others).
        \_ Why are you doing this?  ssh will set DISPLAY itself if you
           run it with the right options, and it will do it securely.  -tom
           \_ Ah, thx.
              \_ ssh -X -l mylogin hostname
              \_ ssh -Y -l mylogin hostname
           \_ Ok, now it's slow. ;) What's the fastest cipher and mac
              to use? The choices are:
              rc4/blowfish/aes-128/192/256/twofish/3des...
              \_ plaintext.
              \_ IMO, blowfish is the best blend of speed and security
              \_ RC4 is by far the fastest, and secure enough for joe averages
                 using SSH2.
                 \_ After you log in, how do you see what cipher/mac is in use?
                    \_ depends on what ssh you use, obviously. i don't know of
                       a way for openssh. use -v to see what's being
                       negotiated.
           \_ Ok, now it's slow. ;) What's the fastest cipher and mac to use?
2024/11/23 [General] UID:1000 Activity:popular
11/23   

You may also be interested in these entries...
2012/8/26-11/7 [Computer/SW/Security] UID:54465 Activity:nil
8/26    Poll: how many of you pub/priv key users: 1) use private keys that
        are not password protected 2) password protect your private keys
        but don't use ssh-agent 3) use ssh-agent:
        1) .
        2) ..
        3) ...
	...
2012/8/7-10/17 [Computer/SW/Security] UID:54455 Activity:nil
8/6     Amazon and Apple have lame security policies:
        http://www.wired.com/gadgetlab/2012/08/apple-amazon-mat-honan-hacking/all
        "First you call Amazon and tell them you are the account holder, and
         want to add a credit card number to the account. All you need is the
         name on the account, an associated e-mail address, and the billing
         address. "
	...
2012/7/18-8/19 [Health/Men, Computer/SW/Security] UID:54438 Activity:nil
7/18    "Largest penis record holder arouses security suspicions at airport"
        http://www.csua.org/u/x2f (in.news.yahoo.com)
        \_ I often have that same problem.
        \_ I think the headline writer had some fun with that one.
           \_ One time when I glanced over a Yahoo News headline "U.S. busts
              largest-ever identity theft ring" all I saw was "U.S. busts
	...
2012/4/23-6/1 [Computer/SW/WWW/Browsers] UID:54360 Activity:nil
4/19    My Firefox 3.6.28 pops up a Software Update box that reads "Your
        version of Firefox will soon be vulnerable to online attacks."  Are
        they planning to turn off some security feature in my version of
        Firefox?
        \_ Not as such, no, but they're no longer developing this version,
           so if a 3.6.x-targeted hack shows up, you're not going to get
	...
2011/11/8-30 [Computer/SW/Security, Computer/SW/OS/Windows] UID:54218 Activity:nil
11/8    ObM$Sucks
        http://technet.microsoft.com/en-us/security/bulletin/ms11-083
        \_ How is this different from the hundreds of other M$ security
           vulnerabilities that people have been finding?
           \_ "The vulnerability could allow remote code execution if an
               attacker sends a continuous flow of specially crafted UDP
	...
2011/11/11-30 [Computer/SW/Security] UID:54224 Activity:nil
11/11   MacOSX's Sandbox security hole:
        http://preview.tinyurl.com/7ph2wtg [arstechnica]
	...
2011/2/10-19 [Computer/SW/Security] UID:54034 Activity:nil
2/9     http://www.net-security.org/secworld.php?id=10570
        Summary: iPhone passwd storage is unsafe after all
	...