Berkeley CSUA MOTD:Entry 53132
Berkeley CSUA MOTD
2019/06/18 [General] UID:1000 Activity:popular

2009/7/12-24 [Computer/SW/Security] UID:53132 Activity:nil
7/9     Ok I'm learning how to do this fancy ssh-keygen thing so that I
        don't have to keep typing passwords inbetween logging into machines.
        What's an ideal size for the number of bits in dsa? 1024 is default,
        but would 2048 enhance it even more? What do you guys use?
        \_ I'm paranoid.  I use 4096.  Go for at least 2048, I'd say...
        \_ If you want to be secure make sure your keys have passphrases, and make
           use of ssh-agent.
           \_ listen buddy, tab is EIGHT spaces not FOUR ok?
2019/06/18 [General] UID:1000 Activity:popular

You may also be interested in these entries...
2012/7/13-8/19 [Computer/Companies/Yahoo, Computer/SW/Security] UID:54436 Activity:nil
7/13    Why would Yahoo store passwords unencrypted?  I recall that even 20+
        years ago the passwords stored in /etc/passwd on instructional
        machines here at Cal were one-way encrypted.  (I think those were
        Ultrix machines.)
        \_ Doesn't this say anything already?
2008/10/13-16 [Computer/SW/Unix] UID:51497 Activity:nil
10/13   Can anyone recommend a decent open source software package to track
        passwords in a global network (Windows+UNIX systems) ... I'm sick and
        tired of waiting days for IT to track down the one person with root
        on some server somewhere.
        \_ its not open source, but we've been using Cyberark
           ( it's done the job well enough.   Considering
2007/11/18-21 [Computer/SW/Security] UID:48654 Activity:nil
11/17   I need a wiki package that uses sqlite, and lets me
        give out username/passwords to limit editing and viewing access
        to certain sections.  Any suggestions?  Thanks.
2007/7/17 [Computer/SW/Languages/C_Cplusplus] UID:47312 Activity:nil
7/13    CSUA Life Roster
1 point each for:                                               key:
                significant other (out of county rule applies)   G
                car (Chevy Novas do count)                       C
                housing (dorms DO NOT count)                     H
                own computer running reasonable multi-tasking OS U
2007/5/31-6/4 [Computer/SW/Security] UID:46802 Activity:nil
5/31    PHP-related question:  a web app I'm using recently moved from
        CRYPT_STD_DES to CRYPT_MD5 for password hashing.  On the off chance
        anyone's faced a similar problem (I am having trouble getting a
        reply from the developers), am I missing something fundamental or
        am I just fucked if I want to migrate my existing userbase without
        having to reset their passwords?  -John
2007/1/18-25 [Computer/SW/Security] UID:45558 Activity:nil
1/18    Are the accounts on soda reactivated?  Looks like ssh is up, but I
        don't know if it's me not remembering the password I set it to
        after the last reactivation or if accounts aren't activated.
        \_ So you just typed your password (maybe several of them) into a box that might or
            might not actually be soda?
        \_ So you just typed your password (maybe several of them) into a box
2006/9/8-12 [Computer/SW/Security, Computer/SW/WWW/Server, Computer/SW/Unix] UID:44325 Activity:nil
9/9     Is there a gzip-like unix command that will encrypt a file?
        I'm looking for something that's widely available. Thanks
        crypt (not very secure - DES).  Or failing that, openssl or gnupg
        \_ openssl or gnupg... what are you looking for?  Those will work fine..
           \_ Thanks for the recommendations. I'm basically experimenting
              with a way of using my friend's computer to backup my
2006/7/12-18 [Computer/SW/Security] UID:43645 Activity:nil 50%like:43591
7/12    Kchang -- thanks for turning the search feature back on!
        \_ you're welcome. I spent some time making sure that even if the
           mysql passwords are stolen, it would only have read only access.
           It would have been easier with suexec, but I guess the current
           admins insist that CGIs run as "nobody", which is a security risk
           that I guess they just don't care about anymore.     -kchang
2006/6/13-15 [Computer/SW/Security] UID:43377 Activity:nil
6/13    ok, memorizing all these passwords is driving me insane. I
        know this has been asked before but I cant find it: whats the
        best way to keep a password-protected file of very sensitive
        information? in this case, all my other passwords. thanks
        \_ I use
        \_ Whatever happened to this single login thing called the
2006/5/2-5 [Computer/SW/Security] UID:42892 Activity:nil
5/2     Okay, I think I get it now.  If I want password-less login to
        soda, then I need to do the whole generating the public and private
        keys which requires a pass phrase, if I can put up with entering
        my unix password every time in SSH or PUTTY, then I don't need
        to do the whole ssh-keygen stuff.  Is it correct?
        \_ Yes.  But if you go password-less, then if soda is compromised