Re: Key-Based Authentication -

On 2/21/20 4:00 AM, Bob Goodwin wrote: In doing this is their danger of making an error and locking myself out of my computer, if so what to avoid? I've made some catastrophic errors in the not very distant past that required a new system re-installation and would prefer not repeating that.

Re: how to detect hack attempts.

On Friday, February 21, 2020 7:17:33 PM MST Tim via users wrote: > Tim: > > >> Beyond the usual (HTTP, mail, DNS servers, etc), what is the average > >> non-admin user going to set up that listens as a server? Admin- > >> users setting up those traditional services ought to know how to > >>

Re: how to detect hack attempts.

Tim: >> Beyond the usual (HTTP, mail, DNS servers, etc), what is the average >> non-admin user going to set up that listens as a server? Admin- >> users setting up those traditional services ought to know how to >> manage firewalls, or they ought not to mess around with those >> services. Samuel

[389-users] Looking For Knowledge

OK, I've got 389-ds all installed and performed the install test. Now what? How do I get all of the required information concerning my LAN into the 389-DS server? Is here a document or tutorial on how to do this? TIA Gene -- Eugene Poole Woodstock, Georgia

Re: how to detect hack attempts.

On 2020-02-22 08:10, George N. White III wrote: > On Fri, 21 Feb 2020 at 18:42, Ed Greshko > wrote: > > [...] > FWIW, I have an additional system fully open to the Internet but > configured as an IPv6 only system. > I use a public NAT64/DNS64 service

Re: Using Steam with Fedora

On 2/21/20 2:46 PM, Patrick O'Callaghan wrote: That's a good point which I hadn't thought of. I actually only have a single monitor connected via an HMDI switch to both video outputs. I've been so used to this I forgot to mention it, but clearly I have to figure out how to run my desktop off the

Re: how to detect hack attempts.

On Thursday, February 20, 2020 11:19:11 PM MST Samuel Sieb wrote: > You generally have to ask the ISP to switch the > modem to bridge mode, which I do so I can run my own gateway server. Actually, you can normally do that yourself. -- John M. Harris, Jr. Splentity

Re: how to detect hack attempts.

On Friday, February 21, 2020 8:07:15 AM MST Tim via users wrote: > On Thu, 2020-02-20 at 21:34 -0800, Samuel Sieb wrote: > > > Any critical system daemons are 1024 and below. The reason the high > > ports are left open is for user applications to be able to > > communicate without users having

Re: how to detect hack attempts.

On Fri, 21 Feb 2020 at 18:42, Ed Greshko wrote: > [...] > FWIW, I have an additional system fully open to the Internet but > configured as an IPv6 only system. > I use a public NAT64/DNS64 service for access to non-IPv6. Owing to the > number of IPv6 addresses, I assume, > it has never been

Re: Using Steam with Fedora

On Fri, 2020-02-21 at 22:20 +, Anthony F McInerney wrote: > On Fri, 21 Feb 2020 at 22:16, Samuel Sieb wrote: > > > On 2/21/20 9:31 AM, Patrick O'Callaghan wrote: > > > For several years I've been using a Windows VM with passthrough > > > graphics as a gaming platform. It works pretty well,

Re: Using Steam with Fedora

On Fri, 2020-02-21 at 14:15 -0800, Samuel Sieb wrote: > On 2/21/20 9:31 AM, Patrick O'Callaghan wrote: > > For several years I've been using a Windows VM with passthrough > > graphics as a gaming platform. It works pretty well, but ties up > > machine resources even when idle, so I'm now

Re: how to detect hack attempts.

On 2020-02-22 06:10, Samuel Sieb wrote: > On 2/21/20 12:15 PM, home user wrote: >> (On 2020-0221 10:51pm, Ed wrote) >>  > BTW, if you do an "ip -6 add show eno1" >>  > do the numbers a358:d643 appear in the output? >> >> -bash.1[~]: ip -6 add show eno1 >> 2: eno1: mtu 1500 qdisc fq_codel state UP

Re: Using Steam with Fedora

On Fri, 2020-02-21 at 21:50 +, Patrick O'Callaghan wrote: > On Fri, 2020-02-21 at 19:19 +, Israel Bermudez via users wrote: > > If you are using rpmfusion they have a guide on their website for the > > Nvidia driver installation. > > > > I am using the rpmfusion repo and I utilize their

Re: Using Steam with Fedora

On Fri, 21 Feb 2020 at 22:16, Samuel Sieb wrote: > On 2/21/20 9:31 AM, Patrick O'Callaghan wrote: > > For several years I've been using a Windows VM with passthrough > > graphics as a gaming platform. It works pretty well, but ties up > > machine resources even when idle, so I'm now

Re: Using Steam with Fedora

On 2/21/20 9:31 AM, Patrick O'Callaghan wrote: For several years I've been using a Windows VM with passthrough graphics as a gaming platform. It works pretty well, but ties up machine resources even when idle, so I'm now experimenting with Valve's Linux version of Steam with the Proton additions

Re: how to detect hack attempts.

On 2/21/20 12:15 PM, home user wrote: (On 2020-0221 10:51pm, Ed wrote) > BTW, if you do an "ip -6 add show eno1" > do the numbers a358:d643 appear in the output? -bash.1[~]: ip -6 add show eno1 2: eno1: mtu 1500 qdisc fq_codel state UP group default qlen 1000     inet6

Re: how to detect hack attempts.

On 2/21/20 7:07 AM, Tim via users wrote: On Thu, 2020-02-20 at 21:34 -0800, Samuel Sieb wrote: Any critical system daemons are 1024 and below. The reason the high ports are left open is for user applications to be able to communicate without users having to figure out the firewall. Beyond

Re: Using Steam with Fedora

On Fri, 2020-02-21 at 21:24 +, Anthony F McInerney wrote: > On Fri, 21 Feb 2020 at 17:32, Patrick O'Callaghan > wrote: > > > For several years I've been using a Windows VM with passthrough > > graphics as a gaming platform. It works pretty well, but ties up > > machine resources even when

Re: Using Steam with Fedora

On Fri, 2020-02-21 at 19:19 +, Israel Bermudez via users wrote: > If you are using rpmfusion they have a guide on their website for the Nvidia > driver installation. > > I am using the rpmfusion repo and I utilize their guide you will have to > install both 32bit and 64bit drivers. > > Our

Re: Using Steam with Fedora

On Fri, 2020-02-21 at 11:56 -0700, Joe Zeff wrote: > On 02/21/2020 10:31 AM, Patrick O'Callaghan wrote: > > I've disabled the VM, installed the latest proprietary Nvidia drivers, > > modified grub appropriately and rebooted. The Nvidia modules are > > loaded. The nvidia-settings command shows the

Re: Using Steam with Fedora

On Fri, 21 Feb 2020 at 17:32, Patrick O'Callaghan wrote: > For several years I've been using a Windows VM with passthrough > graphics as a gaming platform. It works pretty well, but ties up > machine resources even when idle, so I'm now experimenting with Valve's > Linux version of Steam with

Re: how to detect hack attempts.

(On 2020-0221 10:51pm, Ed wrote) > BTW, if you do an "ip -6 add show eno1" > do the numbers a358:d643 appear in the output? -bash.1[~]: ip -6 add show eno1 2: eno1: mtu 1500 qdisc fq_codel state UP group default qlen 1000     inet6 2001:558:6040:5d:9d66:dfa1:a358:d643/128 scope global dynamic

Re: http failing on boot

whats in /var/log/httpd/access_log ??? maybe .. cat /var/log/httpd/access_log 35.185.73.152 - - [21/Feb/2020:09:14:33 -0800] "GET /robots.txt HTTP/1.0" 301 250 "-" "ZoominfoBot (zoominfobot at zoominfo dot com)" 35.185.73.152 - - [21/Feb/2020:09:14:34 -0800] "GET /robots.txt HTTP/1.1" 404 208

Re: Using Steam with Fedora

If you are using rpmfusion they have a guide on their website for the Nvidia driver installation. I am using the rpmfusion repo and I utilize their guide you will have to install both 32bit and 64bit drivers. Our only difference is the use of steam. I use Lutris but at the end of the day,

Re: Using Steam with Fedora

On 02/21/2020 10:31 AM, Patrick O'Callaghan wrote: I've disabled the VM, installed the latest proprietary Nvidia drivers, modified grub appropriately and rebooted. The Nvidia modules are loaded. The nvidia-settings command shows the GPU. How did you install nVidia? If you used the binary blob

Using Steam with Fedora

For several years I've been using a Windows VM with passthrough graphics as a gaming platform. It works pretty well, but ties up machine resources even when idle, so I'm now experimenting with Valve's Linux version of Steam with the Proton additions to the Wine libraries. I've disabled the VM,

Re: how to detect hack attempts.

On Fri, 21 Feb 2020 at 11:08, Tim via users wrote: > On Thu, 2020-02-20 at 21:34 -0800, Samuel Sieb wrote: > > Any critical system daemons are 1024 and below. The reason the high > > ports are left open is for user applications to be able to > > communicate without users having to figure out

Re: Key-Based Authentication -

On Fri, Feb 21, 2020 at 07:00:51 -0500, Bob Goodwin wrote: I've been reading the thread about detecting hack attempts and I am interested in in setting up "key based authentication" as described [perhaps] in

Re: how to detect hack attempts.

OSSEC, perhaps? On 2/20/20 1:46 PM, home user wrote: > (F-30; Gnome; stand-alone home workstation) > > Sometime last year, I saw an article that talked about a tool that > quickly and easily shows attempts to hack in to a computer.  I think it > was either in the Fedora magazine or Gnome's

Re: how to detect hack attempts.

On Thu, 2020-02-20 at 21:34 -0800, Samuel Sieb wrote: > Any critical system daemons are 1024 and below. The reason the high > ports are left open is for user applications to be able to > communicate without users having to figure out the firewall. Beyond the usual (HTTP, mail, DNS servers,

Re: Key-Based Authentication -

On Fri, 21 Feb 2020 08:17:27 -0600 Richard Shaw wrote: > It will check that you have correct permissions in ~/.ssh before copying > the public key over to the remote system. If course you'll need to leave > password auth turned on until you complete this. That's the important bit. You can leave

Re: Key-Based Authentication -

On Fri, Feb 21, 2020 at 6:05 AM Bob Goodwin wrote: > I've been reading the thread about detecting hack attempts and I am > interested in in setting up "key based authentication" as described > [perhaps] in > " >

Re: Key-Based Authentication -

On Fri, 21 Feb 2020, 12:51 Frank Pikelner, wrote: > Take care with " backdoors", not a good idea. Port scanners ie "nmap" > will find obfuscated servers running on different ports. > > On Fri, Feb 21, 2020 at 7:21 AM Michal Schorm wrote: > > > > > In doing this is their danger of making an

Re: Key-Based Authentication -

Take care with " backdoors", not a good idea. Port scanners ie "nmap" will find obfuscated servers running on different ports. On Fri, Feb 21, 2020 at 7:21 AM Michal Schorm wrote: > > > In doing this is their danger of making an error and locking myself out > > of my computer, if so what to

Re: http failing on boot

On 21/02/2020 10.19, Scott van Looy via users wrote: This is probably something super simple, but… My httpd is failing on boot. The server has 3x adaptors, all are static IPs and don’t require DHCP or anything. Addresses, etc are specified in the config files. All are present once boot has

Re: Key-Based Authentication -

Key based authentication works well in small environments, you generate the keys (recommend you consider ed25519 instead of RSA, etc), distribute them across the servers (public keys) and update the authorized keys file. On the server side you configure SSHD to use keys vs. passwords (disable

Re: Key-Based Authentication -

> In doing this is their danger of making an error and locking myself out > of my computer, if so what to avoid? You can use dummy account for that, on both ends. You can force SSH (client) to only use keyes, instead of passwords. You can run SSH in a container, to learn how to set it up. If

Key-Based Authentication -

I've been reading the thread about detecting hack attempts and I am interested in in setting up "key based authentication" as described [perhaps] in "https://docs.fedoraproject.org/en-US/Fedora/14/html/Deployment_Guide/s2-ssh-configuration-keypairs.html; In doing this is their danger of

http failing on boot

This is probably something super simple, but… My httpd is failing on boot. The server has 3x adaptors, all are static IPs and don’t require DHCP or anything. Addresses, etc are specified in the config files. All are present once boot has ended. All are managed by NetworkManager, yet I get this