Re: Best Vista Error EVAR, gaming, and software requests, and an Ubuntu gripe
Pretty much it's assumed that if you can login to a machine in any way, you know the password and you change it regularly. It's just a bad thing when it's decryptable in my opinion. Otherwise, there's a huge problem with SSH in general and should be avoided like the plague. (in 2 occasions or so lol) SSH has been around long enough with options such as that where people could have learned that in elementary school if they taught more than Apple IIe or Windows. Have to admit, it's a world different than rsh, I almost cried in happiness when ssh was invented. Everytime I've ever installed MySQL (via emerge/dpkg/etc), it's almost always said something along the lines of 'now's the time to set the root password with xyz command'. I do agree though, it should be part of the initial startup... if root is blank, prompt user for password then timeout after 20 seconds and kill the running app. --Dan On Thu, May 22, 2008 at 12:14 AM, Jon Ernster <[EMAIL PROTECTED]> wrote: > FreeBSD, and I would have to assume OpenBSD have root login via ssh > disabled by default. It doesn't make much sense why linux distros don't > change this, but it doesn't make sense why MySQL is shipped without a > root password either. I guess someone thinks it's a good idea, or > doesn't think it's a bad enough idea to fix a common sense security flaw. --- PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us To subscribe, unsubscribe, or to change your mail settings: http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
Re: Best Vista Error EVAR, gaming, and software requests, and an Ubuntu gripe
FreeBSD, and I would have to assume OpenBSD have root login via ssh disabled by default. It doesn't make much sense why linux distros don't change this, but it doesn't make sense why MySQL is shipped without a root password either. I guess someone thinks it's a good idea, or doesn't think it's a bad enough idea to fix a common sense security flaw. [EMAIL PROTECTED] wrote: > OMG, I didn't know that! I'm willing to bet a lot of people on the list > didn't, either! I guess I'm just lucky as, since I don't need it, I > don't run it. > > Mike > > On Wed, 21 May 2008 11:32:08 -0500, [EMAIL PROTECTED] said: > >> Quoting "der.hans" <[EMAIL PROTECTED]>: >> >> >>> Am 20. Mai, 2008 schwätzte Erich Newell so: >>> >>> If you do this however...I highly recommend editing the /etc/ssh/sshd_config file to not allow root logon. >>> Shouldn't sshd generally be configured to not allow logging in as root? >>> >> It should. But even recent distros like RHEL5 shipped sshd_config >> with 'PermitRootLogin yes', which for some unfathomable reason is the >> default set by the OpenSSH project. >> >> I just checked the source code for OpenSSH 5.0p1, which is the most >> recent stable release I could find, and 'PermitRootLogin yes' is still >> the default in sshd_config. >> >> http://mirror.mcs.anl.gov/openssh/portable/openssh-5.0p1.tar.gz >> >> alex >> --- >> PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us >> To subscribe, unsubscribe, or to change your mail settings: >> http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss >> > --- > PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us > To subscribe, unsubscribe, or to change your mail settings: > http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss > --- PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us To subscribe, unsubscribe, or to change your mail settings: http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
Re: Best Vista Error EVAR, gaming, and software requests, and an Ubuntu gripe
OMG, I didn't know that! I'm willing to bet a lot of people on the list didn't, either! I guess I'm just lucky as, since I don't need it, I don't run it. Mike On Wed, 21 May 2008 11:32:08 -0500, [EMAIL PROTECTED] said: > Quoting "der.hans" <[EMAIL PROTECTED]>: > > > Am 20. Mai, 2008 schwätzte Erich Newell so: > > > >> If you do this however...I highly recommend editing the > >> /etc/ssh/sshd_config > >> file to not allow root logon. > > > > Shouldn't sshd generally be configured to not allow logging in as root? > > It should. But even recent distros like RHEL5 shipped sshd_config > with 'PermitRootLogin yes', which for some unfathomable reason is the > default set by the OpenSSH project. > > I just checked the source code for OpenSSH 5.0p1, which is the most > recent stable release I could find, and 'PermitRootLogin yes' is still > the default in sshd_config. > > http://mirror.mcs.anl.gov/openssh/portable/openssh-5.0p1.tar.gz > > alex > --- > PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us > To subscribe, unsubscribe, or to change your mail settings: > http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss --- PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us To subscribe, unsubscribe, or to change your mail settings: http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
Re: Best Vista Error EVAR, gaming, and software requests, and an Ubuntu gripe
Quoting "der.hans" <[EMAIL PROTECTED]>: > Am 20. Mai, 2008 schwätzte Erich Newell so: > >> If you do this however...I highly recommend editing the /etc/ssh/sshd_config >> file to not allow root logon. > > Shouldn't sshd generally be configured to not allow logging in as root? It should. But even recent distros like RHEL5 shipped sshd_config with 'PermitRootLogin yes', which for some unfathomable reason is the default set by the OpenSSH project. I just checked the source code for OpenSSH 5.0p1, which is the most recent stable release I could find, and 'PermitRootLogin yes' is still the default in sshd_config. http://mirror.mcs.anl.gov/openssh/portable/openssh-5.0p1.tar.gz alex --- PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us To subscribe, unsubscribe, or to change your mail settings: http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
Re: Best Vista Error EVAR, gaming, and software requests, and an Ubuntu gripe
On Tue, 20 May 2008 11:34:52 -0700, "Matt Graham" <[EMAIL PROTECTED]> said: > After a long battle with technology, der.hans wrote: > > Am 19. Mai, 2008 schwatzte [EMAIL PROTECTED] so: > >> Next up, the question: has anyone tried gaming on FreeBSD? I've seen > >> past stuff mainly about problems WRT native software liking ALSA over > >> OSS, but I don't know if that's been solved or got worse. What about WINE > >> and its descendents? > > I'm always trying to find gaming info for *NIX. I discovered atanks last > > week, but doubt it'd fit real gaming cravings. > I guess I should've been more specific. I'm not looking at playing console stuff, but I appreciate the info for possible future use! Right now, the programs are based on the Quake engines, specifically Urban Terror running ioquake3 and Enemy Territory:Quake Wars running on the Quake 4 engine. id software makes all their engines available natively on Linux, which is one reason why I've been playing them. There are many game SERVERS running on FreeBSD out there, but I'm having a hard time finding client info. If it wasn't for Darwin, I'd say a Mac binary would work, but I'm sure it won't. > Wine is hit-or-miss. If you have a specific program you want to run, > it's > always best to check it out at winehq.com and see if it can be made to > work > without major hassle. Wine *still* can't run Progress Quest without > graphical glitches (sigh). Oh yes, I know. In my case it would be one of the Valve games (Half Life, Counter Strike, Team Fortress, etc) most likely. Again, though, the problem here is not whether the game will work with Wine, but whether Wine will get along with FreeBSD. > > >> As I'm writing this, I recall that, on modern Slackware anyway, they use > >> modules and an initrd image, so maybe that's it. > > Yup. Everything does at this point. The kernel is too big to boot if you > > don't put some stuff in modules. > > It's easy to put together a kernel that doesn't require an initrd. It's > just > that that kernel will only boot on a very limited subset of hardware. > One of > the first things I always do when installing a new distro is to get a > recent > vanilla source tarball and build a vanilla kernel that doesn't require an > initrd because it's got everything needed to mount / built in. (This > also > removes bugs caused by distro patches, and typically makes it easier to > build > and use third-party kernel modules.) Total Ditto. The problem is that I was trying to use the source included with the distro since I obviously didn't have internet access at the moment. Perhaps this is where everything bombed. Or maybe something weird with the leftover modules. My last kernel build (on my old desktop) I made the kernel non-modular, but I can't do that here because of the MadWIFI thing. That's also one other reason I was considering FreeBSD: their support for Atheros chipsets is very good, with the driver developer working for them. That and BSD 4.3 was my very first UNIX experience, which also probably is one reason I'm so fond of Slackware--well, that and I'm familiar with it, having run it for over a decade now on all my machines. > > -- >"Oh bother," said the Borg, "We've assimilated Pooh." >--MHR on alt.fan.pratchett LOL!! Mike --- PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us To subscribe, unsubscribe, or to change your mail settings: http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
Re: Best Vista Error EVAR, gaming, and software requests, and an Ubuntu gripe
After a long battle with technology, der.hans wrote: > Am 19. Mai, 2008 schwatzte [EMAIL PROTECTED] so: >> Next up, the question: has anyone tried gaming on FreeBSD? I've seen >> past stuff mainly about problems WRT native software liking ALSA over >> OSS, but I don't know if that's been solved or got worse. What about WINE >> and its descendents? > I'm always trying to find gaming info for *NIX. I discovered atanks last > week, but doubt it'd fit real gaming cravings. The trouble is that different people mean different things by "gaming". Many mean "playing the absolute latest heavily advertised game by $COMPANY", some mean "playing Tetris and Solitaire". One thing that works well for old-school people like me is emulators. There are projects that work pretty darn well at emulating the NES, SNES, GameBoy, GBA, and PSX, although the best PSX emulator I found is not fully Open. There are other less good emulators for the N64 and PS2. Many of these things should work just fine on *BSD. Wine is hit-or-miss. If you have a specific program you want to run, it's always best to check it out at winehq.com and see if it can be made to work without major hassle. Wine *still* can't run Progress Quest without graphical glitches (sigh). >> As I'm writing this, I recall that, on modern Slackware anyway, they use >> modules and an initrd image, so maybe that's it. > Yup. Everything does at this point. The kernel is too big to boot if you > don't put some stuff in modules. It's easy to put together a kernel that doesn't require an initrd. It's just that that kernel will only boot on a very limited subset of hardware. One of the first things I always do when installing a new distro is to get a recent vanilla source tarball and build a vanilla kernel that doesn't require an initrd because it's got everything needed to mount / built in. (This also removes bugs caused by distro patches, and typically makes it easier to build and use third-party kernel modules.) -- "Oh bother," said the Borg, "We've assimilated Pooh." --MHR on alt.fan.pratchett My blog and resume: http://crow202.dyndns.org:8080/wordpress/ Matt G|There is no Darkness in Eternity/But only Light too dim for us to see --- PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us To subscribe, unsubscribe, or to change your mail settings: http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
Re: Best Vista Error EVAR, gaming, and software requests, and an Ubuntu gripe
Am 20. Mai, 2008 schwätzte Erich Newell so: If you do this however...I highly recommend editing the /etc/ssh/sshd_config file to not allow root logon. Shouldn't sshd generally be configured to not allow logging in as root? I believed that before sudo was readily available and really believe it now that I have sudo everywhere. ciao, der.hans -- # http://www.LuftHans.com/https://LOPSA.org/ # "It is a miracle that curiosity survives formal education." # -- Albert Einstein--- PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us To subscribe, unsubscribe, or to change your mail settings: http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
Re: Best Vista Error EVAR, gaming, and software requests, and an Ubuntu gripe
Am 19. Mai, 2008 schwätzte [EMAIL PROTECTED] so: Next up, the question: has anyone tried gaming on FreeBSD? I've seen past stuff mainly about problems WRT native software liking ALSA over OSS, but I don't know if that's been solved or got worse. What about WINE and its decendants? I'm always trying to find gaming info for *NIX. I discovered atanks last week, but doubt it'd fit real gaming cravings. Finally, has anyone got a copy of FreeBSD 7 or Slackware 12.1? For those at the installfest last weekend, I STILL don't have a working install, and I worked on it all day. ACPI on this laptop is turning out to be a MAJOR headache! One big weirdness (for me, anyway) is that the kernel on the install disks works fine but my compiled kernels all fail when they try to mount the root filesystem. What error are you getting? Can't find root partition type of errors? Are you getting your initrds? Do they include the module for whatever filesystem you're using for root? As I'm writing this, I recall that, on modern Slackware anyway, they use modules and an initrd image, so maybe that's it. Yup. Everything does at this point. The kernel is too big to boot if you don't put some stuff in modules. Maybe some hardware can handle big, monolithic kernels, but that's not the general case. Oh, and that Ubuntu gripe: who the hell makes a live-CD/install disk where the root/superuser account is password protected?!? And said password is nowhere to be found on the disk! What gives?!? Ubuntu is clearly too windozey for my taste. Blech! :( Said password doesn't exist. By default root doesn't have a password on Ubuntu boxen. You can add one, but it would be better to just use sudo. windows understands account and privilege seperation? windows understands security? Maybe in a Bizarro world... ciao, der.hans -- # http://www.LuftHans.com/https://LOPSA.org/ # "Every person who has mastered a profession is a skeptic concerning it." # -- George Bernard Shaw--- PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us To subscribe, unsubscribe, or to change your mail settings: http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
Re: Best Vista Error EVAR, gaming, and software requests, and an Ubuntu gripe
Ok...now that I got that bit out of my system. Onto the more list-pertinent bits... Re: LiveCD root user...the default user is a member of sudoers. Simply: 'sudo passwd root' and enter a password of your choice Alternately, if you want to be uber hacker 1337ski...you could open the .iso in your favorite ISO editing/mastering tool (e.g. ISO Master) and then edit the /etc/shadow file. Look for the "root" password line and delete everything between the second and third colon. Then save the file and use your ISO editor to repackage the ISO. You can now burn your livecd and have a nice, paswordless root user account. If you do this however...I highly recommend editing the /etc/ssh/sshd_config file to not allow root logon. Share and enjoy. On Mon, May 19, 2008 at 11:56 PM, <[EMAIL PROTECTED]> wrote: > I came across this while searching for the answer to the question > following this, and IMMEDIATELY posted it here! Feel free to forward it > to /. if you have an account there. > > > http://www.destructoid.com/blogs/king3vbo/best-vista-error-evar-toppled-by-new-error--58729.phtml > > Next up, the question: has anyone tried gaming on FreeBSD? I've seen > past stuff mainly about problems WRT native software liking ALSA over > OSS, but I don't know if that's > been solved or got worse. What about WINE and its decendants? > > Finally, has anyone got a copy of FreeBSD 7 or Slackware 12.1? > > For those at the installfest last weekend, I STILL don't have a working > install, and I worked on it all day. ACPI on this laptop is turning out > to be a MAJOR headache! > One big weirdness (for me, anyway) is that the kernel on the install > disks works fine but my compiled kernels all fail when they try to mount > the root filesystem. > As I'm writing this, I recall that, on modern Slackware anyway, they use > modules and an initrd image, so maybe that's it. > > Oh, and that Ubuntu gripe: who the hell makes a live-CD/install disk > where the root/superuser account is password protected?!? And said > password is nowhere to be found > on the disk! What gives?!? Ubuntu is clearly too windozey for my > taste. Blech! :( > > Mike > --- > PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us > To subscribe, unsubscribe, or to change your mail settings: > http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss > -- "A man is defined by the questions that he asks; and the way he goes about finding the answers to those questions is the way he goes through life." --- PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us To subscribe, unsubscribe, or to change your mail settings: http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
Re: Best Vista Error EVAR, gaming, and software requests, and an Ubuntu gripe
I have one thing to say about this...and I'm very serious. BWAHAHAHAHAHAHAHAHAHAAHAHAH! Really. On Mon, May 19, 2008 at 11:56 PM, <[EMAIL PROTECTED]> wrote: > I came across this while searching for the answer to the question > following this, and IMMEDIATELY posted it here! Feel free to forward it > to /. if you have an account there. > > > http://www.destructoid.com/blogs/king3vbo/best-vista-error-evar-toppled-by-new-error--58729.phtml > > Next up, the question: has anyone tried gaming on FreeBSD? I've seen > past stuff mainly about problems WRT native software liking ALSA over > OSS, but I don't know if that's > been solved or got worse. What about WINE and its decendants? > > Finally, has anyone got a copy of FreeBSD 7 or Slackware 12.1? > > For those at the installfest last weekend, I STILL don't have a working > install, and I worked on it all day. ACPI on this laptop is turning out > to be a MAJOR headache! > One big weirdness (for me, anyway) is that the kernel on the install > disks works fine but my compiled kernels all fail when they try to mount > the root filesystem. > As I'm writing this, I recall that, on modern Slackware anyway, they use > modules and an initrd image, so maybe that's it. > > Oh, and that Ubuntu gripe: who the hell makes a live-CD/install disk > where the root/superuser account is password protected?!? And said > password is nowhere to be found > on the disk! What gives?!? Ubuntu is clearly too windozey for my > taste. Blech! :( > > Mike > --- > PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us > To subscribe, unsubscribe, or to change your mail settings: > http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss > -- "A man is defined by the questions that he asks; and the way he goes about finding the answers to those questions is the way he goes through life." --- PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us To subscribe, unsubscribe, or to change your mail settings: http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
Best Vista Error EVAR, gaming, and software requests, and an Ubuntu gripe
I came across this while searching for the answer to the question following this, and IMMEDIATELY posted it here! Feel free to forward it to /. if you have an account there. http://www.destructoid.com/blogs/king3vbo/best-vista-error-evar-toppled-by-new-error--58729.phtml Next up, the question: has anyone tried gaming on FreeBSD? I've seen past stuff mainly about problems WRT native software liking ALSA over OSS, but I don't know if that's been solved or got worse. What about WINE and its decendants? Finally, has anyone got a copy of FreeBSD 7 or Slackware 12.1? For those at the installfest last weekend, I STILL don't have a working install, and I worked on it all day. ACPI on this laptop is turning out to be a MAJOR headache! One big weirdness (for me, anyway) is that the kernel on the install disks works fine but my compiled kernels all fail when they try to mount the root filesystem. As I'm writing this, I recall that, on modern Slackware anyway, they use modules and an initrd image, so maybe that's it. Oh, and that Ubuntu gripe: who the hell makes a live-CD/install disk where the root/superuser account is password protected?!? And said password is nowhere to be found on the disk! What gives?!? Ubuntu is clearly too windozey for my taste. Blech! :( Mike --- PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us To subscribe, unsubscribe, or to change your mail settings: http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss