On Fri, Mar 31, 2017 at 02:07:54PM +0200, Dominik George wrote:
> That's how w^Hsomeone rooted Dreamhost.
Are you referring to the 2012 incident, or something more recent?
I thought the former was an issue with lax filesystem permissions.
-nd.
> On Fri, Mar 31, 2017 at 02:07:54PM +0200, Dominik George wrote:
> > That's how w^Hsomeone rooted Dreamhost.
>
> Are you referring to the 2012 incident, or something more recent?
>
> I thought the former was an issue with lax filesystem permissions.
(This is getting somewhat OT; if you want to
>Well, not without getting root first.
>
>And making something listen that spawns a shell usable to gain further
>access is a big win. Keeping uploading PHP code to some vulnerable
>webserver will at some point be noticed. Uploading something spawning a
>shell once probably not.
>
When $someone ha
>If someone unauthorised is on your machine can they not just as well
>remove firewall rules?
Well, not without getting root first.
And making something listen that spawns a shell usable to gain further access
is a big win. Keeping uploading PHP code to some vulnerable webserver will at
some p
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Fri, Mar 31, 2017 at 02:17:35PM +0100, Brian wrote:
> On Fri 31 Mar 2017 at 14:18:04 +0200, to...@tuxteam.de wrote:
>
> > On Sat, Apr 01, 2017 at 01:00:45AM +1300, cbannis...@slingshot.co.nz wrote:
> >
> > [...]
> >
> > > My understanding is that
On Fri 31 Mar 2017 at 14:18:04 +0200, to...@tuxteam.de wrote:
> On Sat, Apr 01, 2017 at 01:00:45AM +1300, cbannis...@slingshot.co.nz wrote:
>
> [...]
>
> > My understanding is that if there are no services listening on a port then
> > it cannot be accessed.
> >
> > e.g.
> >
> > http://serverfa
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Sat, Apr 01, 2017 at 01:00:45AM +1300, cbannis...@slingshot.co.nz wrote:
[...]
> My understanding is that if there are no services listening on a port then
> it cannot be accessed.
>
> e.g.
>
> http://serverfault.com/questions/733633/if-no-servi
>My understanding is that if there are no services listening on a port
>then
>it cannot be accessed.
Well, if nothing is listening on a port, then something can start doing so
unconditionally.
That's how w^Hsomeone rooted Dreamhost.
-nik
On Mon, Mar 13, 2017 at 08:58:15PM -0700, David Christensen wrote:
> On 03/13/2017 05:38 AM, Dan Purgert wrote:
> >Currently, the system here is
> >
> > - every PC has a cronjob backing up $HOME to a central "server" (read -
> > repurposed PC with decent WD drives), just an rsync script that runs
On 03/23/2017 02:22 AM, Dan Purgert wrote:
David Christensen wrote:
On 03/22/2017 03:35 AM, Dan Purgert wrote:
David Christensen wrote:
On 03/17/2017 03:31 AM, Dan Purgert wrote:
David Christensen wrote:
On 03/13/2017 05:38 AM, Dan Purgert wrote:
[...]
I should clarify that:
"The bac
wrote:
>
> On Thu, Mar 23, 2017 at 09:14:47AM -, Dan Purgert wrote:
>> wrote:
>
> [...]
>
>> > You're holding it wrong :)
>
> [on a second reading this might come across as unpolite: sorry if
> that's the case]
No worries, I don't use iDevices.
>
> [...]
>
>> You do realize that the thread
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Thu, Mar 23, 2017 at 09:14:47AM -, Dan Purgert wrote:
> wrote:
[...]
> > You're holding it wrong :)
[on a second reading this might come across as unpolite: sorry if
that's the case]
[...]
> You do realize that the thread of discussion you
David Christensen wrote:
> On 03/22/2017 03:35 AM, Dan Purgert wrote:
>> David Christensen wrote:
>>> On 03/17/2017 03:31 AM, Dan Purgert wrote:
David Christensen wrote:
> On 03/13/2017 05:38 AM, Dan Purgert wrote:
> [...]
>>>
>>> I should clarify that:
>>>
>>> "The backup server
wrote:
>
> On Wed, Mar 22, 2017 at 11:57:44AM -, Dan Purgert wrote:
>> wrote:
>> >
>> > On Wed, Mar 22, 2017 at 10:35:13AM -, Dan Purgert wrote:
>> >> David Christensen wrote:
>> >> > On 03/17/2017 03:31 AM, Dan Purgert wrote:
>> >> >> David Christensen wrote:
>> >> >>> On 03/13/2017 05:3
On 03/22/2017 03:35 AM, Dan Purgert wrote:
David Christensen wrote:
On 03/17/2017 03:31 AM, Dan Purgert wrote:
David Christensen wrote:
On 03/13/2017 05:38 AM, Dan Purgert wrote:
[...]
I should clarify that:
"The backup server can be firewalled with no incoming ports and
outgoing
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Wed, Mar 22, 2017 at 11:57:44AM -, Dan Purgert wrote:
> wrote:
> >
> > On Wed, Mar 22, 2017 at 10:35:13AM -, Dan Purgert wrote:
> >> David Christensen wrote:
> >> > On 03/17/2017 03:31 AM, Dan Purgert wrote:
> >> >> David Christensen wrote:
wrote:
>
> On Wed, Mar 22, 2017 at 10:35:13AM -, Dan Purgert wrote:
>> David Christensen wrote:
>> > On 03/17/2017 03:31 AM, Dan Purgert wrote:
>> >> David Christensen wrote:
>> >>> On 03/13/2017 05:38 AM, Dan Purgert wrote:
>> >>> [...]
>> >
>> > I should clarify that:
>> >
>> > "The bac
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Wed, Mar 22, 2017 at 10:35:13AM -, Dan Purgert wrote:
> David Christensen wrote:
> > On 03/17/2017 03:31 AM, Dan Purgert wrote:
> >> David Christensen wrote:
> >>> On 03/13/2017 05:38 AM, Dan Purgert wrote:
> >>> [...]
> >
> > I should clarify t
David Christensen wrote:
> On 03/17/2017 03:31 AM, Dan Purgert wrote:
>> David Christensen wrote:
>>> On 03/13/2017 05:38 AM, Dan Purgert wrote:
>>> [...]
>
> I should clarify that:
>
> "The backup server can be firewalled with no incoming ports and
> outgoing ports limited to SSH and oth
Am 11.03.2017 um 16:10 schrieb Richard Owlett:
> I've been good about telling others that backups are a good idea.
Hi,
i know i am late to the party. And without knowing any ready made
documentation, let me add a few things out of the top of my head:
1. Backups saved my mental health on numerous
On 03/17/2017 03:31 AM, Dan Purgert wrote:
David Christensen wrote:
On 03/13/2017 05:38 AM, Dan Purgert wrote:
Currently, the system here is
- every PC has a cronjob backing up $HOME to a central "server" (read -
repurposed PC with decent WD drives), just an rsync script that runs
daily
On Fri, Mar 17, 2017 at 4:31 AM, Dan Purgert wrote:
> David Christensen wrote:
>> On 03/13/2017 05:38 AM, Dan Purgert wrote:
>>> Currently, the system here is
>>>
>>> - every PC has a cronjob backing up $HOME to a central "server" (read -
>>>repurposed PC with decent WD drives), just an rsync
David Christensen wrote:
> On 03/13/2017 05:38 AM, Dan Purgert wrote:
>> Currently, the system here is
>>
>> - every PC has a cronjob backing up $HOME to a central "server" (read -
>>repurposed PC with decent WD drives), just an rsync script that runs
>>daily.
>
> Don't forget security:
>
Stefan Monnier wrote:
>> It'd probably be fairly easy to come up with a backup system based on Git
>> (probably not good for whole-system backups, but likely workable for
>> homedir backups), but I haven't come across such a thing yet.
>
> Well, for the reference I've now found `bup` which isn't us
> It'd probably be fairly easy to come up with a backup system based on Git
> (probably not good for whole-system backups, but likely workable for
> homedir backups), but I haven't come across such a thing yet.
Well, for the reference I've now found `bup` which isn't using Git
directly but uses th
On Wed, Mar 15, 2017 at 09:02:53AM -0400, Dan Ritter wrote:
> [rsnapshot]'s behavior is correct. The performance is poor, relative to,
> say, zfs snapshots and sends. rsnapshot needs to do a lot more
> work.
There are user-level tools that handle this situation better (e.g.
rdiff-snapshot)
--
Jo
On Wed, Mar 15, 2017 at 08:01:00AM -0400, Stefan Monnier wrote:
> >> > Having been there and done that, I can assure you that having a
> >> > live snapshot system -- rsnapshot or btrfs/zfs native tools --
> >> > is more fun and less work for everyone.
>
> I looked at rsnapshot but its behavior is
Dan Ritter writes regarding rsnapshot:
> Its behavior is correct. The performance is poor, relative to,
> say, zfs snapshots and sends. rsnapshot needs to do a lot more
> work.
I like rsnapshot. I retired two years ago, but that's how
we backed up all our unix boxes and one didn't have to
On Wed, Mar 15, 2017 at 08:01:00AM -0400, Stefan Monnier wrote:
> >> > Having been there and done that, I can assure you that having a
> >> > live snapshot system -- rsnapshot or btrfs/zfs native tools --
> >> > is more fun and less work for everyone.
>
> I looked at rsnapshot but its behavior is
>> > Having been there and done that, I can assure you that having a
>> > live snapshot system -- rsnapshot or btrfs/zfs native tools --
>> > is more fun and less work for everyone.
I looked at rsnapshot but its behavior is poor when you have lots of
directories with lots of tiny files.
It'd prob
On Sat, Mar 11, 2017 at 10:28:22PM +, Joe wrote:
> This is a well-known joke (and advert):
>
> http://www.taobackup.com/
>
> but does touch briefly on most backup issues.
Great to see someone else recommending this, I do too :)
--
Jonathan Dowland
Please do not CC me, I am subscribed to t
On Tue, Mar 14, 2017 at 12:15:15PM -0700, Miles Fidelman wrote:
> On 3/14/17 11:18 AM, Dan Ritter wrote:
>
> > On Tue, Mar 14, 2017 at 05:54:06PM +, Glenn English wrote:
> > > On Mon, Mar 13, 2017 at 12:38 PM, Dan Purgert wrote:
> > > > David Christensen wrote:
> > > > > On 03/11/2017 07:10 A
On 3/14/17 11:18 AM, Dan Ritter wrote:
On Tue, Mar 14, 2017 at 05:54:06PM +, Glenn English wrote:
On Mon, Mar 13, 2017 at 12:38 PM, Dan Purgert wrote:
David Christensen wrote:
On 03/11/2017 07:10 AM, Richard Owlett wrote:
I've vague ideas of what backup pattern(s) I might follow.
I'm lo
On 3/14/17 10:54 AM, Glenn English wrote:
On Mon, Mar 13, 2017 at 12:38 PM, Dan Purgert wrote:
David Christensen wrote:
On 03/11/2017 07:10 AM, Richard Owlett wrote:
I've vague ideas of what backup pattern(s) I might follow.
I'm looking for reading materials that might trigger "I hadn't thou
On Sat, 11 Mar 2017 09:10:54 -0600
Richard Owlett wrote:
> I've been good about telling others that backups are a good idea.
> Guess who hadn't and then crashed his system and spent hours putting
> things back together ;<
>
> In the past individual projects ended up on individual flash drives
>
On Tue, Mar 14, 2017 at 05:54:06PM +, Glenn English wrote:
> On Mon, Mar 13, 2017 at 12:38 PM, Dan Purgert wrote:
> > David Christensen wrote:
> >> On 03/11/2017 07:10 AM, Richard Owlett wrote:
> >>> I've vague ideas of what backup pattern(s) I might follow.
> >>> I'm looking for reading mater
On Mon, Mar 13, 2017 at 12:38 PM, Dan Purgert wrote:
> David Christensen wrote:
>> On 03/11/2017 07:10 AM, Richard Owlett wrote:
>>> I've vague ideas of what backup pattern(s) I might follow.
>>> I'm looking for reading materials that might trigger "I hadn't thought
>>> of that" moments.
>>>
>>> S
On 03/13/2017 09:12 AM, Dan Ritter wrote:
On Sat, Mar 11, 2017 at 09:10:54AM -0600, Richard Owlett wrote:
I have one partition that might be called a "production" environment, i.e.
fairly stable and has the most valuable content.
A second partition hosts my experiments - I've a project to create
On 03/13/2017 07:12 AM, Dan Ritter wrote:
... we need image backups over the network to the server.
Clonezilla?
David
On 03/13/2017 05:38 AM, Dan Purgert wrote:
Currently, the system here is
- every PC has a cronjob backing up $HOME to a central "server" (read -
repurposed PC with decent WD drives), just an rsync script that runs
daily.
Don't forget security:
1. With a "push" arrangement (e.g. each w
On Sat, Mar 11, 2017 at 09:10:54AM -0600, Richard Owlett wrote:
> I have one partition that might be called a "production" environment, i.e.
> fairly stable and has the most valuable content.
> A second partition hosts my experiments - I've a project to create an
> optimal install. The third is the
David Christensen wrote:
> On 03/11/2017 07:10 AM, Richard Owlett wrote:
>> I've vague ideas of what backup pattern(s) I might follow.
>> I'm looking for reading materials that might trigger "I hadn't thought
>> of that" moments.
>>
>> Suggestions?
>
> [1] is a decent overview:
>
> http://shop.orei
On Sat, 11 Mar 2017 09:10:54 -0600
Richard Owlett wrote:
> I've been good about telling others that backups are a good idea.
> Guess who hadn't and then crashed his system and spent hours putting
> things back together ;<
>
> In the past individual projects ended up on individual flash drives
>
On 03/11/2017 07:10 AM, Richard Owlett wrote:
I've been good about telling others that backups are a good idea.
Guess who hadn't and then crashed his system and spent hours putting
things back together ;<
In the past individual projects ended up on individual flash drives as I
was frequently usi
I've been good about telling others that backups are a good idea.
Guess who hadn't and then crashed his system and spent hours putting
things back together ;<
In the past individual projects ended up on individual flash drives as I
was frequently using different machines. I now have some relia
45 matches
Mail list logo
