thanks man I gave up on that though.
On Tue, Jul 9, 2024 at 9:22 PM Eric Oyen via PLUG-discuss <
plug-discuss@lists.phxlinux.org> wrote:
> Well, if you want it short, sweet and easy to remember, use “root” or if
> you want it to be harder for someone else to guess but easy enough to
>
Well, if you want it short, sweet and easy to remember, use “root” or if you
want it to be harder for someone else to guess but easy enough to remember, use
“r007” as the command and then use this in the script to report sudo has been
disabled: “SUDO has been disabled by system administrator.
Regards,
George Toft
On 7/5/2024 5:43 AM, techli...@phpcoderusa.com wrote:
On 2024-07-05 00:23, George Toft wrote:
Had a chance to casually ask about the washed check thing today. Big
eye-roll. Police report. Affidavits. Close the checking account. Big
investigation. Sounds like a PITA.
On 2024-07-05 00:23, George Toft wrote:
Had a chance to casually ask about the washed check thing today. Big
eye-roll. Police report. Affidavits. Close the checking account. Big
investigation. Sounds like a PITA.
Regards,
George Toft
I just want to approach this in a way that I have
Had a chance to casually ask about the washed check thing today. Big
eye-roll. Police report. Affidavits. Close the checking account. Big
investigation. Sounds like a PITA.
Regards,
George Toft
On 7/4/2024 3:14 PM, techli...@phpcoderusa.com wrote:
Thanks George!! Lot s to think about.
On
> Mail scares me. I had to send my LEA ID in recently via USPS. I'm hoping
> they got it.
With how unreliable mail is, I still can't believe that we use it for anything
official.
For instance, jury duty notices. Don't respond or never received it? Well,
depending on the state and whether a
Many years ago our founders and many others put it all on the line so we
could enjoy freedom.
I am so thankful to those brave men and the women who supported them.
On 2024-07-04 15:15, Keith Smith via PLUG-discuss wrote:
I find it interesting that online banking is safer than checks.
I find it interesting that online banking is safer than checks.
On 2024-07-04 14:23, George Toft via PLUG-discuss wrote:
IMHO, Y'all are brave.
Regards,
George Toft
On 7/3/2024 11:31 PM, Steve Litt via PLUG-discuss wrote:
Keith Smith via PLUG-discuss said on Wed, 03 Jul 2024 06:21:25
Thanks George!! Lot s to think about.
On 2024-07-04 14:23, George Toft wrote:
Regards,
George Toft
On 7/4/2024 6:50 AM, techli...@phpcoderusa.com wrote:
Thank you so much George!!
Another Question. I was a police officer in the 80's and 90's. During
my tenure the bank was on the hook
IMHO, Y'all are brave.
Regards,
George Toft
On 7/3/2024 11:31 PM, Steve Litt via PLUG-discuss wrote:
Keith Smith via PLUG-discuss said on Wed, 03 Jul 2024 06:21:25 -0700
On 2024-07-02 18:20, George Toft via PLUG-discuss wrote:
I work for a bank, and you would be amazed at how much
Regards,
George Toft
On 7/4/2024 6:50 AM, techli...@phpcoderusa.com wrote:
Thank you so much George!!
Another Question. I was a police officer in the 80's and 90's. During
my tenure the bank was on the hook for any criminal acts as long as
the customer was not negligent. I only dealt
you inspired me, rusty. thank you.
On Wed, Jul 3, 2024 at 4:00 PM rusty wrote:
> Let me start by apologizing here - I'm feeling a bit silly...
>
> how about 'becomeroot' or 'iwannaplaygod' or 'rootme' or maybe even
> 'meroot' or 'beroot'
>
> Yeah, sorry, but remember I did apologize first! ;-)
Thank you so much George!!
Another Question. I was a police officer in the 80's and 90's. During
my tenure the bank was on the hook for any criminal acts as long as the
customer was not negligent. I only dealt with this on a couple
occasional.
So If someone gets access to my online
> You would be amazed at how many vendors ship products that: chmod 777 output
> files, or have the file perms defined in the RPM as 666 or 777, or create
> files in /tmp. Pretty sad.
Yeah... whenever I've seen stuff like that in the past I suggest we not use
that vendor because they don't
Keith Smith via PLUG-discuss said on Wed, 03 Jul 2024 06:21:25 -0700
>
>
>On 2024-07-02 18:20, George Toft via PLUG-discuss wrote:
>> I work for a bank, and you would be amazed at how much security is
>> baked into the connecting your browser to their web servers. Makes
>> the NSA look like
Thanks for the explanation - no argument here. I was hoping for a link
from RH that I could pass on to my Staff Architect. Right now I'm
battling the next three layers of manglement above me "to please OMG
don't try to convert back to sudo." I have layer #1 mostly convinced.
Silly managers
Regards,
George Toft
On 7/3/2024 5:57 AM, techli...@phpcoderusa.com wrote:
On 2024-07-02 19:05, George Toft via PLUG-discuss wrote:
Okay, I now come begging for more information on why RH thinks sudo
is bad. But first a little background...
Where I work, the first thing we do is remove
I did say "not naming vendor." Trade secret. We don't discuss our
vendors. Sorry, Mike.
Regards,
George Toft
On 7/3/2024 4:37 AM, Michael via PLUG-discuss wrote:
can you share with usw what you use instead of sudo?
On Tue, Jul 2, 2024 at 11:42 PM George Toft via PLUG-discuss
wrote:
Sorry, Kieth, I have bad news for you. You took a 30+ year leap
backwards in security.
I can tell you for certain, from my bank fraud analyst friend (just got
promoted to financial crimes investigator), checks are the second most
insecure way of transferring money, first being putting the
> I personally detest sudo because it's like chmod 777 * - makes
> everything work so much better
Please, please, PLEASE! I beg of you! Please do not chmod 777 stuff! This is
even worse! You're just allowing all users to modify said files tearing down
any kind of privilege separation there
Let me start by apologizing here - I'm feeling a bit silly...
how about 'becomeroot' or 'iwannaplaygod' or 'rootme' or maybe even
'meroot' or 'beroot'
Yeah, sorry, but remember I did apologize first! ;-)
And, of course, DON'T POST what you made it!
On Wed, Jul 3, 2024 at 07:59, Michael via
On 2024-07-02 18:20, George Toft via PLUG-discuss wrote:
I work for a bank, and you would be amazed at how much security is
baked into the connecting your browser to their web servers. Makes the
NSA look like freshmen. And no, I'm not telling you who I work for.
Regards,
George Toft
I'd
On 2024-07-02 19:05, George Toft via PLUG-discuss wrote:
Okay, I now come begging for more information on why RH thinks sudo is
bad. But first a little background...
Where I work, the first thing we do is remove sudo and replace it with
a shell script that calls our centralized Privileged
I've figured out how I'm going to secure my system. I will link sudo to
another command and then create an alias for sudo that will echo something
like, 'Sudo has been disabled,' if I forget. Now I need suggestions on what
to use. Chat gpt suggests supersudo but that's too long. What do you all
can you share with usw what you use instead of sudo?
On Tue, Jul 2, 2024 at 11:42 PM George Toft via PLUG-discuss <
plug-discuss@lists.phxlinux.org> wrote:
> Okay, I now come begging for more information on why RH thinks sudo is
> bad. But first a little background...
>
> Where I work, the first
Okay, I now come begging for more information on why RH thinks sudo is
bad. But first a little background...
Where I work, the first thing we do is remove sudo and replace it with a
shell script that calls our centralized Privileged Access Management
(PAM) system (not naming vendor). The use
Agreed, but...
Your comment is what I've been telling writers and filmmakers for almost
a year. However, AI can jog a few thoughts loose and inspire the human
to new paths of success.
Regards,
George Toft
On 6/25/2024 10:04 PM, Eric Oyen via PLUG-discuss wrote:
Yeah, right!
Sorry, but AI
I work for a bank, and you would be amazed at how much security is baked
into the connecting your browser to their web servers. Makes the NSA
look like freshmen. And no, I'm not telling you who I work for.
Regards,
George Toft
On 6/29/2024 5:19 PM, Keith Smith via PLUG-discuss wrote:
Mike,
On 6/28/24 19:46, Ryan Petris wrote:
I didn't say that you *were* trolling, I said it *felt* like you were trolling.
There's a small but non-insignificant difference there.
True, and apologies for taking it as a near-attack ;-)
Also, I'm not one to care for how credentialed someone may be --
Hey, I guess I need to change my username as well.
On Sun, Jun 30, 2024, 7:34 AM Michael wrote:
> Yeah. That happened to me to a LONG time ago, too; now that I think about
> it.
>
> On Sat, Jun 29, 2024, 9:36 PM wrote:
>
>> I have had several situations where I needed to become root because I
Yeah. That happened to me to a LONG time ago, too; now that I think about
it.
On Sat, Jun 29, 2024, 9:36 PM wrote:
> I have had several situations where I needed to become root because I
> was unable to compete the task using sudo. Maybe I do not
> understand
>
>
>
> On 2024-06-29 19:05,
I have had several situations where I needed to become root because I
was unable to compete the task using sudo. Maybe I do not
understand
On 2024-06-29 19:05, Michael wrote:
I thought using suddenly was the same as becoming root
On Sat, Jun 29, 2024, 7:19 PM wrote:
Mike,
The
I thought using suddenly was the same as becoming root
On Sat, Jun 29, 2024, 7:19 PM wrote:
> Mike,
>
> The world is a hostile place. The more precautions you take the better.
> I cover the camera on my cellular phone while not in use. I cover the
> camera that is built into my laptop while
Mike,
The world is a hostile place. The more precautions you take the better.
I cover the camera on my cellular phone while not in use. I cover the
camera that is built into my laptop while it is not in use. I think
on-line banking is dangerous. At some point I want to turn off WIFI and
Oh, am i remembering correctly that with scripts if you want to control
things you preface the command with 'username@computername'?
so assuming this I am safe again to allow sudo in the home-cage for apt.
On Sat, Jun 29, 2024, 11:00 AM Michael wrote:
> Oh yeah. I changed my computer name.
>
>
Oh yeah. I changed my computer name.
On Sat, Jun 29, 2024, 10:57 AM Michael wrote:
> And that it's only a home computer.
>
> On Sat, Jun 29, 2024, 10:55 AM Michael wrote:
>
>> I just realized, while 99% of the people on this list are honest there is
>> the diabolical 1%. So I guess I enter my
And that it's only a home computer.
On Sat, Jun 29, 2024, 10:55 AM Michael wrote:
> I just realized, while 99% of the people on this list are honest there is
> the diabolical 1%. So I guess I enter my password for the rest of my life.
> Or do you think that it really matters considering this is
I just realized, while 99% of the people on this list are honest there is
the diabolical 1%. So I guess I enter my password for the rest of my life.
Or do you think that it really matters considering this is only a mailing
list?
On Sat, Jun 29, 2024, 10:22 AM Michael wrote:
> Thanks for saying
Thanks for saying this. I realized that I only needed to run apt as root. I
didn't know how to make it so I could do that. but chatgt did!
On Sat, Jun 29, 2024, 5:53 AM Eric Oyen via PLUG-discuss <
plug-discuss@lists.phxlinux.org> wrote:
> NO WORRIES FROM THIS END RUSTY.
>
> As a general
NO WORRIES FROM THIS END RUSTY.
As a general rule, I use sudo only for very specific tasks (usually updating my
development package tree on OS X) and no where else will I run anything as
root. I have seen what happens to linux machines that run infected binaries as
root and it can get ugly
I should also mention that, due to the supply chain attacks on npm and other
package managers, I've started to do development either on a remote headless
machine (using the remote capabilities of JetBrains tools and/or VScode) or on
a disk explicitly setup for software development. That way, if
I didn't say that you *were* trolling, I said it *felt* like you were trolling.
There's a small but non-insignificant difference there.
Also, I'm not one to care for how credentialed someone may be -- so called
professionals are wrong all the time. Nobody is perfect.
So let me expand on what I
(Deep breath. Calm...)
I can't figure out how to respond rationally to the below, so all I'm
going to say is - before you call troll, you might want to research the
author, and read a bit more carefully what they wrote. I don't believe
I recommended any of the crazy things you suggest.
On 6/28/24 11:23, Arun Khan wrote:
On Wed, Jun 26, 2024 at 12:31 PM Rusty Carruth via PLUG-discuss <
plug-discuss@lists.phxlinux.org> wrote:
Actually, I'd like to start a bit of a discussion on this.
The first step in any cyber security activity is to define your risk
appetite; and define
On Wed, Jun 26, 2024 at 12:31 PM Rusty Carruth via PLUG-discuss <
plug-discuss@lists.phxlinux.org> wrote:
> Actually, I'd like to start a bit of a discussion on this.
>
The first step in any cyber security activity is to define your risk
appetite; and define the security controls (e.g. sudo)
I feel like you're trolling so I'm not going to spend very much time on this.
It's been a generally good security practice for at least the last 25+ years to
not regularly run as a privileged user, requiring some sort of escalation to do
administrative-type tasks. By using passwordless sudo,
Amusing point of note, My company has a large investment in RHEL and they
use sudo, I think part of RH choice is about not choosing to enforce their
decisions on their userbase, wich I can appreciate.
On Wed, Jun 26, 2024 at 3:31 PM Rusty Carruth via PLUG-discuss <
Actually, I'd like to start a bit of a discussion on this.
First, I know that for some reason RedHat seems to think that sudo is
bad/insecure.
I'd like to know the logic there, as I think the argument FOR using sudo
is MUCH stronger than any argument I've heard (which, admittedly, is
Are you saying ChatGPT is sharing my information on how I use AI? If I
use it for programming the world will know I am a programmer and they
will know what projects I am working on? And if I write articles they
will catalog that as well?
Thank you for the heads up. I had not thought of the
I'm VERY leary about using ChatGPT, no much info about your connection
given out and dispursed to other org's the people milatary people here were
using it to write reviews for Troops, they were told to stop using it
<<< Keith >>>
On Wed, Jun 26, 2024 at 3:01 AM Michael via PLUG-discuss <
Yeah, right!
Sorry, but AI in any form just won’t replace a human with any real experience.
-Eric
From the Central Offices of the Technomage Gild, Human Relations Dept.
> On Jun 25, 2024, at 6:01 PM, Michael via PLUG-discuss
> wrote:
>
> then I remember that a PLUG member mentioned ChatGPT
> wanted sudo not to require a password.
Please reconsider this... This is VERY BAD security practice. There's basically
zero defense if you happen to download/run something malicious.
On Tue, Jun 25, 2024, at 6:01 PM, Michael via PLUG-discuss wrote:
> then I remember that a PLUG member
I feel attacked and abandoned.
Didn't we just fight the war of Loyalties? I thought Michael won, but I
could be wrong.
--
Thanks,
Alexander
Sent from my Google Pixel 7 Pro
On Tue, Jun 25, 2024, 18:07 Michael via PLUG-discuss <
plug-discuss@lists.phxlinux.org> wrote:
> OH! that's the end of
OH! that's the end of using user groups to troublesoot at least.
On Tue, Jun 25, 2024 at 9:01 PM Michael wrote:
> then I remember that a PLUG member mentioned ChatGPT being good at
> troubleshooting so I figured I'd give it a go. I sprint about half an hour
> asking it the wrong question but
then I remember that a PLUG member mentioned ChatGPT being good at
troubleshooting so I figured I'd give it a go. I sprint about half an hour
asking it the wrong question but after that it took 2 minutes. I wanted
sudo not to require a password. it is wonderful! now I don't have to bug
you guys.
55 matches
Mail list logo
