Weblogs for chr0nik
#4
Posted by chr0nik on Thu 7 Dec 2006 at 01:00
Right. So uh... I had some security issues with my nifty old Dell box hosting a fun domain. I think someone enjoyed a large percentage of a 200GB drive for uh... years maybe? Right. That totally sucks. I immediately whacked all my pirated warez including an incredible book collection for poor ppl... Anyway, step one to solving problems with security is isolation, I think. To find a safe place in my noggin, I actually killed all the power in my house on Turkey Day. Anywho, I'm back trying to pretend that I actually know what I'm doing. That 200GB disk now hold Debian Etch and it appears to be doing great so far (outside of the fact that I'm quite gimpy and may already again be subjected to arse rape w/o knowing.) So here's the deal. I just want to mount the old filesystem to see if I can at least salvage tables in mysql, pages in jspwiki and the contents of my cvs install. As I said, I'm gimpy so I'm trying to learn to love some of the sexier (gnome, kde) facets of my new Debian install. When I try to mount the old disk in Nautilus by clicking on the neat-o icon, I get a painful message telling me I'm dumb... reminding, rather. I need some help please. I really don't want to lose all that source code and whatever else I had. I need to understand two things. 1, recovering data from unbootable Debian installs and 2, how the fsck do I setup a decent backup system with no real backup gear (tape drives, burners, etc.) installed on my server. A tarball of cvs would be neat. Some way to migrate wordpress and gallery would make Christmas a happy place for blue arsed damn yankee to exist in. Anyone interested in not calling me a fool via WTF, STFU and RTFM comments? I'm just trying to get simpsonhomestead.com back up in some semblance of similarity to what it was before my little bipolar manic meltdown.
libhal-storage.c 1401 : info: called libhal_free_dbus_error but dbuserror was not set.
process 10564: applications must not close shared connections - see dbus_connection_close() docs. this is a bug in the application.
error: device /dev/hde1 is not removable
error: could not execute pmount
libhal-storage.c 1401 : info: called libhal_free_dbus_error but dbuserror was not set.
process 10564: applications must not close shared connections - see dbus_connection_close() docs. this is a bug in the application.
error: device /dev/hde1 is not removable
error: could not execute pmount
#3
Posted by chr0nik on Sun 19 Nov 2006 at 00:34
There is simply no good reason to play sysadmin with my home machines. It's no longer fun trying to solve the problems other people create. Call me stupid, smartly, but http://www.simpsonhomestead.com is down but for an old version of apache. Please god (iptables) protect me.
#2
Posted by chr0nik on Sun 25 Jun 2006 at 05:55
I've enjoyed Debian for years. I've run Debian on a ~10 year old Dell Dimension XPS T450 desktop which now hosts my playground/personal domain as well. I've just finished burning a fresh netinst CD and I can't wait to see Debian revive this crusty laptop. My hope is to make it my database server. I wonder how smooth the transition will be for gallery, wordpress, phpmyadmin and tomcat to look to this new old box for mysql connections. Like I said, I can't wait. :)
#1
Posted by chr0nik on Fri 14 Apr 2006 at 04:32
I wrote an article about blockhosts. I thought that was the end of this. Apparently I didn't think or test well enough or both.
I know, I can solve this with denyhosts, iptables and other methods but I'd really like to fix the problem with the tools I have rather than moving on (again) because I can't make it work. I do that enough as it is with every other problem I run into... or I just give up. I'm a wannabe Linux admin at heart, but still little more than an eager, happy fool.
Some pest has been attacking me for months now trying to log in to vsftpd as Administrator. His IP always changes and it's always spoofed; I know this because I've done the minimal research required to associate phone numbers with IPs and called folks before. Now multiple machines attack me similarly yet enough to cause denial of service, all spoofed.
How does one make vsftpd very secure? When run through inetd, the same process stays running throughout the entire attack and only hits hosts.allow on the initial login attempt. When run standalone, it hangs after accepting a password as if its tcp wrappers implementation has issue with what I'm asking it to do.
Today, during a matter of hours, I thought maybe my Internet connection at home was down because the homestead was inaccessible from my office. Ha. ~10,000 failed login attempts from 3 machines during that time period. Neat.
I'll figure it out GD it.
I know, I can solve this with denyhosts, iptables and other methods but I'd really like to fix the problem with the tools I have rather than moving on (again) because I can't make it work. I do that enough as it is with every other problem I run into... or I just give up. I'm a wannabe Linux admin at heart, but still little more than an eager, happy fool.
Some pest has been attacking me for months now trying to log in to vsftpd as Administrator. His IP always changes and it's always spoofed; I know this because I've done the minimal research required to associate phone numbers with IPs and called folks before. Now multiple machines attack me similarly yet enough to cause denial of service, all spoofed.
How does one make vsftpd very secure? When run through inetd, the same process stays running throughout the entire attack and only hits hosts.allow on the initial login attempt. When run standalone, it hangs after accepting a password as if its tcp wrappers implementation has issue with what I'm asking it to do.
Today, during a matter of hours, I thought maybe my Internet connection at home was down because the homestead was inaccessible from my office. Ha. ~10,000 failed login attempts from 3 machines during that time period. Neat.
I'll figure it out GD it.