http://groups.google.com/group/oalugOgden Area Linux Users Group Google Group
The Ogden Area Linux Users Group serving the greater Ogden and Davis areas.
2009-12-31T21:39:15ZGoogle GroupsSeth Housewhitei...@gmail.com2009-12-31T21:39:15Zhttp://groups.google.com/group/oalug/browse_frm/thread/dec6a5ae05d5f68e/3a3c2ef25648809e?show_docid=3a3c2ef25648809eSuggestions for adding and timing out ssh private keys?
The way I am currently using ssh-agent is by starting it when I start <br> a GNU screen session and manually adding my private key with ssh-add. <br> (This method has the side-benefit of also killing the agent when I <br> detach screen for added security.) <br> Lately I've been thinking that I should also add a default timeout
Aaron Toponceaaron.topo...@gmail.com2009-12-21T18:42:07Zhttp://groups.google.com/group/oalug/browse_frm/thread/7cb2508549a49158/1f67c2f1895ff6ca?show_docid=1f67c2f1895ff6caSSH authentication in the clear
First, if an attacker has physical access to a machine, all bets are <br> off. Period. <br> Second, read up on this blog post by Joseph Hall: <br> <a target="_blank" rel=nofollow href="http://blog.josephhall.com/2009/12/fun-with-sshd-and-strace.html">[link]</a> <br> Third, realize that root can do _anything_ on a machine he pleases. The <br> best approach that I'm aware of is an RBAC-based system, like something
Aaron Toponceaaron.topo...@gmail.com2009-12-21T18:33:16Zhttp://groups.google.com/group/oalug/browse_frm/thread/d19e6f23528a2b06/101d6ad6f4a9bdcb?show_docid=101d6ad6f4a9bdcbRe: PuTTY SSH Keys
I figured this out, in case anyone is curious. With the PuTTY suite of <br> utilities, provided is a tool called 'PuTTYGen'. It generates SSH keys <br> for SSH key authentication, but it is its own thing, which is not <br> compatible with OpenSSH or SSH.com key agents. <br> In that utility, load up your private key, then you can export it to an
Seth Housewhitei...@gmail.com2009-12-09T00:18:04Zhttp://groups.google.com/group/oalug/browse_frm/thread/59921a007f439cb9/54f7edea69da298f?show_docid=54f7edea69da298fMeeting tonight canceled
In light of the weather, I think it is best to bag the meeting <br> tonight. <br> <p>See you all in January!
Roly C.rol...@gmail.com2009-12-08T22:25:08Zhttp://groups.google.com/group/oalug/browse_frm/thread/59921a007f439cb9/7fbb227aa7c225a5?show_docid=7fbb227aa7c225a5Re: [oalug] Reminder: meeting tomorrow
I won't be there this time :(
Seth Housewhitei...@gmail.com2009-12-07T18:43:27Zhttp://groups.google.com/group/oalug/browse_frm/thread/59921a007f439cb9/861f6010543621a7?show_docid=861f6010543621a7Reminder: meeting tomorrow
Reminding you about our December meeting tomorrow night. (We're <br> avoiding holiday conflicts with our regular meeting time by doing this <br> mid-month.) <br> <p>This is a social meeting; there will not be a presentation. So come <br> just to talk shop. If you have Linux questions, bring those too! <br> <p>See you there.
Christian Horneblendmaster1...@gmail.com2009-12-04T15:48:53Zhttp://groups.google.com/group/oalug/browse_frm/thread/f7d75290e7f1686a/d730992947124553?show_docid=d730992947124553Re: [oalug] Re: [ubuntu-us-ut] Ubuntu's default groups
i have been messing around with the internals of ubuntu lately, and <br> i'm liking it more and more as i learn how it works. it's designed to <br> be easily scalable, for instance you could make your desktop machine <br> into a shell server JUST by installing ssh, it's designed so that it <br> is already ready for use as a shell server. or if you want a web
Joshua Gardnermellowcellofel...@gmail.com2009-12-04T14:20:14Zhttp://groups.google.com/group/oalug/browse_frm/thread/f7d75290e7f1686a/ab592819b87a8194?show_docid=ab592819b87a8194Re: [oalug] Re: [ubuntu-us-ut] Ubuntu's default groups
Well, look at that. First it was "Ubuntu uses too many groups and is <br> trying to be too much like Windows and not UNIX-like enough." Now it's <br> come full circle and Ubuntu is being too UNIX-y using groups instead <br> of pam. <br> <p>lol <br> <p>-Josh <br> <p>-- <br> Society loses the value of things which are uselessly destroyed.
Stuart Jansensjan...@buscaluz.org2009-12-04T13:38:20Zhttp://groups.google.com/group/oalug/browse_frm/thread/f7d75290e7f1686a/02c933a8f406fc5b?show_docid=02c933a8f406fc5bRe: [oalug] Re: [ubuntu-us-ut] Ubuntu's default groups
No, it isn't great. It implies constant access to the hardware. Red Hat <br> using pam_console and SUSE using pam_(mumble) can have more fine grained <br> access control. For example, RH configures pam_console so that only <br> local logins get access to the sound card, whereas remote logins don't. <br> In other words, no need to worry about some joker SSH-ing into all the
Leif Andersentbol3...@gmail.com2009-12-04T05:08:50Zhttp://groups.google.com/group/oalug/browse_frm/thread/f7d75290e7f1686a/18300d501debd5ef?show_docid=18300d501debd5efRe: [oalug] Re: [ubuntu-us-ut] Ubuntu's default groups
Hm... Actually, I'm beginning to think that I am, lol. I just had a 20 <br> min. argument with my father, and apperently he thinks groups are a really <br> grate way of organising who has access to what hardware. I guess I'm just <br> too young to really understand the thinking behind the original designers.
brandonb...@solv.com2009-12-04T04:46:53Zhttp://groups.google.com/group/oalug/browse_frm/thread/f7d75290e7f1686a/a4f054efae32002b?show_docid=a4f054efae32002bRe: [oalug] Re: [ubuntu-us-ut] Ubuntu's default groups
I think it has nothing to do with intuition, and everything to do with <br> using groups as DAC ACLs. I have never actually seen it in action, but <br> I suspect they are just using groups... as groups. The whole DAC model <br> in action. <br> <p>Ideally, you never actually have to deal with it because the software
Leif Andersentbol...@gmail.com2009-12-04T04:28:56Zhttp://groups.google.com/group/oalug/browse_frm/thread/f7d75290e7f1686a/54f539c3e531f37f?show_docid=54f539c3e531f37fRe: [ubuntu-us-ut] Ubuntu's default groups
Hmm...interesting, so am I really the only person that thinks having a <br> 'scanner group' is really not intuitive in the least? <br> <p>~Leif <br> ---------- <br> Did you like this rant? You can find more at: <br> <a target="_blank" rel=nofollow href="http://www.leifandersen.net">[link]</a>
Aaron Toponceaaron.topo...@gmail.com2009-12-04T04:12:11Zhttp://groups.google.com/group/oalug/browse_frm/thread/f7d75290e7f1686a/df1a852f0e78d8e8?show_docid=df1a852f0e78d8e8Re: [oalug] Re: [ubuntu-us-ut] Ubuntu's default groups
How is what Ubuntu different from Debian or Fedora? I'm referring to <br> permission modes on hardware. <br> Then why not move /dev/console to tty7? <br> I guess I'll have to take a closer look at pam_console. This makes a <br> little sense, I guess.
Jonathan Karrasoa...@karras.net2009-12-04T01:58:26Zhttp://groups.google.com/group/oalug/browse_frm/thread/f7d75290e7f1686a/ebc99b6e1df9ac49?show_docid=ebc99b6e1df9ac49Re: [oalug] Re: [ubuntu-us-ut] Ubuntu's default groups
While checking groups you should compare /dev/ permissions. Maybe the <br> audio/cdrom devices are part of the users group on those other <br> distros. <br> <p>Jonathan
Stuart Jansensjan...@buscaluz.org2009-12-04T00:02:37Zhttp://groups.google.com/group/oalug/browse_frm/thread/f7d75290e7f1686a/2506900d719a1c5c?show_docid=2506900d719a1c5cRe: [oalug] Re: [ubuntu-us-ut] Ubuntu's default groups
Are you forgetting about pam_console and friends? Setting permissions on <br> devices is an important part of letting the kernel do its job. <br> <p>The stated reason for the change was not boredom, it was "to avoid <br> flicker". I think that's baloney, but it still kills your example. <br> <p>Maybe I want to be able to use my cdrom, scanner and soundcard but I