2012-11-29T00:21:13 3#s is a small prize i think 2012-11-29T00:26:42 *** sync350 has joined #se2600 2012-11-29T00:26:42 *** ChanServ sets mode: +o sync350 2012-11-29T00:47:18 http://fab.com/sale/13738/product/255851/?hs=400 2012-11-29T00:47:19 Title: Fab.com | Octopus Creature Cup Set Blue (at fab.com) 2012-11-29T00:47:31 wow... these would be a great prank cup 2012-11-29T00:49:22 creepy is what that is 2012-11-29T00:49:35 yep 2012-11-29T00:50:37 so i have a question... I have a mobo that accepts up to 4x4 GB DDR3 ram, could I put 4x8GB sticks in it, and it work for 16GB ? 2012-11-29T00:51:01 plan on slowly upgrading, and its worth getting the 32GB or RAM right now... 2012-11-29T00:53:34 and yes... before anyone is a smart ass. i know i'd only get to use the first 16GB of it until i upgrade MOBO 2012-11-29T00:56:56 http://imgur.com/gallery/thMpO 2012-11-29T00:56:57 Title: Yep, going to hell. - Imgur (at imgur.com) 2012-11-29T00:57:44 no, this is creepy 2012-11-29T03:46:56 *** sync350 has quit IRC (Ping timeout: 252 seconds) 2012-11-29T03:53:20 *** sync350 has joined #se2600 2012-11-29T03:53:20 *** ChanServ sets mode: +o sync350 2012-11-29T05:58:18 *** LastChild has quit IRC (Quit: and the monkey flips the switch) 2012-11-29T06:07:15 *** Falun has joined #se2600 2012-11-29T06:18:44 I'm an idiot. My son woke me up around 4:30 and I couldn't go back to sleep due to fantasizing about what I'd spend my lotto winnings on 2012-11-29T06:24:48 I was all layer 7 firewalls, Tesla roadsters and a private cloud in my home. 2012-11-29T06:25:53 But...am I going to set up AD for the family? When will I move them over to the new network? What about a lab vlan? At no point did I stop to consider the odds of actually winning. 2012-11-29T06:36:05 lol 2012-11-29T06:36:31 I'd throw another $20 in, if I didn't have to spend $50 in gas to do it. 2012-11-29T06:42:11 buy stock, buy toys with divedends 2012-11-29T07:27:00 mr0ning, be0tches and h0ez! 2012-11-29T07:49:41 *** sync350 has quit IRC (Quit: wtfsleepomg) 2012-11-29T08:15:40 *** ZeroMinuS|Work has joined #se2600 2012-11-29T08:21:31 *** CNwaV has joined #se2600 2012-11-29T08:23:53 *** ChanServ sets mode: +o CNwaV 2012-11-29T09:02:53 *** Genphlux has joined #se2600 2012-11-29T09:30:56 *** K4k has joined #se2600 2012-11-29T09:30:56 *** K4k has joined #se2600 2012-11-29T09:45:48 *** shade369 has joined #se2600 2012-11-29T10:26:54 oi fuckers. 2012-11-29T10:26:58 *** polerin_ is now known as polerin 2012-11-29T10:27:05 *** ChanServ sets mode: +o polerin 2012-11-29T10:28:05 mr0nin 2012-11-29T10:29:51 http://www.freewoodpost.com/2012/11/20/sarah-palin-demands-that-obama-bring-ben-gazzy-to-justice/ 2012-11-29T10:29:52 Title: Free Wood Post Sarah Palin Demands That Obama Bring Ben Gazzy to Justice | (at www.freewoodpost.com) 2012-11-29T10:30:10 Ben Gazzy.... this can't be real... please gods... say it so... 2012-11-29T10:31:06 I don't recognize this as an onion type site... but i'm leaning that way... 2012-11-29T10:31:38 I think it is 2012-11-29T10:39:20 it can be true... 2012-11-29T10:39:58 http://i.imgur.com/pCAFN.jpg 2012-11-29T10:40:04 http://scoobydoo.wikia.com/wiki/Ben_Gazi 2012-11-29T10:40:05 Title: Ben Gazi - Scoobypedia, the Scooby Doo database (at scoobydoo.wikia.com) 2012-11-29T10:40:46 gottaa love accidental porn 2012-11-29T11:06:09 http://i.imgur.com/pCAFN.jpg 2012-11-29T11:06:24 i was hoping posting it again would cause some to happen 2012-11-29T11:06:43 we can sell NotLarry and wilpig_ videos to the CIA for not yet banned formed of torture 2012-11-29T11:10:58 *** RangerZ has quit IRC (Quit: Leaving.) 2012-11-29T11:18:37 Just spotted in a CPU cooler review: "This cooler works great but it will cut you like an angry hooker. Watch the edges." 2012-11-29T11:23:30 lol 2012-11-29T11:46:38 *** RangerZ has joined #se2600 2012-11-29T11:51:03 *** RangerZ has quit IRC (Ping timeout: 256 seconds) 2012-11-29T12:04:07 *** RangerZ has joined #se2600 2012-11-29T12:41:16 That was quite a cutting remark he made. 2012-11-29T12:41:34 ooooooh hahahahahahaha 2012-11-29T12:51:48 thank you. I'll be here for roughly 5 more minutes 2012-11-29T13:17:32 lol 2012-11-29T13:51:07 *** ZombieChicken has quit IRC (Changing host) 2012-11-29T13:51:07 *** ZombieChicken has joined #se2600 2012-11-29T13:51:07 *** ChanServ sets mode: +o ZombieChicken 2012-11-29T13:52:47 *** ZombieChicken has quit IRC (Quit: WeeChat 0.3.9.2) 2012-11-29T13:57:13 *** ZombieChicken has joined #se2600 2012-11-29T13:57:13 *** ChanServ sets mode: +o ZombieChicken 2012-11-29T14:12:04 wow 2012-11-29T14:12:14 Apparently the internet just got shut down in Syria 2012-11-29T14:12:52 http://www.bbc.co.uk/news/technology-20546302 2012-11-29T14:12:54 Title: BBC News - Syria: Internet and mobile communication cut off (at www.bbc.co.uk) 2012-11-29T14:12:55 link if anyone wants 2012-11-29T14:13:20 heh 2012-11-29T14:13:28 yeah, there are a flurry of angry emails about it on a few mailing lists I"m on 2012-11-29T14:13:51 and oh boy is twitter mad 2012-11-29T14:15:58 http://en.wikipedia.org/wiki/Internet_censorship_in_Syria 2012-11-29T14:15:59 Title: Internet censorship in Syria - Wikipedia, the free encyclopedia (at en.wikipedia.org) 2012-11-29T14:16:06 hehe... found that when looking 2012-11-29T14:16:20 yeah... syria wouldn't want people reading that 2012-11-29T14:21:12 http://www.guardian.co.uk/world/video/2012/nov/04/syria-internet-video well this is the 'real' reason 2012-11-29T14:21:13 Title: 'The internet has been central to the revolution in Syria' - video | World news | guardian.co.uk (at www.guardian.co.uk) 2012-11-29T14:22:28 I heard it was because someone on the internet in Syria was wrong about something. 2012-11-29T14:23:11 nah.. then XKCD would have taken care of it 2012-11-29T14:29:01 lol 2012-11-29T14:34:21 *** opensorcerer has joined #se2600 2012-11-29T14:44:37 *** benthemeek has joined #se2600 2012-11-29T14:44:37 *** ChanServ sets mode: +o benthemeek 2012-11-29T14:45:07 I need to opinions on linux :P 2012-11-29T14:45:13 yes 2012-11-29T14:45:25 *** RangerZ has quit IRC (Ping timeout: 256 seconds) 2012-11-29T14:45:30 My boss wants to disable root logins compeltley (good practise) 2012-11-29T14:45:38 we move files between boxes used scp today 2012-11-29T14:46:04 In a large enviroment with a lot of servers how would one go about moving files between boxes without scp? 2012-11-29T14:46:09 or at least root scp 2012-11-29T14:46:19 rsync 2012-11-29T14:46:35 That will still require a login with permissions on the remote hosts though right? 2012-11-29T14:46:46 go to the target box, then sudo rsync -Pa user@host:/ . 2012-11-29T14:46:52 read permissions 2012-11-29T14:47:03 else, tar it up, move it over, then delete the tar 2012-11-29T14:47:25 hmmm 2012-11-29T14:47:38 He might be happy with that solution 2012-11-29T14:48:13 while you're at it, disable password logins globally too 2012-11-29T14:48:17 and ssh with -A 2012-11-29T14:48:27 (i know, which is arguably less secure) 2012-11-29T14:48:31 We have been operating in the realm of root for so long this is going to be a big pain 2012-11-29T14:48:51 benthemeek: look into dirvish 2012-11-29T14:48:56 Im not familure with that switch I will have to look it up 2012-11-29T14:49:03 that saying only authorized keys? 2012-11-29T14:49:06 my old boss has been using it for a while and really likes it for system backup 2012-11-29T14:49:22 that's in your sshd_config 2012-11-29T14:49:32 basically disable password based login 2012-11-29T14:49:33 benthemeek: basically yes 2012-11-29T14:50:05 # Change to yes to enable challenge-response passwords (beware issues with 2012-11-29T14:50:05 # some PAM modules and threads) 2012-11-29T14:50:05 ChallengeResponseAuthentication no 2012-11-29T14:50:11 brimstone: wouldn't that mean that any users who log in with putty would also have to have preset keys as well? 2012-11-29T14:50:22 hmm 2012-11-29T14:50:29 yes 2012-11-29T14:50:33 I am check it out Jim 2012-11-29T14:50:40 there's a ssh-agent for putty 2012-11-29T14:51:20 I just got everyone moved off of telnet to putty this year 2012-11-29T14:51:25 Im quite proud of that :P 2012-11-29T14:51:28 Congratulations! 2012-11-29T14:51:36 wow, good job 2012-11-29T14:51:39 now for more tightening 2012-11-29T14:51:58 yeah the problem being we still have telnet open, and rlogin and see you 2012-11-29T14:52:02 "see you" 2012-11-29T14:52:15 dang auto corect charlie uniform 2012-11-29T14:52:27 there are so manyu freaking ways to get into these old unix boxes 2012-11-29T14:57:17 jim_ec2: dirvish looks intriguing as a backup solution 2012-11-29T14:57:41 yeah, i haven't used it much but my ole boss loves it 2012-11-29T14:57:56 My problem now is thinking up a replacement for nightly software builds we push out with scp as root 2012-11-29T14:58:19 I think I am going to have to grin and bear it and just get all the permissions right as a lesser user 2012-11-29T15:02:08 use git and then make a cron job for root to pull 2012-11-29T15:03:07 the easiest way to tighten security is obviously close shitty old services like telnet and friends 2012-11-29T15:03:11 make ssh keys only 2012-11-29T15:03:29 set root's password to a crazy long and truly randomly generated one 2012-11-29T15:03:43 make sure sudo is working how you want before doing that though 2012-11-29T15:04:05 i generally go the route of using group based passwordless sudo access with key only shell access 2012-11-29T15:21:44 benthemeek: man setfacl 2012-11-29T15:22:03 It can negate many of the issues with root-less file transfers in older environments. 2012-11-29T15:22:25 oh man setffacl is some dark magic 2012-11-29T15:22:50 really because it's not verbose in ls -l 2012-11-29T15:23:27 True. 2012-11-29T15:23:56 But unless one is wanting to go buiy gallons of Tears of Impotent Bloody Rage to consume it might be the easiest path out of removing root from the equation. 2012-11-29T15:24:02 s/buiy/buy/ 2012-11-29T15:24:27 The key is complete documentation on the magic invocations needed. 2012-11-29T15:24:36 This is where having your very own PFY comes in handy. 2012-11-29T15:24:45 *incantations 2012-11-29T15:24:54 Yep - that too :) 2012-11-29T15:56:51 *** shade369 has quit IRC (Quit: leaving) 2012-11-29T16:24:11 *** CNwaV has quit IRC (Ping timeout: 256 seconds) 2012-11-29T16:37:15 hmm thanks 2012-11-29T16:49:41 *** vaneck has joined #se2600 2012-11-29T16:50:02 *** ChanServ sets mode: +o vaneck 2012-11-29T16:56:32 vagina 2012-11-29T16:58:05 *** RangerZ has joined #se2600 2012-11-29T17:05:18 ACLs are a separate thing from filesystem permissions is the main reason why. 2012-11-29T17:05:35 ls mainly only gives a shit about file permissions 2012-11-29T17:05:57 Well, and SElinux contexts (-Z) 2012-11-29T17:06:55 *** ZeroMinuS|Work has quit IRC (Quit: ( www.nnscript.com :: NoNameScript 4.22 :: www.esnation.com )) 2012-11-29T17:25:06 Well, there is a access attribute field at the end of the rwxrwxrwx permission field to indicate additional access attributes being present for the file in question. '.' indicates selinux context present for the file; '+' indicates an ACL being present via setfact. '+' overloads '.' when both are present. 2012-11-29T17:26:03 But yeah, you still need an additional command to view (getfacl). I hope that at some point gnu ls merges this functionality. 2012-11-29T17:27:32 They might. I didn't really expect them to merge in the SElinux contexts, but there's only *one* type of SElinux contexts, but multiple ACL models they might need to worry about 2012-11-29T17:28:01 There's a whole WORLD of pedantry just waiting to be discovered there. 2012-11-29T17:28:43 I have really stayed away from SELINIX 2012-11-29T17:29:22 I was kind of getting into it about 5 years ago with some oracle instances on RH and then when we couldn't get that to work it was oh well just disable SELINUX 2012-11-29T17:30:34 *** sync350 has joined #se2600 2012-11-29T17:30:34 *** ChanServ sets mode: +o sync350 2012-11-29T17:30:59 Bleah. Everything works under selinux. 2012-11-29T17:31:02 *** K4k has quit IRC (Quit: WeeChat 0.3.8) 2012-11-29T17:31:30 benthemeek: All useful resources for SELinux: http://wiki.centos.org/HowTos/SELinux | http://wiki.centos.org/TipsAndTricks/SelinuxBooleans | http://docs.fedoraproject.org/selinux-user-guide/f10/en-US/ | http://fedorasolved.org/security-solutions/selinux-module-building | http://centoshelp.org/security/selinux-common-commands-troubleshooting 2012-11-29T17:31:32 Title: HowTos/SELinux - CentOS Wiki (at wiki.centos.org) 2012-11-29T17:31:44 Been so long since I used that I had to remember the trigger. 2012-11-29T17:31:49 honestly... i don't know which distro to go to anymore, unity & ubuntu have left a really bad taste in my mouth, I'm using ubuntu for work, and REALLY hoping that Steam goign to linux and Star Citizens' desire to get Cryengine3 ported to Linux with Crytek's help 2012-11-29T17:31:56 There was a 2.6.9 kernel that RH shipped that completely failed at SELinux but once you've upgraded away from that damn thing it worked fine. 2012-11-29T17:32:14 Mainly what it did was sit around in permissive mode, and every so often, DENY YOUR SHIT ANYWAY. 2012-11-29T17:32:19 In those days the management tools sucked anyway. 2012-11-29T17:32:29 Since EL5 things have been quite workable. 2012-11-29T17:32:36 I remember that :) 2012-11-29T17:32:39 The management tools still kinda suck shit, but the documentation of said tools is still worse. 2012-11-29T17:32:51 I didn't run selinux back then, it was too much of a major PITA. 2012-11-29T17:32:57 And, well, it just didn't work. 2012-11-29T17:32:57 Like, where's a fucking explanation of what the goddamn labels RH ships is? 2012-11-29T17:33:08 It's in the policy :) 2012-11-29T17:33:12 Oh, BURIED in the fucking SRPMS and only half-assedly explained. 2012-11-29T17:33:23 You know, sorta like the documentation is the code. 2012-11-29T17:33:30 semanage will dump 'em all, anyway. 2012-11-29T17:33:30 Yeah, which is a shit model 2012-11-29T17:33:47 THAT is an even worse approach. 2012-11-29T17:33:59 Dumping them out as a list doens't explain WTF they were trying to accomplish 2012-11-29T17:34:20 Thing is, 99% of users need a handful of commands and nothing more. semange, audit2allow, ausearch, etc. 2012-11-29T17:34:38 Yeah, and that last 1% takes it right up the ass as a result. 2012-11-29T17:34:59 Fedora's documentation covers the last 1%. 2012-11-29T17:35:00 ...oh, and about 33% of them will just fucking disable selinux the moment it's a problem. 2012-11-29T17:35:09 I'd say more. 2012-11-29T17:35:11 Oh please show me this documentation 2012-11-29T17:35:19 Linked above. 2012-11-29T17:35:28 There are newer versions available than that which is in that trigger. 2012-11-29T17:35:33 I've not bothered to update it for years. 2012-11-29T17:35:45 And Dan Walsh is easy to persuade to add anything missing. 2012-11-29T17:35:59 And yes, Red Hat should damned well make this available natively. 2012-11-29T17:36:06 But there is little traction in-house to do so. 2012-11-29T17:36:27 None of those links contain the important shit the 1% needs to know 2012-11-29T17:36:32 If you've got a TAM bitch at him/her to escalate the missing doc issues; otherwise it'll never get fixed. 2012-11-29T17:37:01 I may eventually 2012-11-29T17:38:03 Jesus... wtf did fedorka do to their site? :/ 2012-11-29T17:38:28 I know there is more updated stuff than f10; but I'm hitting redirects trying to locate it. 2012-11-29T17:38:46 ...but really, somewhere there needs to be a document that starts with "What the fuck _[a-z] means" and quickly moving on to a categorized list of what all the stuff they defined in their policies is supposed to do, in plain English, just one simple paragraph each 2012-11-29T17:38:59 i dunno... i just want 'linux to work' ... i guess i'm just in the minority there... 2012-11-29T17:39:02 This shit is *not* easy to figure out when you're just staring at a long list of shorthand 2012-11-29T17:39:53 RangerZ: Well, take my word for it... There's no such thing as a "standard web environment" so unless your users are just writing HTML and Javascript pages, SELinux contexts become an exciting problem in a hurry 2012-11-29T17:40:19 huh... i honestly have NO clue wtf you are talking about 2012-11-29T17:40:24 'context's ? 2012-11-29T17:40:30 The learning curve for just using it is somewhat shallow, but ramps up like a motherfucker outside that space 2012-11-29T17:40:58 RangerZ: Oh my goodness you're in for a treat when you start trying to actually do more than use SElinux like a 10lb mallet 2012-11-29T17:41:27 i've never used SELinux, and don't plan on it 2012-11-29T17:41:38 might go back to PC BSD for my own personal use 2012-11-29T17:41:51 That's a shame. It can drop a skript kiddies shit in the dirt 2012-11-29T17:42:04 RangerZ: A real life example of why SELinux is a good thing: http://www.linuxjournal.com/article/9176 2012-11-29T17:42:06 Title: Mambo Exploit Blocked by SELinux | Linux Journal (at www.linuxjournal.com) 2012-11-29T17:42:11 They might be able to get their little webshell on the filesystem, but will it run? NOPE.avi 2012-11-29T17:42:28 Dagmar: I don't argue that there is a lot of missing pertinent documentation. 2012-11-29T17:42:35 We have to clean up after maybe 4-6 compromises a year here. 2012-11-29T17:42:51 Without SElinux and modsecurity, you could add a zero to that 2012-11-29T17:42:54 I've got 30 fucking tabs open at the moment to use as sourced material to update my assist trigger material. 2012-11-29T17:42:59 I shit you not. 2012-11-29T17:43:07 And from quick glances a bunch is out of dat. 2012-11-29T17:43:10 (date) 2012-11-29T17:43:25 ohh, i'm not saying it isn't worth using, just that I have no reason to do that much security/etc on my own system 2012-11-29T17:43:29 modsecurity++ 2012-11-29T17:43:42 Every other month I go traipsing through our webservers looking for webshells 2012-11-29T17:43:44 I want a system that just protects me (yes, i'm being lazy, but i admit it) 2012-11-29T17:43:45 I find 'em. 2012-11-29T17:44:08 I also find that they didn't manage to get any farther than getting the thing into the filesystem 2012-11-29T17:44:09 The thing is.... selinux protects the REST of us as much as it protects YOU. 2012-11-29T17:44:20 And, frankly, the attitude of laziness is one that pisses me the fuck off. 2012-11-29T17:44:40 If you have a box on the net you are a potential source of shit for the rest of us to have to deal with. 2012-11-29T17:44:44 no, i'm being realistic, i'd do security updates, not be stupid with installing crapware, etc... 2012-11-29T17:44:44 It's a matter of for security to be effective it must be tailored to fit the environment. 2012-11-29T17:45:02 *** Feltenix has quit IRC (Ping timeout: 252 seconds) 2012-11-29T17:45:07 Not getting specific about it gives you a "mostly fits" environment, which basically means your site is "mostly secure" 2012-11-29T17:45:13 Let me guess, you also run without egress filtering? 2012-11-29T17:45:45 *** Feltenix has joined #se2600 2012-11-29T17:45:45 *** ChanServ sets mode: +o Feltenix 2012-11-29T17:45:49 SELinux has the potential to allow you to get very granular indeed about things as specific as which PHP scripts are allowed to do what to where, and by which uid 2012-11-29T17:45:54 of course, i'm busy with having a life, not geeking out on my network 2012-11-29T17:46:35 Well, the thing is this 2012-11-29T17:46:52 If you in any way are wearing a security hat, you might well be able to get away with that for awhile 2012-11-29T17:47:04 Dagmar: most people don't bother with roles, either. 2012-11-29T17:47:13 I'm of the opinion... if these things are important.. the OS should have them on by defualt 2012-11-29T17:47:15 ...and then suddenly your entire weekend and better part of the week goes away while you rebuild your shit from the ground up after a compromise. 2012-11-29T17:47:27 anyone know a "Casey Cardinal"? 2012-11-29T17:47:27 RangerZ: _REAL_ distributions default to having them on. 2012-11-29T17:47:35 Shit distributions don't. 2012-11-29T17:47:48 Dagmar: +1 2012-11-29T17:47:55 So... better to spend a few minutes a week "geeking out" about it on your schedule, than a fuckload of time spent doing it on someone else's schedule which is all about "DEADLINE EXCEEDED. UNACCEPTABLE LEVELS OF DOWNTIME" 2012-11-29T17:48:16 Yep. 2012-11-29T17:48:22 Welcome to the Real World. 2012-11-29T17:48:26 I'm a theoretical CS... I don't worry about implementations, those should be handled by people who specialize in those areas. 2012-11-29T17:48:42 You're on the 'net. You have a responsibility to others. 2012-11-29T17:48:54 You're also a developer, which I won't even get into. 2012-11-29T17:49:06 You should be at least familiiar with this stuff, otherwise you can't design/develop things correctly with respect to security. 2012-11-29T17:49:13 (This is not a slam, but rather a mere fact. Devs look at things in a different light.) 2012-11-29T17:49:33 That attitude is why it took Microsoft 20 years to finally put down the pipe of "we're all friends here" security 2012-11-29T17:50:06 They started out with a "we're just coders" mentality 2012-11-29T17:50:18 ...leaving the responsibility of security to other people. 2012-11-29T17:50:34 Buck passing at its finest. 2012-11-29T17:50:41 ...when incorporating actual security meant a fuckload of restructuring how things get done. 2012-11-29T17:51:14 Look, I agree with you both on most things, I just also have the experience with doing enough direct tech support to know that OTHERS aren't going to do ANYTHING they aren't forced to do when it comes to security, so my POV on it is... it should just happen by default 2012-11-29T17:51:15 Stuff like, hey, maybe the system's tmpdir shoudn't be the same as the user's tmpdir, and hey maybe the users shouldn't share one common tmpdir. 2012-11-29T17:51:41 RangerZ: It can happen by default for a "mostly fits" model. 2012-11-29T17:51:58 Like, I said, if all your users do is push static HTML and javascript into a webserver, great! 2012-11-29T17:52:05 In reality, that doesn't happen. 2012-11-29T17:52:14 *** sync350 has quit IRC (Read error: Connection reset by peer) 2012-11-29T17:52:17 People install Wordpress and Drupal, which would be fine... but... 2012-11-29T17:52:33 ...then the go and install a bunch of screwey modules from god only knows where. 2012-11-29T17:53:03 People install such from _source_ which is a big part of the problem. 2012-11-29T17:53:13 Like, one of the fucking HUGE issues with Wordpress is file uploads. 2012-11-29T17:53:19 Shit as simple as uploading a buddy icon. 2012-11-29T17:53:23 *** sync350 has joined #se2600 2012-11-29T17:53:23 *** ChanServ sets mode: +o sync350 2012-11-29T17:53:36 Most sane distros package their own, or at least it's available in trusted repos. Such have the ability of pushing specific policies to address all the component's needs. 2012-11-29T17:53:42 Where does it invariably wind up going? Into a directory the fucking Apache daemon can serve directly. 2012-11-29T17:53:42 yeah I know, thats the reason my WP for my site has no modules other than a layout one, and i don't allow uploading anything... including pics, etc.. (my site is only for pushing info, not 2way comm.) 2012-11-29T17:53:59 Why is that? So people can upload things which look like jpegs but are in actuality a PHP webshell. 2012-11-29T17:54:10 I see you've been down this road :) 2012-11-29T17:54:12 ...which they can then launch just by directly calling the URL of the file they just uploaded. 2012-11-29T17:54:36 actually not myself... just watched others try to 'fix' broken phpbb installs 2012-11-29T17:54:41 and vowed to never have that issue, lol 2012-11-29T17:54:49 @fire phpbb 2012-11-29T17:54:49 * GateKeeper sets fire to phpbb with the flames of a thousand suns 2012-11-29T17:54:58 At least use SMF. 2012-11-29T17:55:01 ...and although there's already generally facilities in WP to have that upload directory to be outside the documentroot, users don't use it until you beat a few of them to death over it. 2012-11-29T17:55:02 *** Dolemite has quit IRC (Ping timeout: 245 seconds) 2012-11-29T17:55:34 I need to start a more formal archive of the shit I capture 2012-11-29T17:55:40 You do, yes. 2012-11-29T17:55:47 It would be a good resource. 2012-11-29T17:56:16 One of the reasons I get jumpy about the idea of the FBI raiding my shit is that, while I'm never up to anything serious, I've got a baaaad bad tendency to capture files, stick them somewhere on my stuff, and then forget I have them, where I got them, or where I put them. 2012-11-29T17:56:17 Dagmar: you should setup a XKCD VM fishtank of honeypots, lol 2012-11-29T17:56:47 So like, the number of questions to which I won't have any good answers is going to be pretty fucking long, even though I'm not up to anything as a general rule. 2012-11-29T17:56:56 Dagmar: if you want, I have a friend in the CIA who can have you fully raided and proved you have nothing incriminating 2012-11-29T17:56:57 LOL 2012-11-29T17:57:16 you just have to submit yourself to it, heh 2012-11-29T17:57:23 Well the FBI seems to drop in to say Hi about every seven or eight years, so I'll just stick with that for now 2012-11-29T17:57:25 @quote add Dagmar: if you want, I have a friend in the CIA who can have you fully raided and proved you have nothing incriminating 2012-11-29T17:57:25 Bahhumbug: By your command Quote #17 added. 2012-11-29T17:57:43 *** ZeroMinuS has joined #se2600 2012-11-29T17:57:52 Were you not just paying attention? I *have* incriminating shit all over 2012-11-29T17:57:54 I've never had the FBI on my ass personally. 2012-11-29T17:58:11 I've had to deal with them at providers I've worked for in the past. 2012-11-29T17:58:18 me neither, well other than a cursory background check for someone else 2012-11-29T17:58:23 It got to the point where I knew everyone in the Chicago field office. 2012-11-29T17:58:34 It's not indicative that *I* did anything--I stole all this shit from script kiddies, rather frequently on behalf of a client 2012-11-29T17:58:55 And to the point where I'd just make them sit in the waiting room as I didn't have the time, nor the inclination, to deal with their shit on a weekly basis. 2012-11-29T17:59:06 dagmar, you should do MD5 and SHA1 hashes of every file you grab 2012-11-29T17:59:06 ...but how does one explain having password files from a dozen places? 2012-11-29T17:59:11 Dagmar: I'm in the same boat. Shit's all over the place. 2012-11-29T17:59:25 and compare them to the known child porn DBs that are out there 2012-11-29T17:59:28 I disappoint myself 2012-11-29T17:59:29 Dagmar: I have archives going back to '95 of older stuff I yanked from users ~ on our shell boxes. 2012-11-29T17:59:38 thats the biggest thing you can do to help yourself 2012-11-29T17:59:43 Sometimes I get around to throwing JtR at things, just to benchmark JtR. I don't give one damn whit about anyone's accounts. 2012-11-29T17:59:47 I would be in similar straits if the feds ever paid me a visit. 2012-11-29T18:00:11 Rangerz: If they were able to do that 2012-11-29T18:00:21 what do you mean? 2012-11-29T18:00:36 they have publicly available hash DBs out there 2012-11-29T18:00:54 The last time I checked some jackass had turned down a company's offer to actually start running a DB of hash sums for the FBI because they decided that if no one can legally have the child pron, then they couldn't have the hash sums either 2012-11-29T18:01:08 makes sense 2012-11-29T18:01:18 If they've got those out there now I will have to go track down a few 2012-11-29T18:01:45 It might be handy to have to avoid having to manually check the URLs some of these idiots post in other places 2012-11-29T18:02:00 damn it - real life :/ 2012-11-29T18:02:01 * Bahhumbug & 2012-11-29T18:02:12 Time to go haxor a portal 2012-11-29T18:02:33 ...and hopefully not have someone decide I'm a terrorist. 2012-11-29T18:02:51 Ingress has got to be pushing so many paranoid DHS people's buttons... 2012-11-29T18:03:28 'cuz I'm about to go drive right up to the TEMA HQ and do something shifty looking with my cell phone for several minutes. 2012-11-29T18:03:30 National Center for Missing & Exploited Children, has a pretty big one IIRC 2012-11-29T18:03:54 Okay, I'll go rummaging about their site for it this weekend then 2012-11-29T18:04:42 if you can't find a good one, let me know, i know the lead CF CSI agent for Ohio's "FBI" 2012-11-29T18:04:56 Kewl 2012-11-29T18:05:06 she knows of a lot of them, sadly.. ~40% of their cases are child porn :( 2012-11-29T18:05:24 Uh that means they're making good headway on finding it then 2012-11-29T18:05:43 yeah, its almost entirely encase scripts now 2012-11-29T18:05:57 If they hardly ever found any, it would be much worse 2012-11-29T18:07:04 Also I am still remembering that time Steeltac called me up with the location of someone's Samba share, and I had to actually look at that shit 2012-11-29T18:07:07 It still makes me angry. 2012-11-29T18:07:52 If I could have just htrown some hash sums at someone's database, and then pull up one image in reduced size just to make sure it wasn't crazy hash collisions, I would have been a lot less upset about it 2012-11-29T18:08:11 Seriously man those girls looked like they were maybe 8-11 years old 2012-11-29T18:08:31 I wanted to drive to Illinois and beat the stupid out of someone with a board full of nails 2012-11-29T18:09:18 ugh 2012-11-29T18:10:03 It didn't take much to make me angry 2012-11-29T18:10:39 I checked about 5-6 directories, pulling up a pic or two in each one and trying to guess which ones might be least irksome, still saw enough to make me want to throw someone off a building 2012-11-29T18:11:02 Anyway, off to haxor a portal from those dopey resistance people 2012-11-29T18:13:27 *** Genphlux has quit IRC (Quit: Leaving) 2012-11-29T18:19:00 Dagmar: I just emailed her to ask if she can give me a list of DB(s) for hashes so I give them to some sys admins i know 2012-11-29T18:24:44 http://us.missingkids.com/missingkids/servlet/PageServlet?LanguageCountry=en_US&PageId=2444 2012-11-29T18:24:45 Title: Child Victim Identification Program (CVIP) (at us.missingkids.com) 2012-11-29T18:24:54 looks like the biggest one is for law enforcement only... 2012-11-29T18:31:23 *** CNwaV has joined #se2600 2012-11-29T18:34:03 Dagmar: http://www.nist.gov/srd/nistsd28.cfm looks like NIST keeps a DB of TONS of shit... such as child pornography, racketeering, cyber-attacks, illegal gambling,Internet fraud, and software piracy. 2012-11-29T18:34:04 Title: NIST Special Database 28 (at www.nist.gov) 2012-11-29T18:35:03 might be something you can get vandy to buy (or already has) 2012-11-29T18:38:53 oh fuck... UN approved Palestinian bid to be an 'observer state' status 2012-11-29T18:39:57 RangerZ: Are you assuming fallout from that? 2012-11-29T18:40:04 yeah 2012-11-29T18:40:20 I haven't been keeping up with politics since before the election 2012-11-29T18:40:43 btw, very interesting discussion on SELINUX guys 2012-11-29T18:41:09 I have a 160 boxes to convert from SCO to linux and I need to be thinking about best practices 2012-11-29T18:44:02 Wish I could still Dagmar's brain for a few hours to broaden my horizons 2012-11-29T18:44:09 wait on the technical part of his brain 2012-11-29T18:44:15 steal* 2012-11-29T18:44:26 *cough* www.nsrl.nist.gov/RDS/rds_2.29/RDS_229_A .iso 2012-11-29T18:46:10 http://www.nsrl.nist.gov/RDS/rds_2.38/iso_hash *cough* .txt 2012-11-29T18:46:18 for the latest *cough* version 2012-11-29T18:46:26 RDS? 2012-11-29T18:47:12 software reference library 2012-11-29T18:47:15 I see 2012-11-29T18:47:18 neither of those links worked fo rme 2012-11-29T18:47:21 ohh 2012-11-29T18:47:31 https://en.wikipedia.org/wiki/National_Software_Reference_Library#Reference_Data_Set 2012-11-29T18:47:32 Title: National Software Reference Library - Wikipedia, the free encyclopedia (at en.wikipedia.org) 2012-11-29T18:47:41 ignore the 2.29 one, that's 2 years old 2012-11-29T18:48:29 oh, n/m these are free downloads, just have to look around for where that's mentioned 2012-11-29T18:48:35 http://www.nsrl.nist.gov/Downloads.htm#isos 2012-11-29T18:48:36 Title: NSRL Downloads (at www.nsrl.nist.gov) 2012-11-29T18:48:43 me beeing all sneaky 2012-11-29T18:48:45 *being 2012-11-29T18:50:41 good find 2012-11-29T18:58:14 *** benthemeek has quit IRC (Read error: Connection reset by peer) 2012-11-29T19:11:37 *** CNwaV has quit IRC (Ping timeout: 246 seconds) 2012-11-29T20:06:06 Just got a letter here addressed to the ex-wife from the place we got the dog from last year. she just sold or gave the dog away last week, so I was told. 2012-11-29T20:06:21 maybe it was two years ago 2012-11-29T20:06:32 had ot have been two years ago 2012-11-29T20:19:35 so she took your dog, then gave it away 2012-11-29T20:21:19 somethign like that 2012-11-29T20:21:43 I didn't much like the dog but she grew on me a little. my work schedule isn't good for a dog either 2012-11-29T20:23:37 yeah, us either 2012-11-29T20:24:15 wilpig_: you should go visit vanilla tonight 2012-11-29T20:43:53 haha. I thought she only worked weekend 2012-11-29T20:43:56 weekends 2012-11-29T20:47:58 *** LastChild has joined #se2600 2012-11-29T20:47:58 *** ChanServ sets mode: +o LastChild 2012-11-29T20:58:02 Wow. Taser INternational are still dicks 2012-11-29T21:06:25 what now? 2012-11-29T21:28:47 Some 50 year-old actress got tased three times by the cops, had a rather predictable heart attack from what we know to be a nearly 30% chance of that happening if you're on anything... 2012-11-29T21:28:58 TI releases a statement saying it's impossible to make a medical diagnosis from a YouTube video 2012-11-29T21:29:21 Those things are *unsafe* to use on people who are not sober 2012-11-29T21:30:00 ...or on basically any kind of antidepressant or stimulant 2012-11-29T21:31:34 ADHD meds count 2012-11-29T21:31:48 andn like 10% of the US population is on 'some' kind of medication that counts as that 2012-11-29T21:31:49 or so 2012-11-29T21:32:05 sometimes i really wish i could afford the anti taser cloths 2012-11-29T21:32:08 lol 2012-11-29T21:35:38 *** ladymerl1n is now known as ladymerlin 2012-11-29T21:35:47 *** ChanServ sets mode: +o ladymerlin 2012-11-29T21:54:13