--- Log opened Mon Jul 09 00:00:19 2018
02:23 -!- strages [uid11297@gateway/web/irccloud.com/x-niirpjmxyzkmrjpd] has quit [Quit: Connection closed for inactivity]
03:04 -!- ezelkow1 [ezelkow1ma@gateway/shell/matrix.org/x-ctfwutsxslyounya] has quit [Ping timeout: 255 seconds]
03:16 -!- ezelkow1 [ezelkow1ma@gateway/shell/matrix.org/x-aqjqyzygpeofsldx] has joined #se2600
03:16 -!- mode/#se2600 [+o ezelkow1] by ChanServ
07:48  * Corydon76 drops a pin.
07:57 -!- brimstone [~brimstone@161.134.188.35.bc.googleusercontent.com] has joined #se2600
07:57 -!- brimstone [~brimstone@161.134.188.35.bc.googleusercontent.com] has quit [Changing host]
07:57 -!- brimstone [~brimstone@unaffiliated/brimstone] has joined #se2600
07:57 -!- mode/#se2600 [+o brimstone] by ChanServ
08:16 < xray> anyone straming video suing a Raspberry Pi?
08:16 < xray> streaming
08:17 <@Corydon76> suing?
08:18 < aestetix> Corydon76: it's the american way
08:19 <@Corydon76> xray: transmitting or receiving?
08:20 <@Corydon76> Transmitting is a challenge from what I understand, but receiving is possible, as long as the Pi is doing nothing else substantial
08:20 < xray> transmitting
08:21 < xray> I have tried a variety of methods. Looking for ones I may have missed.
08:21 <@Corydon76> Maybe look to see if there'an H.264 HAT?
08:21 < xray> I'm also looking for low latency.
08:22 <@Corydon76> Hardware encoding would take care of the majority of the problem
08:22 < xray> interesting idea. I'll do some searches
08:22 < aestetix> is there any good way to restrict the commands someone is able to run in linux?
08:22 < aestetix> I'm looking at rbash right now
08:22 < xray> chroot
08:22 < dfused> break fingers.
08:22 < xray> LoL
08:22 < dfused> its good AND fun
08:22 < aestetix> you can do that with chroot?
08:23 < aestetix> I've only ever used chroot to debug stuff
08:23 <@Corydon76> chroot takes care of the filesystem, but you want containers to restrict their ability to run commands
08:23 < aestetix> well
08:23 < aestetix> the ideal outcome is that they have readonly access to the system
08:23 < aestetix> can chroot do that?
08:23 <@Corydon76> And even then, the advocates of containers will tell you that it's not a security concept
08:24 <@Corydon76> readonly isn't sufficient, because they will still have scratch space
08:24 < aestetix> well I have a user who wants to be able to look at log files
08:24 < aestetix> but I don't want them to delete them
08:25 <@Corydon76> Enable SELinux and learn how to use it.
08:25 < aestetix> ugh
08:26 <@Corydon76> That's ultimately your best option, because you get fine grained control over what they're permitted to do
08:26 <@Corydon76> Unix permissions tend to be inadequate
08:27 <@Corydon76> With SELinux, you could potentially chmod the entire filesystem to 777 and be no less secure
08:27 < xray> what about file ACLs
08:28 <@Corydon76> file ACLs are an essential part of SELinux
08:28 <@Corydon76> Label everything and then tell the system who is permitted to do what
08:29 <@Corydon76> Then lock it down into enforcing mode
08:36 < aestetix> is there a way to just restrict them to a bash prompt with only less and grep?
08:37 <@Corydon76> I would suggest that you look at setting their shell to rbash
08:38 < xray> https://access.redhat.com/solutions/65822
08:38 < PigBot> How can I restrict the normal user to run only limited set of commands in RHEL? - Red Hat Customer Portal (at access.redhat.com) http://tinyurl.com/j3kw926
08:38 < xray> restricted shell
08:38 <@Corydon76> You can then set their login variables to values you deem  important
08:40 < aestetix> this might work
09:16 < xray> I think I remember someone on the channel saying their company was going to open offices. https://www.theregister.co.uk/2018/07/09/the_impact_of_the_open_workspace_on_human_collaboration/
09:16 < PigBot> Open plan offices flop – you talk less, IM more, if forced to flee a cubicle • The Register  (at www.theregister.co.uk) http://tinyurl.com/y7k3mv5r
09:19 < aestetix> I hope they have budgeted for needing to find new employees after the exodus they will get
09:44 <@dasunt> xray: That may have been me.  But it's only for us peons.
09:52 -!- strages [uid11297@gateway/web/irccloud.com/x-yhlsjpuvgyyvfjwa] has joined #se2600
09:55 <@dasunt> Wikipedia has an article about blame in organizations.
10:50 <@Mirage> dasunt: Was it written by someone at Vanderbilt ITS?
11:34 <@Evilpig> haha
12:55 <@dasunt> Figuring ohm ratings for resistors next to transisters is confusing me.
13:01 -!- d34dbug [~d34dbug@18.191.206.84] has joined #se2600
13:04 -!- fie [~fie@185.52.224.9] has joined #se2600
13:42 <@Evilpig> anyone have metasploit handy?  I don't want to wait for it build on a vm of mine
13:43 <@Evilpig> just had some cunt tell me that she won't give me the admin login for a wordpress site so I can use the all-in-one plugin to make a back up, because of "best practices" she wants this guy to buy a server from godaddy then do some type of transfer
13:43 <@Evilpig> I know the site is on old code, and has no login protect enable
13:44 <@Evilpig> best pracices.. bitch please.  you have no clue abotu best practices when you site isn't ssl enabled, you're running wordpress with the rpc fully exposed and no protections in place to prevent dictionary style login attacks
13:44 <@Evilpig> best practice... fuck.  best practice for her to dig a hole and jump in because that's where she belongs
14:08 < aestetix> is she hot?
14:14 <@Evilpig> doubtful
14:14 <@Evilpig> the guy that owns this business just told me that his website was taken down by russians last year.
14:14 <@Evilpig> best practices... fuckin' bitch.
15:01 -!- crashcartpro [uid29931@gateway/web/irccloud.com/x-jbilvlvwtnzhsdqy] has joined #se2600
15:27 -!- cordless [cordless@gateway/shell/insomnia247/x-kgptmzzxvgmgwuco] has quit [Ping timeout: 244 seconds]
15:43 -!- cordless [cordless@gateway/shell/insomnia247/x-wvwzovlunoieznfc] has joined #se2600
18:21 -!- K`Tetch [~no@47.39.211.239] has joined #se2600
18:21 -!- K`Tetch [~no@47.39.211.239] has quit [Changing host]
18:21 -!- K`Tetch [~no@unaffiliated/ktetch] has joined #se2600
18:22 -!- ^020d [~^020d@108-192-158-126.lightspeed.tukrga.sbcglobal.net] has quit [Quit: Ping timeout (120 seconds)]
18:23 -!- ^020d [~^020d@108-192-158-126.lightspeed.tukrga.sbcglobal.net] has joined #se2600
18:24 -!- K`Tetch_ [~no@47.39.211.239] has quit [Ping timeout: 240 seconds]
18:46 < aestetix> maybe I'm getting older
18:46 < aestetix> but every time I see an event with the word "radical" in it
18:46 < aestetix> it screams drama
21:08 <@_NSAKEY> aestetix: I recommend the finger breaking method. If that doesn't work, escalate to snipping off fingertips, Yakuza-style.
21:19 -!- d34dbug [~d34dbug@18.191.206.84] has quit [Ping timeout: 240 seconds]
21:19 -!- NotLarry [~NotLarry@c-68-53-121-109.hsd1.tn.comcast.net] has quit [Ping timeout: 240 seconds]
21:24 -!- NotLarry [~NotLarry@c-68-53-121-109.hsd1.tn.comcast.net] has joined #se2600
21:26 -!- mode/#se2600 [+o NotLarry] by ChanServ
--- Log closed Tue Jul 10 00:00:20 2018