Warning: SSH root password hacking

I am pretty surprised to find out this is happening when I was debugging my L2TP/IPSec tunnel: someone is trying very hard to guess my root password over SSH. A quick check proved to me that my private cloud is under attack too.

Continue reading Warning: SSH root password hacking

GNU bash ShellShock bug and how to fix it on OS X

Update: A new bash patch is released as bash-4.3.26. This article is updated to include the new patch.

Recently another UNIX bug broke out: ShellShock bug in GNU bash, the most commonly-used UNIX shell. It allowed arbitrary code execution. which is bad.

Test code, if you want to check:

env "() { ;:}; echo gah" bash -c "echo test"

If you see both gah and test, your system is vulnerable! Read on!

Continue reading GNU bash ShellShock bug and how to fix it on OS X

Raspbian Server Edition 2.5 Update

Finally the images are ready! Here are the links:

On top of basic Raspbian Server Edition installation with full jessie updates, I have added:

  • apache2, libapache2-mod-php5, mariadb-server: A complete LAMP stack
  • avahi-daemon: Bonjour, in order to make remote management easier
  • watchdog, bcm2708-wdog: Watchdog daemon
  • rng-tools, bcm2708-rng: Hardware radom number generator, helps hardening your crypto.
  • ipv6: Next generation Internet

Hope that deems useful.

GNU on OS X

I am a OS X user, and I am also a Linux user. OS X packs FreeBSD user land, Linux packs GNU user land. Somehow I managed to like OS X, but also GNU user land.

That is why I am always trying to replace my OS X FreeBSD user land with GNU equivalents. That will involve some heavy-duty compiling and checking. Tiring, but rewarding as my scripts can work on both systems.

One missing piece I tried to port but never succeed is Ubuntu’s bash-completion package which is makes bash super easy to use.