Warning: SSH root password hacking

I am pretty surprised to find out this is happening when I was debugging my L2TP/IPSec tunnel: someone is trying very hard to guess my root password over SSH. A quick check proved to me that my private cloud is under attack too.

Continue reading “Warning: SSH root password hacking”

GNU bash ShellShock bug and how to fix it on OS X

Update: A new bash patch is released as bash-4.3.26. This article is updated to include the new patch.

Recently another UNIX bug broke out: ShellShock bug in GNU bash, the most commonly-used UNIX shell. It allowed arbitrary code execution. which is bad.

Test code, if you want to check:

env "() { ;:}; echo gah" bash -c "echo test"

If you see both gah and test, your system is vulnerable! Read on!

Continue reading “GNU bash ShellShock bug and how to fix it on OS X”

Raspbian Server Edition 2.5 Update

Finally the images are ready! Here are the links:

On top of basic Raspbian Server Edition installation with full jessie updates, I have added:

  • apache2, libapache2-mod-php5, mariadb-server: A complete LAMP stack
  • avahi-daemon: Bonjour, in order to make remote management easier
  • watchdog, bcm2708-wdog: Watchdog daemon
  • rng-tools, bcm2708-rng: Hardware radom number generator, helps hardening your crypto.
  • ipv6: Next generation Internet

Hope that deems useful.

GNU on OS X

I am a OS X user, and I am also a Linux user. OS X packs FreeBSD user land, Linux packs GNU user land. Somehow I managed to like OS X, but also GNU user land.

That is why I am always trying to replace my OS X FreeBSD user land with GNU equivalents. That will involve some heavy-duty compiling and checking. Tiring, but rewarding as my scripts can work on both systems.

One missing piece I tried to port but never succeed is Ubuntu’s bash-completion package which is makes bash super easy to use.