Re: Find obsolete packages without using aptitude?

2015-01-13 Thread Bob Proulx
Fredrik Jonson wrote: > Here's a small challenge. I'm trying to find obsolete or orphaned packages > on a system that's been dist-upgraded. > ... > How would you accomplish that assuming you cannot use aptitude? Try this: apt-show-versions | grep -v uptodate Or read my answer posted here Satur

Re: Have I been hacked?

2015-01-13 Thread Bob Proulx
Brian wrote: > Seeing that my argument that enforcing (if it is possible) an > unmemorable password is not in the best interests of security doesn't > gain any tracton, let me try a different tack. > > The password > > TwasBrilligAndTheSlithyToves > > strikes me as a pretty good one for an ssh

Re: Have I been hacked?

2015-01-13 Thread Bob Proulx
Gene Heskett wrote: > 10 characters is entirely within the realm of being solved by john in a > surprisingly sort time. In order to use john you will need to be running an offline attack against an already exposed account database. It doesn't work as an online attack. > But every character you

Re: Have I been hacked?

2015-01-13 Thread Bob Proulx
Danny wrote: > least myself) forgot about ... and that is the importance of > choosing a proper username ... > ... > So ... if I know the username I am already halfway there ... I just > need to get the OTHER remainig 50% (by breaking the password) Trying to hide in an unusual username is obscuri

Re: Disable server so it does not start on reboot (even after upgrade)?

2015-01-13 Thread Andrei POPESCU
On Vi, 09 ian 15, 15:02:34, Xavi wrote: > First I do: > > sudo update-rc.d -f apache2 remove > > and then, to assert the rc.d links are not recreated, > I recreate them stopped in all runlevels: > > sudo update-rc.d apache2 stop 80 0 1 2 3 4 5 6 . Or one could just use 'disable'. Kind regards

Re: Fwd: Re: Have I been hacked?

2015-01-13 Thread Gene Heskett
On Tuesday, January 13, 2015 01:35:00 PM Ric Moore did opine And Gene did reply: > On 01/13/2015 05:34 AM, Gene Heskett wrote: > > On Monday, January 12, 2015 11:54:54 PM Joel Rees did opine > > > > And Gene did reply: > >> 2015/01/13 5:04 "Ric Moore" : > >>> On 01/12/2015 11:50 AM, Jerry Stuckle

Re: Have I been hacked?

2015-01-13 Thread Brian
On Tue 13 Jan 2015 at 19:13:19 +0200, Danny wrote: > I have read with interest all the responses and followed all the links. > However, > I realized something that I think we all (well, at least myself) forgot about > ... > and that is the importance of choosing a proper username ... You can be

Re: Sendmail greeting delay

2015-01-13 Thread David Parker
Just for the sake of completeness, this wasn't actually an issue with the GreetPause option or anything else in the access file. The problem was that sendmail was attempting an IDENT query to the client, with a 5-second timeout. The access file wasn't even checked until after the timeout expired.

Re: Sendmail greeting delay

2015-01-13 Thread David Parker
Thanks, but it looks like the IDENT setting was the culprit. I just had to change this setting in sendmail.cf: O Timeout.ident=5s Changing it from 5s to 0s resolved the problem immediately. Thanks again, everyone! On Tue, Jan 13, 2015 at 3:07 PM, Jonathan Siegle wrote: > On 2015-01-13 at

Re: Sendmail greeting delay

2015-01-13 Thread Jonathan Siegle
On 2015-01-13 at 12:38, David Parker wrote: Hello, My /etc/mail/access file is pasted below.  The PC I'm testing from is on the 10.x.x.x network, which should be allowed to connect with no delay.  I have also tried setting the default GreetPause to "0" but it still made no difference. ##

Re: Sendmail greeting delay

2015-01-13 Thread David Parker
Yes! That seems to be the culprit. I ran an strace on the sendmail process and that's exactly what happens: [ ... ] 4007 15:09:08.386921 connect(5, {sa_family=AF_INET, sin_port=htons(113), sin_addr=inet_addr("10.3.1.40")}, 16 3792 15:09:13.386272 <... select resumed> ) = 0 (Timeout) [ ... ]

Re: Sendmail greeting delay

2015-01-13 Thread Joe
On Tue, 13 Jan 2015 20:12:11 + Joe wrote: > On Tue, 13 Jan 2015 14:27:42 -0500 > David Parker wrote: > > > Thanks for the replies. > > > > The system is not using tcpwrappers, and it's also not a DNS issue. > > The client PC does have a reverse DNS entry. A tcpdump packet > > capture on t

Re: Sendmail greeting delay

2015-01-13 Thread Joe
On Tue, 13 Jan 2015 14:27:42 -0500 David Parker wrote: > Thanks for the replies. > > The system is not using tcpwrappers, and it's also not a DNS issue. > The client PC does have a reverse DNS entry. A tcpdump packet > capture on the server shows the initial connection from the client > followe

Re: Sendmail greeting delay

2015-01-13 Thread David Parker
Thanks for the replies. The system is not using tcpwrappers, and it's also not a DNS issue. The client PC does have a reverse DNS entry. A tcpdump packet capture on the server shows the initial connection from the client followed by a bunch of DNS traffic, all within the same second. Then nothi

Re: Sendmail greeting delay

2015-01-13 Thread Chris Davies
David Parker wrote: > We have an SMTP server running Sendmail 8.14.4-4 on Debian 7 64-bit. > Kaccess hash -T /etc/mail/access > # FEATURE(`access_db', `hash -T /etc/mail/access', `skip')dnl > For some reason, I just can't get it to not pause when greeting external > (non-localhost) connections.

Re: unable to boot with systemd (works with sysvinit)

2015-01-13 Thread Ric Moore
On 01/13/2015 01:36 AM, Johannes Schauer wrote: Hi, Quoting Selim T. Erdoğan (2015-01-12 22:38:08) On Sat, Jan 10, 2015 at 12:33:36PM +0100, Johannes Schauer wrote: I'm unable to boot my laptop with systemd which worked before. I'm unable to tell the changes I made since the last time it worke

Re: Fwd: Re: Have I been hacked?

2015-01-13 Thread Ric Moore
On 01/13/2015 05:34 AM, Gene Heskett wrote: On Monday, January 12, 2015 11:54:54 PM Joel Rees did opine And Gene did reply: 2015/01/13 5:04 "Ric Moore" : On 01/12/2015 11:50 AM, Jerry Stuckle wrote: You should learn from some REAL security experts, not the internet. Like who? There are compr

Re: Sendmail greeting delay

2015-01-13 Thread Burhan Hanoglu
On Tue, Jan 13, 2015 at 7:38 PM, David Parker wrote: > Hello, > > We have an SMTP server running Sendmail 8.14.4-4 on Debian 7 64-bit. > We're using the file /etc/mail/access for access control and rate limiting, > and this is enabled via the following lines in /etc/mail/sendmail.cf: > > Kaccess

Re: Have I been hacked?

2015-01-13 Thread Gene Heskett
On Tuesday, January 13, 2015 12:13:19 PM Danny did opine And Gene did reply: > Hi, > > I have read with interest all the responses and followed all the > links. However, I realized something that I think we all (well, at > least myself) forgot about ... and that is the importance of choosing > a p

Sendmail greeting delay

2015-01-13 Thread David Parker
Hello, We have an SMTP server running Sendmail 8.14.4-4 on Debian 7 64-bit. We're using the file /etc/mail/access for access control and rate limiting, and this is enabled via the following lines in /etc/mail/sendmail.cf: Kaccess hash -T /etc/mail/access # FEATURE(`access_db', `hash -T /etc/mail

Find obsolete packages without using aptitude?

2015-01-13 Thread Fredrik Jonson
Hi All, Here's a small challenge. I'm trying to find obsolete or orphaned packages on a system that's been dist-upgraded. Aptitude can give me list with this query: aptitude search ?obsolete The definition of that query is: "This term matches any installed package which is not available in any

Re: One more try to post

2015-01-13 Thread Gene Heskett
On Tuesday, January 13, 2015 06:13:05 AM Lisi Reisz did opine And Gene did reply: > On Tuesday 13 January 2015 10:56:59 Gene Heskett wrote: > > On Tuesday, January 13, 2015 05:47:53 AM Lisi Reisz did opine > > > > And Gene did reply: > > > On Tuesday 13 January 2015 10:37:55 Gene Heskett wrote: >

Re: Have I been hacked?

2015-01-13 Thread Danny
Hi, I have read with interest all the responses and followed all the links. However, I realized something that I think we all (well, at least myself) forgot about ... and that is the importance of choosing a proper username ... Authentication (usually) is a 2 step process ... as we all know ...

Re: One more try to post

2015-01-13 Thread Lisi Reisz
On Tuesday 13 January 2015 10:56:59 Gene Heskett wrote: > On Tuesday, January 13, 2015 05:47:53 AM Lisi Reisz did opine > > And Gene did reply: > > On Tuesday 13 January 2015 10:37:55 Gene Heskett wrote: > > > Recent debian wheezy install here. Where in the configs, can I get > > > rid of the F10

Re: One more try to post

2015-01-13 Thread Gene Heskett
On Tuesday, January 13, 2015 05:47:53 AM Lisi Reisz did opine And Gene did reply: > On Tuesday 13 January 2015 10:37:55 Gene Heskett wrote: > > Recent debian wheezy install here. Where in the configs, can I get > > rid of the F10 key stealing by the terminal emulator so it can > > revert to being

Re: One more try to post

2015-01-13 Thread Gene Heskett
On Tuesday, January 13, 2015 05:45:52 AM Ansgar Burchardt did opine And Gene did reply: > Hi, > > On 01/13/2015 11:37 AM, Gene Heskett wrote: > > Recent debian wheezy install here. Where in the configs, can I get > > rid of the F10 key stealing by the terminal emulator so it can > > revert to bei

Re: One more try to post

2015-01-13 Thread Lisi Reisz
On Tuesday 13 January 2015 10:37:55 Gene Heskett wrote: > Recent debian wheezy install here.  Where in the configs, can I get rid > of the F10 key stealing by the terminal emulator so it can revert to > being the mc exit key? Which DE? Which terminal emulator? What is it doing? Lisi -- To UNS

Re: One more try to post

2015-01-13 Thread Ansgar Burchardt
Hi, On 01/13/2015 11:37 AM, Gene Heskett wrote: > Recent debian wheezy install here. Where in the configs, can I get rid > of the F10 key stealing by the terminal emulator so it can revert to > being the mc exit key? If you use GNOME, there should be a "Enable the menu accelerator key (F10 by

One more try to post

2015-01-13 Thread Gene Heskett
Greetings; Recent debian wheezy install here. Where in the configs, can I get rid of the F10 key stealing by the terminal emulator so it can revert to being the mc exit key? Thanks. Cheers, Gene Heskett -- "There are four boxes to be used in defense of liberty: soap, ballot, jury, and ammo.

Re: Fwd: Re: Have I been hacked?

2015-01-13 Thread Gene Heskett
On Monday, January 12, 2015 11:54:54 PM Joel Rees did opine And Gene did reply: > 2015/01/13 5:04 "Ric Moore" : > > On 01/12/2015 11:50 AM, Jerry Stuckle wrote: > >> You should learn from some REAL security experts, not the internet. > > > > Like who? There are compromises all over the net, with c

Re: Have I been hacked?

2015-01-13 Thread Lisi Reisz
On Tuesday 13 January 2015 09:22:25 Andrei POPESCU wrote: > This thread reminds me of > > https://xkcd.com/936/ > > and > > https://xkcd.com/538/ > > P.S. Sorry if these have already been posted, didn't go through the > entire thread yet. :-)) Thanks Andrei. Loved the second. I already knew the

Re: wireless usb adopter installation

2015-01-13 Thread Brian
On Tue 13 Jan 2015 at 01:59:07 +0500, zaheer ahmed wrote: > i am using compaq 32bit desktop. i am new user of debian 5. i am using wifi > USB TL- WN727N its woks fine in xp but not working in debain5. i am new in > linux debian5 plz tell me all steps which i follow and easily install > driver. tel

Re: Have I been hacked?

2015-01-13 Thread Andrei POPESCU
On Lu, 12 ian 15, 20:17:10, Brian wrote: > > Seeing that my argument that enforcing (if it is possible) an > unmemorable password is not in the best interests of security doesn't > gain any tracton, let me try a different tack. > > The password > > TwasBrilligAndTheSlithyToves This thread rem