Re: Debian GNU/Hurd on the net?
On Sat, Dec 21, 2002 at 11:08:03AM +0100, Marcus Brinkmann wrote:
> I hope you have it cut off from the rest of your LAN, physically or at least
> through a restrictive firewall. Don't keep precious data on that machine,
> and reinstall before using it for other than demonstrating purposes.
Thanks for the suggestion, Marcus. This box won't have important data.
(We trashed the disk twice already and had to re-create partion &
> > I was thinking of creating a guest account for people to look around
> > and get a feel of a live GNU/Hurd machine.
> As the login program is really a shell, you don't necessarily need an
> account for guests :
Oh sh*t. :(
How do you access this `login' shell from remote?
Is there a known security issues?
There were two wierd entries (asterisks added):
login ttyp0 16*-22*-3*-17*.s Sun Dec 22 05:22 - 05:23 (00:00)
login ttyp0 16*-22*-3*-17*.s Sun Dec 22 05:20 - 05:22 (00:01)
and lots more in the log file, such as:
Dec 21 19:03:50 hurd sshd: Failed none for illegal user ls from
17*.18*.14*.25* port 1065 ssh2
or attempts to access with guest, root, micha, ...
from various IPs :(
I guess, that's the nature of the net, eh?
The first attempt to access the machine via http ... of course,
cmd.exe :-) Just minutes after I put the box on the net.