[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Debian GNU/Hurd on the net?

On Sat, Dec 21, 2002 at 11:08:03AM +0100, Marcus Brinkmann wrote:
> I hope you have it cut off from the rest of your LAN, physically or at least
> through a restrictive firewall.  Don't keep precious data on that machine,
> and reinstall before using it for other than demonstrating purposes.

Thanks for the suggestion, Marcus. This box won't have important data.
(We trashed the disk twice already and had to re-create partion &
new fs.)

> > I was thinking of creating a guest account for people to look around
> > and get a feel of a live GNU/Hurd machine. 
> As the login program is really a shell, you don't necessarily need an
> account for guests :

Oh sh*t. :(
How do you access this `login' shell from remote?
Is there a known security issues?

There were two wierd entries (asterisks added):
login    ttyp0    16*-22*-3*-17*.s Sun Dec 22 05:22 - 05:23 (00:00)
login    ttyp0    16*-22*-3*-17*.s Sun Dec 22 05:20 - 05:22 (00:01)

and lots more in the log file, such as:

Dec 21 19:03:50 hurd sshd[410]: Failed none for illegal user ls from
17*.18*.14*.25* port 1065 ssh2

or attempts to access with guest, root, micha, ...
from various IPs :(

I guess, that's the nature of the net, eh?
The first attempt to access the machine via http ... of course, 
cmd.exe :-) Just minutes after I put the box on the net.

-- budi

Reply to: