Select Page

ssh DDoS?

by | Nov 16, 2005 | evilzenscientist, Linux, Uncategorized

My servers have been subjected to extra ssh traffic in the last few days:

Nov 16 13:25:14 gc-blog sshd[6625]: Illegal user admin from ::ffff:[IPaddress]
Nov 16 13:25:16 gc-blog sshd[6628]: Illegal user test from ::ffff:[IPaddress]
Nov 16 13:25:19 gc-blog sshd[6631]: Illegal user guest from ::ffff:[IPaddress]
Nov 16 13:25:26 gc-blog sshd[6637]: Illegal user webmaster from ::ffff:[IPaddress]
Nov 16 13:25:36 gc-blog sshd[6645]: Illegal user oracle from ::ffff:[IPaddress]
Nov 16 13:25:38 gc-blog sshd[6647]: Illegal user library from ::ffff:[IPaddress]
Nov 16 13:25:41 gc-blog sshd[6650]: Illegal user info from ::ffff:[IPaddress]
Nov 16 13:25:43 gc-blog sshd[6653]: Illegal user shell from ::ffff:[IPaddress]
Nov 16 13:25:50 gc-blog sshd[6658]: Illegal user linux from ::ffff:[IPaddress]
Nov 16 13:25:53 gc-blog sshd[6661]: Illegal user unix from ::ffff:[IPaddress]
Nov 16 13:25:55 gc-blog sshd[6664]: Illegal user webadmin from ::ffff:[IPaddress]
Nov 16 13:26:05 gc-blog sshd[6672]: Illegal user test from ::ffff:[IPaddress]
Nov 16 13:26:09 gc-blog sshd[6678]: Illegal user admin from ::ffff:[IPaddress]

SANS also had a post – http://isc.sans.org/diary.php?storyid=846

I’m keeping an eye on behaviour – I think my sshd are configured reasonably well.

MSIwisdom

by | Nov 16, 2005 | evilzenscientist, Uncategorized, ZENworks

I was sent a link to a great new blog – MSIwisdom.

There are some great resources, hints and tips on this site – obviously focused on Windows application deployment using MSI packages.

Very useful for ZENworks Desktop Management.

Novell public wiki

by | Nov 13, 2005 | evilzenscientist, that book, Uncategorized

I am working with my colleague, long-time friend and collaborator Ted Haeger (Reverend Ted) to get some of my content hosted and posted on a Novell community wiki.

Specifically I’ve got two pet projects:
– ZENworks 7 Linux Management how to/lab guide
– ZENworks 7 Desktop Management how to/lab guide

This will be cool to open up to the wider community. Watch this space.

ntp client

by | Nov 11, 2005 | evilzenscientist, Linux, Uncategorized

Urg. For some reason my blog server date was wrong. Even though it’s running an ntp client that sync every four hours.

Most of the posts from the last few days have been a day early (if that makes any sense) – it looks like I’ve been posting a day in the future 🙂

All fixed now.

ZLM7 – mirroring from update.novell.com

by | Nov 10, 2005 | evilzenscientist, Linux, Uncategorized, ZENworks

More snippets from the oft-promised white paper:

This post describes in detail how to mirror content (updates and patches) from Novells update service – update.novell.com.

update.novell.com contains updates for Novell Linux Desktop, Open Enterprise Server and Novell Linux Small Business Suite.

I hope to publish similar articles in the coming days on how to do this for Red Hat Network (for Red Hat Enterprise Linux) and YaST Online Update (for straight SUSE Linux Enterprise Server).

(more…)

Pandora

by | Nov 10, 2005 | 'Web 2.0', evilzenscientist, fun stuff, Uncategorized

Pandora is fantastic.

It’s far easier to hear and believe than read this – but:

– sign up
– select music you like – either an artist or a song
– Pandora plays ‘music like that’
– if you like it – say so
– if you don’t – say so
– download (iTunes) or buy (Amazon) things you like

Wow. This is going to cost me big. I’ve already found a few CDs that I really like.