search for: guesser

...ution runs fine. Every following execution fails though. Each spec complains about the ''controller_path'' missing from my controller. Odd. This only seems to affect controller specs. I''ve tried a few things to no avail. Any tips? 1) NoMethodError in ''Guesser play start'' undefined method `controller_path'' for GuesserController:Class ./spec/controllers/guesser_spec.rb:18:in `play start'' ./spec/controllers/guesser_spec.rb:17:in `play start'' 2) NoMethodError in ''Guesser game gets created on new game'' u...

> On Jul 30, 2015, at 12:20, Warren Young <wyml at etr-usa.com> wrote: > > Meanwhile over here in CentOS land, you still see SSH password guessers banging on every public IP that responds to port 22. Why? Because it still occasionally works. Increase the password strength minima, and this class of worm, too, will quickly die out. If the Windows fix was firewall on by default, why isn?t that the appropriate ?fix" for Linux distros? W...

....com/ ). It obviously uses Ferret for indexing and searching, and adds some plain text extractors in order to index OOffice.org, pdf and MS Office documents (and some others as well). Everything is packed in a gem (gem install picolena), with a few rake tasks, a multi-threaded indexer, a language guesser, a rails frontend and some specs to be sure everything works fine. I would love to hear some feedback from acts_as_ferret developers or users! My project is in now way supposed to be a competitor of AAF: we have different goals (ActiveRecord indexing plugin vs. stand-alone rails-app for documents...

On 7/30/2015 2:23 PM, Nathan Duehr wrote: >> >On Jul 30, 2015, at 12:20, Warren Young<wyml at etr-usa.com> wrote: >> > >> >Meanwhile over here in CentOS land, you still see SSH password guessers banging on every public IP that responds to port 22. Why? Because it still occasionally works. Increase the password strength minima, and this class of worm, too, will quickly die out. > If the Windows fix was firewall on by default, why isn?t that the appropriate ?fix" for Linux distro...

...centos.org Subject: Re: [CentOS] Fedora change that will probably affect RHEL On 7/30/2015 2:23 PM, Nathan Duehr wrote: >> >On Jul 30, 2015, at 12:20, Warren Young<wyml at etr-usa.com> wrote: >> > >> >Meanwhile over here in CentOS land, you still see SSH password guessers banging on every public IP that responds to port 22. Why? Because it still occasionally works. Increase the password strength minima, and this class of worm, too, will quickly die out. > If the Windows fix was firewall on by default, why isn?t that the appropriate ?fix" for Linux distro...

...ygen. 0509-192 Examine .loader section symbols with the 'dump -Tv' command. make: 1254-004 The error code from the last command is 255. Checking on dejanews.com revealed that at least one other person has stumbled on this. Not being a programmer, but maybe a smart guesser, I was able to work around this by including the following in the source-file ssh-keygen.c manually: #ifdef LIBWRAP #include <tcpd.h> #include <syslog.h> int allow_severity = LOG_INFO; int deny_severity = LOG_WARNING; #endif /* LIBWRAP */ I copied+pasted it from the source-file sshd.c...

Weird Problem: I have 2 EXT. One will ring and NOT go into VM (eventually call will timeout/hang up), the other EXT goes into VM when the call is not answered like it should. If I enable DND, then the call will go directly in VM as it should. Any ideas what it might be? Thank you, Jake

...e racked up in datacenters, VPS hosts, etc. I am further assuming that most of those either have a public IP, or are SSH-accessible once you get past a LAN/WAN border firewall. A border gateway doesn?t help you with weak SSH passwords if a box on the LAN gets pwned and turned into an SSH password guesser. The effort to get stronger password minima into Fedora goes back at least four years: https://fedoraproject.org/wiki/Features/PasswordQualityChecking If it?s finally time to get it into Fedora, it?s *long* past time to get it into RHEL/CentOS, since those boxes are statistically far more like...

On Wed, Jul 29, 2015 at 4:37 PM, Warren Young <wyml at etr-usa.com> wrote: > Security is *always* opposed to convenience. False. OS X by default runs only signed binaries, and if they come from the App Store they run in a sandbox. User gains significant security with this, and are completely unaware of it. There is no inconvenience. What is the inconvenience of encrypting your device

...2251...00002251 The block content 0x20FE tells that the decimal address is 8785 whereas the requested address was 8444. So here we clearly have a wrong translation from LBA to C/H/S. But the result differs from what David reports. My run did read a block although it was the wrong one. I have a guesser function for disk geometry in libisofs. It says that HC= 32 , SH= 63 is the only valid combination where HC * SH * 4 + SH * 11 + 29 - 1 = 8785 (The function works by brute force, simply trying all combinations of {1...255} x {1 ... 63}. Often it finds more than one solution.) The only so...

hi, I wrote a patch to openssh sshd.c which enables "exponential backoff", so that an attacker cannot brute force your password by making hundreds of login attempts. here is the code: http://sam.nipl.net/sshd-backoff/ An attacker who fails to login is locked out (by IP address) for 1 minute, and the lockout period doubles for each failed login after that. Normally three logins are

On Tue, Mar 21, 2017 at 09:03:35AM +0100, Thomas Schmitt via Syslinux wrote: > I think we should offer David a binary which he can combine with > the MBR of the ISO and the image with the recognizable blocks. > I will later today upload a binary version of my block producer > and post the URL. > > The combination will be: > 432 bytes from Martin's MBR > 80 bytes

Dear all, We are experiencing some trouble when compiling R packages using R 2.6.0 and the new Rtools installer under Windows XP. (1) First, compiling any package using the new setup stops with an errorrelated to some "/" issue on the inst folder. This folder only contains a CITATION file ---------- Making package FLCore ------------ adding build stamp to DESCRIPTION installing

...no longer applies. We didn?t get the immunity without a cost. I used to be able to ?message? a remote Windows computer merely by knowing its IP, and I could browse its registry without jumping through hoops. Can?t do that any more. Meanwhile over here in CentOS land, you still see SSH password guessers banging on every public IP that responds to port 22. Why? Because it still occasionally works. Increase the password strength minima, and this class of worm, too, will quickly die out. > Computers with strong passphrases still sometimes get pwned The occasional failure of a prophylactic me...

...be minimally affected in terms of usability, the security will be vastly better than even if 5 or 6 digit PINs were employed and besides no one would accept that anyway. And that's where we are with computers and passwords. > Meanwhile over here in CentOS land, you still see SSH password guessers banging on every public IP that responds to port 22. Why? Because it still occasionally works. Increase the password strength minima, and this class of worm, too, will quickly die out. No they just get better, like they have been, at an exponential rate compared to our ability to recall login...

FTS indexing is something I hear quite often nowadays. I?ve added some hacks to make it work better for some installations, but it?s about time to think about the whole design and how it could be improved for everyone in future. Here are some of my initial thoughts. Currently Dovecot supports 3 full text search engines: Solr, CLucene and Dovecot Squat. CLucene plugin has various features built

http://bugzilla.mindrot.org/show_bug.cgi?id=1322 Summary: pam_end() is not called if authentication fails, which breaks pam-abl Product: Portable OpenSSH Version: 4.6p1 Platform: Other URL: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=405041 OS/Version: Linux Status: NEW Severity:

Once upon a time, Warren Young <wyml at etr-usa.com> said: > Much of the evil on the Internet today ? DDoS armies, spam spewers, phishing botnets ? is done on pnwed hardware, much of which was compromised by previous botnets banging on weak SSH passwords. Since most of that crap comes from Windows hosts, the security of Linux SSH passwords seems hardly relevant. > Your freedom to use