search for: miscreants

Maurik, You are right. I am currently using 4.1.17 and have the same failed login messages as you describe. There is, however, a bit more information further down in the logfile: [2015/10/07 16:51:24.076283, 2] authentication for user [HPRS/Administrator] FAILED with error NT_STATUS_WRONG_PASSWORD auth_check_password_send: Checking password for unmapped user [HPRS]\[Administrator]@[ROVER]

I am using rsync to back up across a VPN. Unfortunately, every so often the home office miscreants drop a big block of data into the backup and that particular backup cycle takes many hours. These same people also complain when net pipe is filled during the day. What I need is an ability to change the bwlimit based on time of day. Any suggestions as to how to do this?

> Hmm the calls are made during the day (and sometimes very early in the > morning). Right now it looks like someone actually made these calls. If > that is the case it's somewhat comforting to know the system wasn't > compromised. However, the $25,000 phone bill still remains. Yikes. $6.25 > per minute to Cambodia seems quite steep to me. Since the Mitel had a default

Hello, We had been seeing SIP-guessing attacks on our Asterisk server here. While it wasn't that hard to write a once-a-minute cron job to spank the lusers, that runs once a minute and creates little spikes in the usage and I/O graphs, and is slower to respond than I'd really prefer. I felt that it'd be much cooler to get something more comprehensive put together. We don't use

hi, i found this explanation of the flac fingerprint somewhere: 'A FLAC Fingerprint is generated only for the audio data portion of the file. (Therefore, changing the filename or the tags or FlacMetadata does not change the fingerprint calculation.) In contrast, an .md5 is generated against the whole file, including header portions.' so i was wondering what advantages it could give me

...aintenance effort (1-2 branches at a time). ## Code of Conduct We've discussed a simple but effective code of conduct, along the lines of: use common sense: don't abuse others and don't misbehave. When anyone does, folk should tell the mergers, who will be generally annoyed at the miscreants, and may take actions. OK, so I think this covers all the initial important points, if I've missed anything then please feel free to add that. Thanks, Laurence [1] https://gitlab.com/freedesktop-sdk/freedesktop-sdk [2] https://gitlab.com/freedesktop-sdk/freedesktop-sdk/tree/test-conversion...

...thing, but can be a pain to do upgrades around remotely. [A lot of folks use FreeBSD simply because its a breeze to run remotely]. 3) Until someone writes code to add modules to a kernel via /dev/mem and releases it to the script kiddie world, the bar has been effectively raised for 99% of the miscreants out there. 4) Marketing-wise, it will make folks who don't understand the issues very deeply more comfortable. And as in #3, that is probably a 99% accurate feeling. 5) For those of us using automatic updating systems, having modules and kernels out of sync is bad potentially, so NO_KLD he...

I often find myself doing, whois some.damned.ip.address and then copying and pasting the address range for the miscreant in question, and doing, shorewall iprange x.x.x.x-y.y.y.y with the aim to drop the entire range. My one minor complaint is that I often have to edit out the spaces between the hyphen when copying and pasting the address range returned by whois. I tweaked the shorewall

Hi Mark, list, On 10/08/2015 05:29 AM, Mark Foley wrote: > Maurik, > > You are right. I am currently using 4.1.17 and have the same failed login > messages as you describe. There is, however, a bit more information further down > in the logfile: > > [2015/10/07 16:51:24.076283, 2] authentication for user [HPRS/Administrator] FAILED with error NT_STATUS_WRONG_PASSWORD >

Harry, > so i was wondering what advantages it could give me to make a ffp > file, because there is already a internally stored md5 checksum on the > decoded audio data inside the flac file? Testing the .flac file against its internally stored fingerprint lets you know that you have a properly encoded .flac file of *something*. If you also certify that internally stored fingerprint

For many years I've been running ssh reverse tunnels on portable Linux, OpenWRT, Android etc. hosts so they can be accessed from a server whose IP is stable (I call such a server a "nexus host"). Increasingly there's a problem with brute force attacks on the nexus host's tunnel ports. The attack is forwarded to the portable tunneling host, where it fails, but it chews up

It's very unlikely that this was an employee calling Mom for 66 hours (I'm assuming these calls appeared on a single bill). It's also unlikely that someone "inside" would benefit financially from making these calls. (Follow the money!) Don't discount the possibility that you've overlooked something in the firewall. Meanwhile, does the client need to do international

...eachers invalid users = +BGS\pupils create mask = 0660 directory mask = 770 force user = %U force group = %G [pupils] comment = Shared Directory for Pupils path = /share/pupils browseable = yes read list = +"BGS\Domain Admins" +BGS\"Domain Users" +BGS\pupils +BGS\teachers +BGS\miscreants write list = +"BGS\Domain Admins" +BGS\"Domain Users" +BGS\pupils +BGS\teachers +BGS\miscreants create mask = 660 directory mask =770 force user = %U force group = +BGS\teachers veto files = /*.exe/*.mp3/*.scr/*.vbs/*.asf/*.wma/*.wmv/*.mp4/*.mpg/*.mpeg/*.ra/*.ram/*.bas/*.bat/*...

Did you have a look at the phone it self already? Is call forwarding activated or something and can you call the phone/extension from externally? I have seen this in the past where an employee enabled call forwarding on the phone and once at home he or family called the phone which forwarded the call to abroad. Good luck. Michel. Op 29-01-15 om 12:51 schreef dk at donkelly.biz: > It's

2007/10/15, David W. Tamkin <dattier@panix.com>: > > Harry, > > > so i was wondering what advantages it could give me to make a ffp > > file, because there is already a internally stored md5 checksum on the > > decoded audio data inside the flac file? > > Testing the .flac file against its internally stored fingerprint lets > you know that you have a

Hello Dovecot developers, Apple has made and tested significant changes to Dovecot v1.1 and now is ready to contribute them back to your open source project. The changes include: Scalability and performance: allow pop/imap mail processes to handle multiple clients larger listen queues Stability and maintenance: fix to allow cross-compilation workarounds for Mac OS X bugs a couple general

For dovecot 2.1 as per wiki2, is this still valid? noticed a problem before and saw it does seem to be triggering, I use: maxretry = 6 findtime = 600 bantime = 3600 and there was like, 2400 hits in 4 minutes, it is pointing to the correct log file, but I am no expert with fail2ban, so not sure if the log format of today is compatible with the wiki2 entry filter.d/dovecot.conf [Definition]

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hello: I've configured a Linux box with Samba to act as a secondary domain controller for an existing NT server. I've gotten everything working very nicely, all my file shares set up, etc. I've got 6 printers that I need to set up as print shares. The ones that speak Postscript or PCL were very easy to set up, and work admirably.

This patch (https://bugzilla.mindrot.org/show_bug.cgi?id=1438) creates a kbdint device that provides a server-based authentication mechanism. The server generates and emails you a random string when you attempt to login. You're authenticated if you can correctly answer the challenge. You can use a regular email account, a pager, cell phone or other email capable device to receive the

Hi all, I''m just starting to look at using Augeas with Puppet to manage some of our configuration files. I thought I would start with a simple task of removing an entry from the /etc/hosts file. I''m not finding it simple though! We have a number of hosts with entries in the /etc/hosts file like this: 127.0.1.1 hostname We would like to remove these lines. Now I know this can