badger.foo - Slashdot User

Submission Summary: 0 pending, 27 declined, 16 accepted (43 total, 37.21% accepted)

+ - What is it that you want to learn about OpenBSD 5.5?-> 0

Submitted by badger.foo on Monday April 14, 2014 @07:34AM

badger.foo (447981) writes "In the upcoming OpenBSD 5.5 release there will be a number of improvements, including a whole new traffic shaping system, automatic installer improvements and the switch to 64-bit time_t.

But OpenBSD has been the source of lots of innovation and improvements in BSD and Unix in general over the years, and in preparation for his two BSDCan tutorials, Peter Hansteen asks, What do you want to learn about OpenBSD 5.5 (and possibly future directions)?"
Link to Original Source

+ - Yes, You Too Can Be An Evil Network Overlord - On The Cheap With OpenBSD, pflow -> 0

Submitted by badger.foo on Wednesday February 26, 2014 @07:49PM

badger.foo (447981) writes "Have you ever wanted to know what's really going on in your network? Some free tools with surprising origins can help you to an almost frightening degree. Peter Hansteen shares some monitoring insights, anecdotes and practical advice in his latest column on how to really know your network. All of it with free software, of course."
Link to Original Source

+ - Effective Spam and Malware Countermeasures Using Free Tools -> 0

Submitted by badger.foo on Saturday February 01, 2014 @07:51PM

badger.foo (447981) writes "In the seemingly never-ending fight against spam and malware, are the free tools really better? In a recent article titled Effective Spam and Malware Countermeasures — Network Noise Reduction Using Free Tools, Peter Hansteen offers a strong argument that free tools, with emphasis on the ones supplied by OpenBSD, are indeed better performing and significantly more cost effective than commercial counterparts. The article also has a history of malware and spam with chuckleworthy anecdotes."
Link to Original Source

2014

2013

+ - The UK "Porn" Filter Blocks Kids' Access To Tech, Civil Liberties Websites -> 0

Submitted by badger.foo on Sunday December 22, 2013 @03:13PM

badger.foo (447981) writes "It fell to the UK Tories to actually implement the Nanny State. Too bad Nanny Tory does not want kinds to read up on tech web sites such as slashdot.org, or civil liberties ones such as the EFF or Amnesty International. Read on for a small sample of what the filter blocks, from a blocked-by-default tech writer."
Link to Original Source

+ - Modern Microsoft Word Does Not Reliably Read Earlier Formats: A 1989 Print Test-> 0

Submitted by badger.foo on Sunday November 10, 2013 @07:56PM

badger.foo (447981) writes "Prompted by a fabulous rant by Charlie Stross named Why Microsoft Word must Die, Peter Hansteen dug out from his archives the simplest possible 1989-vintage Microsoft Word .DOC document, and has the data to prove that newer versions or Microsoft Word do in fact not reliably read files from earlier versions. Case in point: An ASCII table print test generated and saved as .DOC in 1989."
Link to Original Source

+ - The Hail Mary Cloud And The Lessons Learned-> 0

Submitted by badger.foo on Saturday October 05, 2013 @10:25AM

badger.foo (447981) writes "Against ridiculous odds and even after gaining some media focus, the botnet dubbed The Hail Mary Cloud apparently succeeded in staying under the radar and kept compromising Linux machines for several years. This article sums up the known facts about the botnet and suggests some practical measures to keep your servers safe."
Link to Original Source

+ - The Term Hackathon Has Been Trademarked In Germany-> 0

Submitted by badger.foo on Tuesday May 07, 2013 @04:40PM

badger.foo (447981) writes "Trademarking somebody else's idea is behind their back is both a bad idea and highly immoral. If it wasn't your idea, you don't trademark and you don't patent. It really is that simple, people.

The news that the term hackathon had been trademarked in Germany reached me late last week, via this thread on openbsd-misc. The ideas sounded pretty ludicrous ... (see the rest at http://bsdly.blogspot.ca/2013/05/the-term-hackathon-has-been-trademarked.html)"
Link to Original Source

+ - Keep smiling, waste spammers' time with OpenBSD tools-> 0

Submitted by badger.foo on Saturday May 04, 2013 @01:36PM

badger.foo (447981) writes "When you're in the business of building the networks people need and the services they need to run on them, you may also be running a mail service. If you do, you will sooner or later need to deal with spam. This article is about how to waste spammers' time and have a good time while doing it, using the free tools OpenBSD offers to do your greylisting and greytrapping before any content filtering. It's fun and easy."
Link to Original Source

+ - You've Just Installed OpenBSD. Now What? Packages!-> 0

Submitted by badger.foo on Friday April 19, 2013 @05:25PM

badger.foo (447981) writes "Installing OpenBSD is easy, and takes you maybe 20 minutes. Once you've installed your OpenBSD system, packages are there to make your life easier. A works for me/life is good guide for your weekend reading."
Link to Original Source

+ - Maintaining A Publicly Available Blacklist - Mechanisms And Principles-> 0

Submitted by badger.foo on Sunday April 14, 2013 @02:33PM

badger.foo (447981) writes "When you publicly assert that somebody sent spam, you need to ensure that your data is accurate. Your process needs to be simple and verifiable, and to compensate for any errors, you want your process to be transparent to the public with clear points of contact and line of responsibility. Here are some pointers from the operator of the bsdly.net greytrap-based blacklist."
Link to Original Source

+ - SSH Password Gropers Are Now Trying High Ports-> 0

Submitted by

badger.foo

on Saturday February 16, 2013 @04:41PM

badger.foo writes "You thought you had successfully avoided the tiresome password guessing bots groping at your SSH service by moving the service to a non-standard port? It seems security by obscurity has lost the game once more. We're now seeing ssh bruteforce attempts hitting other ports too, Peter Hansteen writes in his latest column."
Link to Original Source

2013

2012

+ - You're Being DDOSed - What Do You Do? Name And Shame?-> 0

Submitted by

badger.foo

on Tuesday December 25, 2012 @02:14PM

badger.foo writes "When you're hit with a DDOS, what do you do? In his most recent column, Peter Hansteen narrates a recent incident that involved a DNS based DDOS against his infrastructure and that of some old friends of his. He ends up asking, should we actively publish or 'name and shame' DDOS participants (or at least their IP addresses)? How about scans that may or may not be preparations for DDOSes to come?"
Link to Original Source

+ - Petition For Pardon Of PirateBay's Peter Sunde-> 0

Submitted by

badger.foo

on Monday July 09, 2012 @05:39PM

badger.foo writes "Remember the PirateBay affair, that included a criminal copyright infringement trial that railroaded four Swedish techs into jail terms and multiple million fines and damages? Now there's an avaaz.org petition for Peter Sunde, one of the defendants' pardon. Read up on the backrground in English or the original Swedish, then if you agree that the process did not deliver justice, please go to the petition page and add your signature."
Link to Original Source

+ - Why Not Use Port Knocking?-> 0

Submitted by

badger.foo

on Wednesday April 11, 2012 @03:04PM

badger.foo writes "Whenever you write about security in general and SSH security in particular (and for good measure also get slashdotted for your efforts), the comments inevitably turn up a variety of useful and less useful suggestions. One such suggestion invariably involves the odd practice called Port Knocking, which I've been circling for a while as a possible article subject. If you've considered including this in your arsenal of security features, I'll treat you to a few why nots in the following. Read on if you're interested in actual security in practice."
Link to Original Source

+ - The Optimum Attack Rate for SSH Bruteforce? 1 Per 10 Seconds-> 0

Submitted by

badger.foo

on Friday April 06, 2012 @12:55PM

badger.foo writes "Remember the glacially slow Hail Mary Cloud SSH bruteforcers? They're doing speedup tweaks and are preparing a comeback, some preliminary data reported by Peter Hansteen appear to indicate. The optimum rate of connections seems to be 1 per ten seconds, smack in the middle of the 'probably human' interval."
Link to Original Source

badger.foo (447981)

peter@bsdly.net
http://bsdly.blogspot.com/
Peter N. M. Hansteen is a consultant, sysadmin and writer from Bergen, Norway. Realizing that his rock'n'roll career was going nowhere, he started tinkering with computers in the mid 1980s, and rediscovered Unixes about the time 386BSD appeared. By a natural progression of real-world challenges and a need to find useful solutions, he ended up with a strong preference for open source in general and OpenBSD in particular. A longtime freenix advocate, he is a member of the BLUG (Bergen (BSD and) Linux User Group) core group and a former vice president of NUUG (the Norwegian Unix User Group, the local USENIX sister organization). During recent years he has been a frequent lecturer and tutor with emphasis on OpenBSD and FreeBSD, author of several articles and The Book of PF [nostarch.com] (No Starch Press 2007, 2nd edition November 2010). He writes an occasionally slashdotted blog at http://bsdly.blogspot.com/ [blogspot.com] centering on sanity in IT