login
Search
Follow up to: "Brute-Force SSH Server Attacks Surge (InformationWeek)"
* default debian's "rootlogins: on" is bad;
* it's not easy to make multiple port sshds (dummy and real) due to bad /etc/init.d/ssh;
* i have login-only and work-sh-only accounts;
* script for login-only ones: ftp://flower.upol.cz/sys-olecom/+.profile
(i wonder and couldn't check it yet: if ^C from ssh/tty can come before `set +i -e`, then script will leave you with root shell).
.profiles - nothing new or obsolete yet, just hard for fancy WEB
so far 8 downloads of the script... Who are you?
As it can be seen right on kerneltrap's right side -- boobs (top latest forum spam) are the way people do things. (Thanks for manual cleanup anyway!)
Script shows unlimited power to make your own login scenarious, you might like -- with funny ascii graphic or animation, puzzles only you know, etc., etc. I just can embed. that
sokoban.sedthing there, no stupid PAM or other crap required!Same with stupid sp@m. I can do, what i want to prevent or fsck it, if fellow kerneltrap will allow me one little frontednd to
system()call. Old UNIX shell.profileconcept for kerneltrap, hmm?Oh, well...
It's not just failed web technology, if you cannot provide easy and secure way to the most basic UNIX call, but failed "protected" mode of the i386 with all other's CPU hardware and all so-called OS "technology"...
(Mind you: behind all that "implementations", there's huge tank of useless, semi-useless, not working, semi-working, money-demanding academia paper worms and theirs "papers". Ouuu, there are even official currupted scientific ones. Use basic and most simple, experimentally proven principles to evaluate this. Unfortunately brainwash like official 9/11 shows, vast majority is utter ignorant and just does not care.)