On Mon, 27 Jul 2015 04:03:14 -0500
Johnny Hughes wrote:
> The packages that will become CentOS-6.7, as well as updates completed
> for CentOS-6.7 to date are now released into the CentOS-6.6 Continuous
> Release (CR) repository.
...
> 3. The package set includes 243 Source RPMs updated and are b
Send CentOS-announce mailing list submissions to
centos-annou...@centos.org
To subscribe or unsubscribe via the World Wide Web, visit
http://lists.centos.org/mailman/listinfo/centos-announce
or, via email, send a message with subject or body 'help' to
centos-announce-requ..
On Mon, 2015-07-27 at 11:06 -0400, Bowie Bailey wrote:
> I have an old computer running CentOS 5. I need to add an SATA drive to
> it, but it doesn't have any ports, so I need an add-on card. The board
> only has a 32-bit PCI slot. Any recommendations on cards/brands that
> work well with Cen
On 7/28/2015 12:26 PM, Bill Maltby (C4B) wrote:
On Mon, 2015-07-27 at 11:06 -0400, Bowie Bailey wrote:
I have an old computer running CentOS 5. I need to add an SATA drive to
it, but it doesn't have any ports, so I need an add-on card. The board
only has a 32-bit PCI slot. Any recommendations
On Jul 25, 2015, at 9:40 AM, Scott Robbins wrote:
>
> This might show up twice, I think I sent it from a bad address previously.
> If so, please accept my apologies.
I’d rather have your apology for trying to raise a zombie:
https://www.mail-archive.com/centos%40centos.org/msg108580.html
We
On Jul 25, 2015, at 6:22 PM, Bob Marcan wrote:
>
>1FuckingPrettyRose
> "Sorry, you must use no fewer than 20 total characters."
> 1FuckingPrettyRoseShovedUpYourAssIfYouDon'tGiveMeAccessRightFuckingNow!
> "Sorry, you cannot use punctuation."
>1FuckingPrettyRoseShovedUpYourAssIfYouDontGiveMe
Once upon a time, Warren Young said:
> Much of the evil on the Internet today — DDoS armies, spam spewers, phishing
> botnets — is done on pnwed hardware, much of which was compromised by
> previous botnets banging on weak SSH passwords.
Since most of that crap comes from Windows hosts, the sec
On 07/28/2015 02:06 PM, Chris Adams wrote:
> Once upon a time, Warren Young said:
>> Much of the evil on the Internet today — DDoS armies, spam spewers, phishing
>> botnets — is done on pnwed hardware, much of which was compromised by
>> previous botnets banging on weak SSH passwords.
>
> Since
On Tue, Jul 28, 2015 at 02:20:06PM -0500, Johnny Hughes wrote:
> If RHEL releases source code that does not accept weak passwords, then
> we will rebuild that source code for CentOS Linux. If they later change
> the source code to add back weak password support, we will rebuild that too.
>
> Whet
On Tue, Jul 28, 2015 at 11:27 AM, Warren Young wrote:
> Much of the evil on the Internet today — DDoS armies, spam spewers, phishing
> botnets — is done on pnwed hardware, much of which was compromised by
> previous botnets banging on weak SSH passwords.
>
> Your freedom to use any password you
On Tue, Jul 28, 2015 at 1:06 PM, Chris Adams wrote:
> Once upon a time, Warren Young said:
>> Much of the evil on the Internet today — DDoS armies, spam spewers, phishing
>> botnets — is done on pnwed hardware, much of which was compromised by
>> previous botnets banging on weak SSH passwords.
On 07/28/2015 01:46 PM, Chris Murphy wrote:
Future concern is IPv6 stuff, now that Xfinity has forcibly changed
their hardware to include full IPv6 support. I have no idea if this is
NAT'd or rolling IPs or what.
All of the routers I've seen merely firewall inbound traffic, allowing
none. The
On Tue, Jul 28, 2015 at 3:04 PM, Gordon Messmer
wrote:
> On 07/28/2015 01:46 PM, Chris Murphy wrote:
>>
>> Future concern is IPv6 stuff, now that Xfinity has forcibly changed
>> their hardware to include full IPv6 support. I have no idea if this is
>> NAT'd or rolling IPs or what.
>
>
> All of the
-Original Message-
From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of
Chris Murphy
Sent: Tuesday, July 28, 2015 3:46 PM
To: CentOS mailing list
Subject: Re: [CentOS] Fedora change that will probably affect RHEL
[...]
What you said:
"Windows Server has power
On Tue, Jul 28, 2015 at 3:10 PM, Robert Wolfe wrote:
> -Original Message-
> From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf
> Of Chris Murphy
> Sent: Tuesday, July 28, 2015 3:46 PM
> To: CentOS mailing list
> Subject: Re: [CentOS] Fedora change that will proba
On 7/28/2015 1:46 PM, Chris Murphy wrote:
Windows Server has power shell disabled by default. The functional
equivalent, sshd, is typically enabled on Linux servers.
to be pedantic about it, the equivalent of PowerShell is NOT sshd, its
bash/ksh/csh/zsh/sh ... PowerShell does not by itself a
On 07/28/2015 02:15 PM, John R Pierce wrote:
PowerShell does not by itself allow external connections, you'd need
to configure a telnetd or sshd server to allow that
WinRM, more likely. Though I understand the MS is working on an SSH
server for powershell for some future release.
___
On 07/28/2015 02:08 PM, Chris Murphy wrote:
The whole idea of IPv6 is that, with proper authentication and
encryption, we can access any device anywhere. So firewalling
everything centrally would appear to break that.
I think you're assuming that IPv6 carries with it a policy, when it is
mer
On Jul 28, 2015, at 1:06 PM, Chris Adams wrote:
>
> Once upon a time, Warren Young said:
>> Much of the evil on the Internet today — DDoS armies, spam spewers, phishing
>> botnets — is done on pnwed hardware, much of which was compromised by
>> previous botnets banging on weak SSH passwords.
>
> On Jul 28, 2015, at 11:27, Warren Young wrote:
>
> On Jul 25, 2015, at 6:22 PM, Bob Marcan wrote:
>>
>> 1FuckingPrettyRose
>> "Sorry, you must use no fewer than 20 total characters."
>> 1FuckingPrettyRoseShovedUpYourAssIfYouDon'tGiveMeAccessRightFuckingNow!
>> "Sorry, you cannot use punctu
On Tue, Jul 28, 2015 at 4:34 PM, Warren Young wrote:
> That’s only true if the majority of people will in fact override the default
> policy.
The current behavior in Fedora and CentOS lets you click Done twice
and bypass the weak password complaint.
> But as I have repeatedly pointed out here
On Jul 28, 2015, at 2:27 PM, Chris Murphy wrote:
>
> On Tue, Jul 28, 2015 at 11:27 AM, Warren Young wrote:
>
>> Your freedom to use any password you like stops at the point where
>> exercising that freedom creates a risk to other people’s machines.
>
> Your freedom to have sshd enabled by def
On Jul 28, 2015, at 2:46 PM, Chris Murphy wrote:
>
> My dad will absolutely stop using his iPad if it ever
> requires him to use anything more than 4 numeric digits for his
> password. The iPad never leaves the house.
iPads can’t be coopted into a botnet. The rules for iPad passwords must
nece
Hi CentOS developers - I’ve been happily using CentOS for several years now, so
thanks for all the good work. In the last week, however, I noticed that while
the items in RHSA-2015:1443 has shown up as updates (and announced on
centos-announce), the analogous update for CentOS 6, RHSA-2015:1471
Warren Young wrote:
> No, I am making the assumption that the vast majority of CentOS installs
> are racked up in datacenters, VPS hosts, etc.
Is that true, I wonder?
For some reason Fedora and CentOS seem reluctant to find out anything
about their users (or what their users want).
Is anything
On Wed, Jul 29, 2015 at 02:17:23AM +0200, Timothy Murphy wrote:
> Is that true, I wonder?
> For some reason Fedora and CentOS seem reluctant to find out anything
> about their users (or what their users want).
I can't speak for CentOS, but Fedora, at least, this is absolutely not
true. It's just a
On Jul 28, 2015, at 4:37 PM, Nathan Duehr wrote:
>
>> On Jul 28, 2015, at 11:27, Warren Young wrote:
>>
>> So no, your local password quality policy is not purely your own concern.
>
> Other than DDoS which is a problem of engineering design of how the network
> operates (untrusted anything c
On 07/29/2015 11:51 AM, Noam Bernstein wrote:
> Hi CentOS developers - I’ve been happily using CentOS for several
> years now, so thanks for all the good work. In the last week,
> however, I noticed that while the items in RHSA-2015:1443 has shown
> up as updates (and announced on centos-announce)
On Tue, Jul 28, 2015 at 5:29 PM, Warren Young wrote:
> On Jul 28, 2015, at 2:27 PM, Chris Murphy wrote:
>>
>> On Tue, Jul 28, 2015 at 11:27 AM, Warren Young wrote:
>>
>>> Your freedom to use any password you like stops at the point where
>>> exercising that freedom creates a risk to other peopl
On Jul 28, 2015, at 5:17 PM, Chris Murphy wrote:
>
> On Tue, Jul 28, 2015 at 4:34 PM, Warren Young wrote:
>> But as I have repeatedly pointed out here, the stock rules really are not
>> that onerous. They basically encode best practices established 20 years ago.
>
> In order to protect a syst
On Jul 28, 2015, at 7:05 PM, Chris Murphy wrote:
>
> no OS does this right now
Chrome OS does, because your OS password is your Google password. Therefore,
Chrome OS’s password quality minima are Google’s minima, which are similar to
libpwquality’s defaults:
http://passrequirements.com/pas
On Tue, Jul 28, 2015 at 5:46 PM, Warren Young wrote:
> On Jul 28, 2015, at 2:46 PM, Chris Murphy wrote:
>>
>> My dad will absolutely stop using his iPad if it ever
>> requires him to use anything more than 4 numeric digits for his
>> password. The iPad never leaves the house.
>
> iPads can’t be c
On Tue, Jul 28, 2015 at 6:17 PM, Timothy Murphy wrote:
> Warren Young wrote:
>
>
>> No, I am making the assumption that the vast majority of CentOS installs
>> are racked up in datacenters, VPS hosts, etc.
>
> Is that true, I wonder?
> For some reason Fedora and CentOS seem reluctant to find out a
On 07/28/2015 09:01 PM, Chris Murphy wrote:
> On Tue, Jul 28, 2015 at 6:17 PM, Timothy Murphy wrote:
>> Warren Young wrote:
>>
>>
>>> No, I am making the assumption that the vast majority of CentOS installs
>>> are racked up in datacenters, VPS hosts, etc.
>>
>> Is that true, I wonder?
>> For some
On 07/28/2015 04:29 PM, Warren Young wrote:
They turned off "PermitRootLogin yes" and "Protocol 1" in EL6 or EL7, the
previous low-hanging fruit. Do you think those were bad decisions, too?
As far as I know, PermitRootLogin has not been set to "no" by default.
At least, I've never seen that
On Tue, Jul 28, 2015 at 6:32 PM, Warren Young wrote:
> On Jul 28, 2015, at 4:37 PM, Nathan Duehr wrote:
>> Equating this to “vaccination” is a huge stretch.
>
> Why?
It's not just an imperfect analogy it really doesn't work on closer scrutiny.
Malware itself is not a good analog to antigens. V
36 matches
Mail list logo
