IRC chat logs for #ltsp on irc.freenode.net (webchat)


Channel log from 17 April 2019   (all times are UTC)

03:30Mirdin has left IRC (Mirdin!6d59e8d9@gateway/web/freenode/ip.109.89.232.217, Ping timeout: 256 seconds)
03:42adrianorg has left IRC (adrianorg!~adrianorg@177.156.226.211, Ping timeout: 264 seconds)
03:43adrianorg has joined IRC (adrianorg!~adrianorg@177.156.226.211)
04:46adrianorg has left IRC (adrianorg!~adrianorg@177.156.226.211, Ping timeout: 250 seconds)
05:05os_a has joined IRC (os_a!~Thunderbi@141.101.206.111.leadertelecom.ru)
05:18adrianorg has joined IRC (adrianorg!~adrianorg@177.156.226.211)
05:24ricotz has joined IRC (ricotz!~ricotz@ubuntu/member/ricotz)
05:34kjackal has joined IRC (kjackal!~quassel@2a02:587:3119:ef00:81b2:93d4:ff53:446b)
06:01adrianorg has left IRC (adrianorg!~adrianorg@177.156.226.211, Ping timeout: 246 seconds)
06:33adrianorg has joined IRC (adrianorg!~adrianorg@177.156.226.211)
07:22woernie has joined IRC (woernie!~werner@pD9E8BADB.dip0.t-ipconnect.de)
07:55kjackal has left IRC (kjackal!~quassel@2a02:587:3119:ef00:81b2:93d4:ff53:446b, Ping timeout: 258 seconds)
07:55kjackal_v2 has joined IRC (kjackal_v2!~quassel@athedsl-173858.home.otenet.gr)
08:12statler has joined IRC (statler!~Georg@gwrz.lohn24.de)
08:41os_a1 has joined IRC (os_a1!~Thunderbi@195.112.116.22)
08:43os_a has left IRC (os_a!~Thunderbi@141.101.206.111.leadertelecom.ru, Ping timeout: 268 seconds)
08:43os_a1 is now known as os_a
09:10os_a has left IRC (os_a!~Thunderbi@195.112.116.22, Read error: Connection reset by peer)
09:26os_a has joined IRC (os_a!~Thunderbi@195.112.116.22)
10:30woernie has left IRC (woernie!~werner@pD9E8BADB.dip0.t-ipconnect.de, Remote host closed the connection)
10:30woernie has joined IRC (woernie!~werner@pD9E8BADB.dip0.t-ipconnect.de)
12:00GodFather has joined IRC (GodFather!~rcc@143.59.184.72)
12:05Faith has joined IRC (Faith!~Paty_@unaffiliated/faith)
12:07woernie has left IRC (woernie!~werner@pD9E8BADB.dip0.t-ipconnect.de, Remote host closed the connection)
13:05
<bluejaypop>
good morning ppl :)
13:09
<alkisg>
Heya :)
13:39Adm_ has joined IRC (Adm_!59f00f21@gateway/web/freenode/ip.89.240.15.33)
13:39
<Adm_>
Hey All, I'm wondering if y'all can offer me some assistance with hackers attacking my servers..
13:40
<mwalters>
Adm_: this probably isn't the correct place for those types of questions
13:40Adm_ has left IRC (Adm_!59f00f21@gateway/web/freenode/ip.89.240.15.33)
14:00os_a has left IRC (os_a!~Thunderbi@195.112.116.22, Quit: os_a)
14:12vagrantc has joined IRC (vagrantc!~vagrant@unaffiliated/vagrantc)
15:25
<||cw>
step one: don't expose ltsp to the internet directly
15:27
<mwalters>
:D
15:27
that was part of the update from 14.04 to 18.04 here
15:28
all 4 of the ltsp servers here were exposed via ssh
15:28
directly
16:32adrianor1 has joined IRC (adrianor1!~adrianorg@177.132.218.242)
16:33adrianorg has left IRC (adrianorg!~adrianorg@177.156.226.211, Ping timeout: 244 seconds)
16:44
<quinox>
all of my servers are exposed via SSH
16:45
I'm not allowing logins with passwords, only passkeys (which have to be encrypted); I don't worry about it
17:03kjackal_v2 has left IRC (kjackal_v2!~quassel@athedsl-173858.home.otenet.gr, Ping timeout: 246 seconds)
17:03kjackal has joined IRC (kjackal!~quassel@2a02:587:3119:ef00:81b2:93d4:ff53:446b)
17:09
<mwalters>
yeah, that's all probably fine
17:11
...how do clients auth if you're only allowing keys?
17:11
since ldm uses ssh
17:12* vagrantc used to set up LDM with ssh keys per client for guest accounts
17:13
<vagrantc>
and restricted them by ip address
17:45
<quinox>
oh right, the only server that accepts passwords is my LTSP server
17:45
but!
17:45
it has 2-factor for non-LAN IPs :)
17:46
a tiny script using pam-python, making it turned out to be a pleasant excercise
17:49
LDM doesn't support the interactive ssh challenge needed for 2-factor; if it did I wouldn't even have excluded LAN IPs
17:54
The 2FA is using TOTP using https://github.com/google/google-authenticator-libpam/ ; it has been rock solid, after the initial setup I never had to spend any time on it
18:12kjackal has left IRC (kjackal!~quassel@2a02:587:3119:ef00:81b2:93d4:ff53:446b, Ping timeout: 258 seconds)
18:16kjackal has joined IRC (kjackal!~quassel@2a02:587:3119:ef00:81b2:93d4:ff53:446b)
19:22statler has left IRC (statler!~Georg@gwrz.lohn24.de, Remote host closed the connection)
20:19ricotz has left IRC (ricotz!~ricotz@ubuntu/member/ricotz, Remote host closed the connection)
20:24bwicksall has joined IRC (bwicksall!~bwicksall@fw.pls-net.org)
20:47Faith has left IRC (Faith!~Paty_@unaffiliated/faith, Quit: Leaving)
21:54fnurl has left IRC (fnurl!snurl@host81-154-10-70.range81-154.btcentralplus.com, )
22:01kjackal has left IRC (kjackal!~quassel@2a02:587:3119:ef00:81b2:93d4:ff53:446b, Ping timeout: 258 seconds)
22:01kjackal has joined IRC (kjackal!~quassel@2a02:587:3119:ef00:81b2:93d4:ff53:446b)
22:10fnurl has joined IRC (fnurl!url@host81-154-10-70.range81-154.btcentralplus.com)
23:46vagrantc has left IRC (vagrantc!~vagrant@unaffiliated/vagrantc, Quit: leaving)