Root Password

[komodo]

This is the reason it's a good idea to have a typeable root password:

Quote:

<alpha>hmaugans@~$ su
Password:
Sorry
<alpha>hmaugans@~$ su
Password:
Sorry
<alpha>hmaugans@~$ su
Password:
Sorry
<alpha>hmaugans@~$ su
Password:
Sorry
<alpha>hmaugans@~$ su
Password:
Sorry
<alpha>hmaugans@~$ su
Password:
Sorry
<alpha>hmaugans@~$ su
Password:
Sorry
<alpha>hmaugans@~$ su
Password:
Sorry
<alpha>hmaugans@~$ su
Password:
Sorry
<alpha>hmaugans@~$ su
Password:
Sorry
<alpha>hmaugans@~$ su
Password:
<alpha>root@/home/hmaugans#

Sorry, I just glanced back up at my session, and laughed at myself. Had to post it for the geeks.

[witeshark]

Hahaha! That rocks! Switch user or super user to root log in, or do we need a rootkit?

[jms]

I personally like certificate based authentication, especially with all of the passwords I have to keep track of. I have already converted much of the web based apps to certificate authentication. very easy to do with apache and IIS.

[komodo]

Quote:

Originally Posted by jms

I personally like certificate based authentication, especially with all of the passwords I have to keep track of. I have already converted much of the web based apps to certificate authentication. very easy to do with apache and IIS.

I used to have that setup, but now I'm logging in from so many different places it's useless.

[jms]

that's where remote dektop comes in, I hit one central place from all others and can connect from there. That way I only have one vulnerable spot and I can work from there and if need be cut it remotely if it were to fall.

[jms]

I'm paranoid

[drz]

I know I am smart enough to understand all of this. I just have not learned any of it. I am the geek forum lose

[jms]

Here's what I did to configure both htaccess and an ssl cert now this is for vqadmin for qmail and the names have been changed to protect the guilty. In IIS you require a client cert and map it to a user. Then you can use user rights to allow/restrict access.

[CODE]<VirtualHost 192.168.1.100:443>
SSLEngine on
SSLCACertificateFile /usr/local/apache/conf/CA.crt
SSLCertificateFile /usr/local/apache/conf/server.crt
SSLCertificateKeyFile /usr/local/apache/conf/server.key
SSLOptions +FakeBasicAuth +StdEnvVars
ServerAdmin admin@domain.com
DocumentRoot /usr/local/apache/cgi-bin/vqadmin
ServerName server.domain.com
CustomLog logs/vqadmin combined
<Directory "/usr/local/apache/cgi-bin/vqadmin">
deny from all
Options ExecCGI
#AllowOverride AuthConfig
AllowOverride All
Order deny,allow
</Directory>
</VirtualHost>[/CODE]

[jms]

Quote:

Originally Posted by drz

I know I am smart enough to understand all of this. I just have not learned any of it. I am the geek forum lose

I wasn't born knowing this either. I've been messing with computers since the early 80's. It takes time and effort to get as good as some of the more seasoned proffesionals here. Keep working at it and you'll get it.

[komodo]

I actually just picked up 2 books on VOIP today. I realized I know NOTHING about it (very different from computers), so I'm diving in to learn it. Not for any purpose, but just to familiarize myself with it.

[witeshark]

Voice (Video conferencing too) Over Internet Protocol. Apple iChat has a very good one

[jms]

Quote:

Originally Posted by komodo

I actually just picked up 2 books on VOIP today. I realized I know NOTHING about it (very different from computers), so I'm diving in to learn it. Not for any purpose, but just to familiarize myself with it.

start playing with asterisk www.asterisk.org. it's a voip pbx, just by playing you'll get good experience with it. I built a voip offering for another company a few years back and asterisk helped.