Dumping competition on Mintpal
Topic: [ANN][DASH] Dash (dash.org) | First Self-Funding Self-Governing Crypto Currency - page 3963. (Read 9723803 times)
September 25, 2014, 02:30:50 PM
September 25, 2014, 02:20:38 PM
I'm a sys/net admin with 15+ years of experience and I can tell you that the biggest threat is YOURSELF! Just make a typo as root and kiss your system goodbye! Happened to me twice, I have learned the hard way... You don't have to
Some examples (do not try this on your masternode):
rm -rf .*
mv / /dev/null
find -type f -mtime +30 -exec mv {} /dev/null \;
whatever > /dev/sda
Play it safe, log in as a regular user and use sudo!
will google these for some easy good night read, thanks, appreciated 
September 25, 2014, 02:06:48 PM
mv / /dev/null
When the BOFH has finally had enough of this sorry world, he will hurl himself into the meatgrinder just so.
I was just about to comment on this.
September 25, 2014, 02:04:59 PM
mv / /dev/null
When the BOFH has finally had enough of this sorry world, he will hurl himself into the meatgrinder just so.
September 25, 2014, 01:56:51 PM
Another of my stupid questions:
All manuals on masternodes are saying how ports should be closed and how root account should not be used.. Personally I use root login with 15 chars long password and cold wallet set-up and did not bother closing the ports - can ANYTHING really happen to me?
My guess is 99.9% not but still would like to get a second opinion. Everyone is saying how root should not be used but I do not see the danger with the cold wallet & decent pw.
All manuals on masternodes are saying how ports should be closed and how root account should not be used.. Personally I use root login with 15 chars long password and cold wallet set-up and did not bother closing the ports - can ANYTHING really happen to me?
My guess is 99.9% not but still would like to get a second opinion. Everyone is saying how root should not be used but I do not see the danger with the cold wallet & decent pw.
My dear drobek, we were all once newbies at everything, and will always be newbies at somethings. Once you understand something, you can often profit by going against the stream, but in an area where you are a newbie, statements like this are dangerous if not foolhardy: "Everyone is saying how root should not be used but I do not see the danger with the cold wallet & decent pw. "
Your cold wallet may be safe, but if your machine is compromised you may be subject to all sorts of future grief... not to mention the possible eventual loss of any funds/information that pass through or are produced by it. IMHO.
Thank you for your reply strix. While the statement indeed sounds naive I still wonder how anyone can guess/force a decent password. Have talked to a few people who were hacked and almost all of them had either simple pw or pw they reused on multiple occasions. At this point I think that a combo of decent PW and frequent apt-get update/upgrade may be adequate for cold wallet set up but still preferred to get a second opinion to running everything as a root.
I'm a sys/net admin with 15+ years of experience and I can tell you that the biggest threat is YOURSELF! Just make a typo as root and kiss your system goodbye! Happened to me twice, I have learned the hard way... You don't have to
Some examples (do not try this on your masternode):
rm -rf .*
mv / /dev/null
find -type f -mtime +30 -exec mv {} /dev/null \;
whatever > /dev/sda
Play it safe, log in as a regular user and use sudo!
September 25, 2014, 01:46:30 PM
Another of my stupid questions:
All manuals on masternodes are saying how ports should be closed and how root account should not be used.. Personally I use root login with 15 chars long password and cold wallet set-up and did not bother closing the ports - can ANYTHING really happen to me?
My guess is 99.9% not but still would like to get a second opinion. Everyone is saying how root should not be used but I do not see the danger with the cold wallet & decent pw.
All manuals on masternodes are saying how ports should be closed and how root account should not be used.. Personally I use root login with 15 chars long password and cold wallet set-up and did not bother closing the ports - can ANYTHING really happen to me?
My guess is 99.9% not but still would like to get a second opinion. Everyone is saying how root should not be used but I do not see the danger with the cold wallet & decent pw.
My dear drobek, we were all once newbies at everything, and will always be newbies at somethings. Once you understand something, you can often profit by going against the stream, but in an area where you are a newbie, statements like this are dangerous if not foolhardy: "Everyone is saying how root should not be used but I do not see the danger with the cold wallet & decent pw. "
Your cold wallet may be safe, but if your machine is compromised you may be subject to all sorts of future grief... not to mention the possible eventual loss of any funds/information that pass through or are produced by it. IMHO.
Thank you for your reply strix. While the statement indeed sounds naive I still wonder how anyone can guess/force a decent password. Have talked to a few people who were hacked and almost all of them had either simple pw or pw they reused on multiple occasions. At this point I think that a combo of decent PW and frequent apt-get update/upgrade may be adequate for cold wallet set up but still preferred to get a second opinion to running everything as a root.
September 25, 2014, 01:38:00 PM
Also, for some reason, the instance I did not reboot, I was able to update bash with sudo apt-get install bash and I now have the latest, but the instance I rebooted won't update. It says I already have the latest, even after sudo apt-get updates. So... maybe they pulled the repository (probably working on it still) I guess we'll all just have to keep checking to be sure we get the latest updates!?!
do update and then upgrade.
Finally check it with bash --version. If it says 4.3+ you're golden.
Code:
sudo apt-get update
sudo apt-get upgrade
bash --version
sudo apt-get upgrade
bash --version
aptitude install bash
just bash, no ned to upgrade the whole system.
September 25, 2014, 01:35:32 PM
Another of my stupid questions:
All manuals on masternodes are saying how ports should be closed and how root account should not be used.. Personally I use root login with 15 chars long password and cold wallet set-up and did not bother closing the ports - can ANYTHING really happen to me?
My guess is 99.9% not but still would like to get a second opinion. Everyone is saying how root should not be used but I do not see the danger with the cold wallet & decent pw.
All manuals on masternodes are saying how ports should be closed and how root account should not be used.. Personally I use root login with 15 chars long password and cold wallet set-up and did not bother closing the ports - can ANYTHING really happen to me?
My guess is 99.9% not but still would like to get a second opinion. Everyone is saying how root should not be used but I do not see the danger with the cold wallet & decent pw.
Just out of curiosity, why did you opt to use root? It would have taken maybe 10 seconds to add a new user and give it a password, log out of root, log in to your new non-root user, and install. Also, not sure who you are using for a VPS, but there are iptables that you can literally copy and paste for both AWS and Vultr.
Lazyiness and convenience
I keep forgetting using sudo prefix commands and when I do the long password takes forever to type Don't forget - we loosers take hours to get the MN working so every extra step hurts.
September 25, 2014, 01:34:17 PM
The price we see now is probably in the range what DRK is worth at this point.
Dreaming of that 0.002 again ? Keep dreaming.
Not to be an ass, but is it really that damn hard to get the decimal point in the right place? DRK price is WAY higher than 0.002 right now.
Hey, what do you expect in a downtrend market. The BTC downtrend is 9 month now and no fresh money
is comming into the market. Nearly all people getting into the BTC bubble and after that joined the alt market have a loss of 90 %minimum. In this environment DRK has done more than good. How much are dead now ?
LTC is 1/10 worth of its ATH.
At some point of time BTC will come back and with it DRK also.
Exactly. Fall has been historically good for BTC and with the pending ETF launch, there should be some positive influx of new capital into crypto.
September 25, 2014, 01:32:38 PM
I doubt anyone here is more of a newbie than I am with Arch Linux. I have been playing with it for less than a week. This morning heard about the bash bug, ran the test, and yes I was vulnerable. Hmm... heard how easy Arch is to update so for the first time ran "sudo pacman -Syu"
BOOM--vulnerability gone. Way to go Arch. I'm starting to like this...
BOOM--vulnerability gone. Way to go Arch. I'm starting to like this...
September 25, 2014, 01:27:04 PM
GETTING PEOPLE INTO THE DARK:
@PlseSendBitcoin Get a #Darkcoin wallet, tweet the addy with the message "I got into the Dark" and I will send you $10 worth of #DRK.
@TaoOfSatoshi I got into the Dark! Xqrv5o5vQ2jGqkaU1axZXknDkGbwU8rqQf
@PlseSendBitcoin Great! I am a man of my word. You will see 10$ of Darkcoin in your account by 6:00PM! (I am at work)
@PlseSendBitcoin Thank you for being a good sport!
@TaoOfSatoshi Thank you Tao!
#getintothedark
#buildthedarkness
#DarkcoinChameleon
Join us on Twitter!
@TaoOfSatoshi
@PlseSendBitcoin Get a #Darkcoin wallet, tweet the addy with the message "I got into the Dark" and I will send you $10 worth of #DRK.
@TaoOfSatoshi I got into the Dark! Xqrv5o5vQ2jGqkaU1axZXknDkGbwU8rqQf
@PlseSendBitcoin Great! I am a man of my word. You will see 10$ of Darkcoin in your account by 6:00PM! (I am at work)
@PlseSendBitcoin Thank you for being a good sport!
@TaoOfSatoshi Thank you Tao!
#getintothedark
#buildthedarkness
#DarkcoinChameleon
Join us on Twitter!
@TaoOfSatoshi
Updated, and bumped!! Fun stuff...
September 25, 2014, 01:23:18 PM
Another of my stupid questions:
All manuals on masternodes are saying how ports should be closed and how root account should not be used.. Personally I use root login with 15 chars long password and cold wallet set-up and did not bother closing the ports - can ANYTHING really happen to me?
My guess is 99.9% not but still would like to get a second opinion. Everyone is saying how root should not be used but I do not see the danger with the cold wallet & decent pw.
All manuals on masternodes are saying how ports should be closed and how root account should not be used.. Personally I use root login with 15 chars long password and cold wallet set-up and did not bother closing the ports - can ANYTHING really happen to me?
My guess is 99.9% not but still would like to get a second opinion. Everyone is saying how root should not be used but I do not see the danger with the cold wallet & decent pw.
My dear drobek, we were all once newbies at everything, and will always be newbies at somethings. Once you understand something, you can often profit by going against the stream, but in an area where you are a newbie, statements like this are dangerous if not foolhardy: "Everyone is saying how root should not be used but I do not see the danger with the cold wallet & decent pw. "
Your cold wallet may be safe, but if your machine is compromised you may be subject to all sorts of future grief... not to mention the possible eventual loss of any funds/information that pass through or are produced by it. IMHO.
September 25, 2014, 01:20:30 PM
funny, I finally got around to setting up a cron job for my masternodes, 'cause my brain is totally dead... anyway, it was so easy I didn't think it would work, so I rebooted, and guess what? It worked! Wow!
If you don't have a cron job set up to restart your masternodes in case of reboot, just do this:
cd /etc/cron.d
crontab -e
2 (for nano)
at bottom of newly created file, insert:
@reboot /usr/bin/darkcoind to start masternode (or wherever you have your executable
Also, for some reason, the instance I did not reboot, I was able to update bash with sudo apt-get install bash and I now have the latest, but the instance I rebooted won't update. It says I already have the latest, even after sudo apt-get updates. So... maybe they pulled the repository (probably working on it still) I guess we'll all just have to keep checking to be sure we get the latest updates!?!
If you don't have a cron job set up to restart your masternodes in case of reboot, just do this:
cd /etc/cron.d
crontab -e
2 (for nano)
at bottom of newly created file, insert:
@reboot /usr/bin/darkcoind to start masternode (or wherever you have your executable
Also, for some reason, the instance I did not reboot, I was able to update bash with sudo apt-get install bash and I now have the latest, but the instance I rebooted won't update. It says I already have the latest, even after sudo apt-get updates. So... maybe they pulled the repository (probably working on it still) I guess we'll all just have to keep checking to be sure we get the latest updates!?!
Thanks for the info, Tante.
September 25, 2014, 01:14:41 PM
Also, for some reason, the instance I did not reboot, I was able to update bash with sudo apt-get install bash and I now have the latest, but the instance I rebooted won't update. It says I already have the latest, even after sudo apt-get updates. So... maybe they pulled the repository (probably working on it still) I guess we'll all just have to keep checking to be sure we get the latest updates!?!
do update and then upgrade.
Finally check it with bash --version. If it says 4.3+ you're golden.
Code:
sudo apt-get update
sudo apt-get upgrade
bash --version
sudo apt-get upgrade
bash --version
September 25, 2014, 01:13:42 PM
The price we see now is probably in the range what DRK is worth at this point.
Dreaming of that 0.002 again ? Keep dreaming.
Not to be an ass, but is it really that damn hard to get the decimal point in the right place? DRK price is WAY higher than 0.002 right now.
Hey, what do you expect in a downtrend market. The BTC downtrend is 9 month now and no fresh money
is comming into the market. Nearly all people getting into the BTC bubble and after that joined the alt market have a loss of 90 %minimum. In this environment DRK has done more than good. How much are dead now ?
LTC is 1/10 worth of its ATH.
At some point of time BTC will come back and with it DRK also.
September 25, 2014, 01:12:42 PM
Another of my stupid questions:
All manuals on masternodes are saying how ports should be closed and how root account should not be used.. Personally I use root login with 15 chars long password and cold wallet set-up and did not bother closing the ports - can ANYTHING really happen to me?
My guess is 99.9% not but still would like to get a second opinion. Everyone is saying how root should not be used but I do not see the danger with the cold wallet & decent pw.
All manuals on masternodes are saying how ports should be closed and how root account should not be used.. Personally I use root login with 15 chars long password and cold wallet set-up and did not bother closing the ports - can ANYTHING really happen to me?
My guess is 99.9% not but still would like to get a second opinion. Everyone is saying how root should not be used but I do not see the danger with the cold wallet & decent pw.
Just out of curiosity, why did you opt to use root? It would have taken maybe 10 seconds to add a new user and give it a password, log out of root, log in to your new non-root user, and install. Also, not sure who you are using for a VPS, but there are iptables that you can literally copy and paste for both AWS and Vultr.
September 25, 2014, 01:12:02 PM
funny, I finally got around to setting up a cron job for my masternodes, 'cause my brain is totally dead... anyway, it was so easy I didn't think it would work, so I rebooted, and guess what? It worked! Wow!
If you don't have a cron job set up to restart your masternodes in case of reboot, just do this:
cd /etc/cron.d
crontab -e
2 (for nano)
at bottom of newly created file, insert:
@reboot /usr/bin/darkcoind to start masternode (or wherever you have your executable
Also, for some reason, the instance I did not reboot, I was able to update bash with sudo apt-get install bash and I now have the latest, but the instance I rebooted won't update. It says I already have the latest, even after sudo apt-get updates. So... maybe they pulled the repository (probably working on it still) I guess we'll all just have to keep checking to be sure we get the latest updates!?!
If you don't have a cron job set up to restart your masternodes in case of reboot, just do this:
cd /etc/cron.d
crontab -e
2 (for nano)
at bottom of newly created file, insert:
@reboot /usr/bin/darkcoind to start masternode (or wherever you have your executable
Also, for some reason, the instance I did not reboot, I was able to update bash with sudo apt-get install bash and I now have the latest, but the instance I rebooted won't update. It says I already have the latest, even after sudo apt-get updates. So... maybe they pulled the repository (probably working on it still) I guess we'll all just have to keep checking to be sure we get the latest updates!?!
September 25, 2014, 01:08:35 PM
GETTING PEOPLE INTO THE DARK:
@PlseSendBitcoin Get a #Darkcoin wallet, tweet the addy with the message "I got into the Dark" and I will send you $10 worth of #DRK.
#getintothedark
#buildthedarkness
#DarkcoinChameleon
Join us on Twitter!
@TaoOfSatoshi
@PlseSendBitcoin Get a #Darkcoin wallet, tweet the addy with the message "I got into the Dark" and I will send you $10 worth of #DRK.
#getintothedark
#buildthedarkness
#DarkcoinChameleon
Join us on Twitter!
@TaoOfSatoshi
September 25, 2014, 12:54:59 PM
Another of my stupid questions:
All manuals on masternodes are saying how ports should be closed and how root account should not be used.. Personally I use root login with 15 chars long password and cold wallet set-up and did not bother closing the ports - can ANYTHING really happen to me?
My guess is 99.9% not but still would like to get a second opinion. Everyone is saying how root should not be used but I do not see the danger with the cold wallet & decent pw.
All manuals on masternodes are saying how ports should be closed and how root account should not be used.. Personally I use root login with 15 chars long password and cold wallet set-up and did not bother closing the ports - can ANYTHING really happen to me?
My guess is 99.9% not but still would like to get a second opinion. Everyone is saying how root should not be used but I do not see the danger with the cold wallet & decent pw.
September 25, 2014, 12:51:24 PM
---IMPORTANT: PAY ATTENTION TO UPGRADES TO YOUR LINUX INSTANCES!---
http://www.acunetix.com/blog/web-security-zone/cve-2014-6271-bash-code-injection-vulnerability/
As I'm not a tech guy, I don't know if there has already been a fix pushed, but upgrade your instances ASAP!!!
Please bump as needed!
http://www.acunetix.com/blog/web-security-zone/cve-2014-6271-bash-code-injection-vulnerability/
As I'm not a tech guy, I don't know if there has already been a fix pushed, but upgrade your instances ASAP!!!
Please bump as needed!
Interesting, so this is a big deal.
http://www.zdnet.com/unixlinux-bash-critical-security-hole-uncovered-7000034021/
Debian and Redhat repositories have already released a patch. You can find out if you are vulnerable by typing in
Code:
bash --version
Version 4.3 and up is safe anything lower is vulnerable.
That being said, the forums are going into emergency maintenance mode.
Edit: Done.
Jump to: