Posts tagged ssh

BFD 1.4: Important Security Fix

May 8th

Today I have put up a new release of BFD, version 1.4, that addresses an unsanitized variable issue that is used on the command line. This is a serious issue and should be treated as such, if you currently have BFD installed I would encourage you to update it immediately, the install.sh script in the BFD package will retain all your options and tracking data so the update process is painless.

Current Release: http://www.rfxn.com/downloads/bfd-current.tar.gz

Change Log: [Fix] properly sanitized vars passed to the command line [Fix] ignore.hosts is now updated with system addresses on each bfd run [Note] thanks to jpetersen@webhostsecurity.com for invaluable input and More >

bfd, bugs, linux, ssh

IRSYNC & Limiting Passwordless SSH Keys

May 4th

Posted in HowTo

No comments

Anyone who has ever used SSH key-pairs to access more than a couple of servers (or hundreds in my case), will tell you they are an invaluable convenience. It is a natural progression and very common usage that SSH key-pairs are coupled with other common tasks or tools, where having a pass phrase attached to the key would be counter-intuitive to the task automation. So, what do we do despite our better judgment? We create key-pairs with absolutely no pass phrase. The implications are abundantly obvious, if the private key ever gets lost or stolen, any accounts that have the More >

backup, incremental, linux, rsync, ssh

Posts tagged ssh

BFD 1.4: Important Security Fix

IRSYNC & Limiting Passwordless SSH Keys

Donation Roll

Downloads

LMD Malware Updates