| rwp | Certainly bugs like that are good things to be fixed. Someone somewhere will be mounting random media they found lying in the parking lot as a classic attack vector. But really better is to know now to pick up random storage found in parking lots onto your critical systems. | 00:02 |
|---|---|---|
| rwp | https://www.wired.com/2011/06/the-dropped-drive-hack/ | 00:02 |
| yeti | https://www.pcworld.com/article/432421/dont-trust-other-peoples-usb-flash-drives-they-could-fry-your-laptop.html | 00:07 |
| metala | yeti: http://www.fiftythree.org/etherkiller/img/etherkiller.jpg | 00:08 |
| temp_forever | that was PoE prototype? lol | 00:11 |
| fluffywolf | with the existence of things-that-look-like-flash-drives-but-actually-are-hid-devices, attacks based on filesystem bugs are kinda obsolete. | 00:36 |
| yeti | yip... even a 1€ microcontroller can do that | 00:37 |
| yeti | and mass produced it may be in the single digit cent range. | 00:38 |
| fluffywolf | although a worm that modified all connected usb flash drives to contain a filesystem that exploits this exploit to install said worm could be interesting, however... | 00:38 |
| yeti | but feeding such a toy with a customised attack outweighs the hardware cost, so it doesnt really matter. | 00:39 |
| ted-ious | If you can convince your target to plug in your 8gb flash drive that is actually 1tb then you can have a lot of different payloads for all kinds of different attack vectors. | 01:02 |
| ted-ious | Expensive now but prices are always coming down. | 01:02 |
| fluffywolf | because 8gb isn't enough? lol | 01:05 |
| fluffywolf | I mean, you could do the worst attack ever and sneakily install *windows* from an 8gb flash drive... | 01:06 |
| ted-ious | I mean the drive looks like an empty 8gb one but there's actually a ton of space reserved for doing sneaky stuff. | 01:13 |
| ted-ious | I just picked those numbers to show the potential of hiding lots of attack code in advance instead of having to worry about downloading custom code. | 01:14 |
| golinux | Is this a devuan help question or offtopic? | 01:23 |
| brocashelm | i got a quick question to ask | 04:52 |
| brocashelm | i chose to go back to xfce 4.12 (gtk2-only versions) | 04:52 |
| brocashelm | i see things like libthunar and libxfce that don't pull in gtk3 from 4.18; should i keep using the 4.12 versions if i'm using 4.12? | 04:52 |
| brocashelm | i'm currently using all 4.12 libs and it works without issue on daedalus | 04:52 |
| brocashelm | TIA | 04:52 |
| Guest88 | hi people, just confused i installed devuan openrc but the only command i can do is rc-status? | 15:24 |
| Guest88 | is there some additional setup i need to do post install to get other openrc commands working or is this by design | 15:24 |
| gnarface | Guest88: heh, yea something like that. i'm not familiar with the details enough but basically we're using debian's openrc setup, which still relies on the sysvinit scripts for actual starting and stopping things | 15:25 |
| gnarface | and this was a well thought out design decision on their part, but if you're more familiar with another openrc setup (like for example gentoo's) then it's understandable you'd want to swap it out for that one | 15:26 |
| gnarface | (and that's possible but personally i can't help you) | 15:26 |
| Guest88 | eh i just hopped over from a debian openrc rig and could manipulate it fully. it seems to start services by default so i guess its fine | 15:26 |
| gnarface | hmm, you're saying there's stuff broken in our openrc setup that's working in debian's? that's different from my expectations, maybe there's actually something new going wrong... which release are you using? | 15:27 |
| Guest88 | nah i dont think its broken, you said this seemed to be a design choice. i used bookworm for my openrc debian rig | 15:28 |
| Guest88 | and i could do rc-update and rc-service .. add etc. | 15:28 |
| gnarface | well but it's a debian design choice, it should work the same here... | 15:29 |
| Guest88 | oh | 15:29 |
| Guest88 | thats odd | 15:29 |
| Guest88 | yeah weird i had full control on that side | 15:29 |
| gnarface | uh, try it as root? | 15:29 |
| Guest88 | maybe cause i added sbin to path in that install? | 15:30 |
| gnarface | oh, that's probably it! | 15:30 |
| gnarface | yea | 15:30 |
| gnarface | because that's not a forked package (the forked ones all say "devuan" in their version string) so it shouldn't be any different from debian, with regards to just that package's contents | 15:30 |
| gnarface | but we did also inherit the update from debian that removed /sbin and /usr/sbin from root's path, so you'll have to put those back here too | 15:31 |
| Guest88 | sweet as root it works just not normal user, im using doas instead of sudo so i will probably need to add to path | 15:31 |
| gnarface | or i thought we did anyway.. | 15:31 |
| Guest88 | yeah sweet its the same as debian, just need to add sbin to user path and from there ill get acpi events too since im using doas and not sudo lol | 15:32 |
| fsmithred | you get the sbins if you use 'su -' instead of 'su' | 15:46 |
| fsmithred | or if you add the following to /etc/default/su (create it) | 15:47 |
| fsmithred | ALWAYS_SET_PATH yes | 15:47 |
| fsmithred | and you get the old behavior | 15:48 |
| Guest88 | cheers! | 15:55 |
| Guest88 | am i silly or dhcpcd calls wpa_supplicant right? | 15:55 |
| gnarface | not sure about that, something else might call them both | 15:56 |
| gnarface | network-manager or ifupdown | 15:56 |
| gnarface | it might depend on what you installed | 15:56 |
| Guest88 | its a bit weird cause atm it appears that dhcpcd not calling wpa supplicant even though its there | 15:58 |
| Guest88 | if i call wpa supplicant then it works | 15:58 |
| gnarface | maybe wpasupplicant is calling dhcpd instead? | 15:58 |
| gnarface | i dunno, in the few places i'm using dhcpd i'm pretty sure it's invoked by ifupdown from the /etc/init.d/networking script based on my configuration in /etc/network/interfaces | 16:00 |
| gnarface | but i'm not using network-manager, and network-manager preempts some or all of that | 16:00 |
| Guest88 | AHH | 16:02 |
| Guest88 | the hook | 16:02 |
| Guest88 | # ln -s /usr/share/dhcpcd/hooks/10-wpa_supplicant /usr/lib/dhcpcd/dhcpcd-hooks/ | 16:02 |
| Guest88 | archwiki ftw, i dunno why debian doesnt have this | 16:03 |
| Guest88 | the thing is that dhcpcd uses wpa supplicant as a backend for wireless interfaces | 16:03 |
| Guest88 | dhchp assigns address -> wpa supplicant actually connects to the networks | 16:03 |
| rrq | how about some quality time with "man wpa_supplicant" ? | 23:47 |
Generated by irclog2html.py 2.17.0 by Marius Gedminas - find it at https://mg.pov.lt/irclog2html/!
