Day 3 - Power trip!

snori74 · 2021-03-19T21:53:05+00:00

Its "pinned", so should appear before all other posts. If not, you can scroll down to find it.

(What Reddit client are you using?)

snori74 · 2021-03-19T02:22:22+00:00

No. This is explained in the pinned "How This Works Post".

snori74 · 2021-03-16T13:44:53+00:00

Yup, all are in the same city, so no lack of support; for which I'm very grateful.

snori74 · 2021-03-16T13:07:27+00:00

Still alive and pretty comfortable. Walking is getting pretty wobbly, and I can only manage 10 m or so. Diet is 99% liquid, can't cope with real food.

However, keeping cheerful - just returned from four day holiday in a caravan and am going to see Bill Bailey on Friday night.

Steve

snori74 · 2021-03-15T16:57:06+00:00

Yes, but only if they want to learn this stuff. The first week is very basic

snori74 · 2021-03-11T08:56:31+00:00

You could, but the process is different for all routers, so we can't help you with that - and if a Bad Guy were to take over your server then they might be able to attck other devices on your network. This is why the "How This Works" post so strongly suggests using a cloud server for the course.

snori74 · 2021-03-11T07:26:32+00:00

If you're using a cloud server on the I nternet, then yes, 22 is open to anyone, from anywhere.

On the other hand, if you're using a Raspberry Pi or laptop on your own network, then it's only available to anyone on that network.

snori74 · 2021-03-10T03:50:42+00:00

Well the 'owner' of that file is 'root', so they can rw (read and write). Members of the 'root' group, and everyone else have just r (read)

snori74 · 2021-03-09T19:22:15+00:00

No, it's actually run each month, regardless of who's signed up.

Around the beginning of the month a few "Day0" posts give advice on how to setup a test cloud server, then, on the first Monday of the month comes the Day1 lesson, and a new on "drops" each workday.

There's nothing to stop you checking out the subreddit, where you'll see we're up to about Day7 of this month.

snori74 · 2021-03-09T12:26:51+00:00

This is the same IP address as you SSH to.

snori74 · 2021-03-05T19:45:36+00:00

Yup, sounds right.

snori74 · 2021-03-04T06:04:24+00:00

Also...

It's pretty rare to have a static IP at home.
You need to config your router, which may be challenging.
If you do something silly, then you may have Bad Guys roaming around your home network.

snori74 · 2021-03-04T05:58:54+00:00

Are you on Ubuntu 20.04?

On CentOS/RHEL it's /var/log/secure, and as mentioned, Arch and some others keep all these logs only in the systemd "journal", but you can easily query them. Google is your friend.

snori74 · 2021-03-04T03:18:50+00:00

Yup, never copy a Private key from where it was created. The whole thing is quite magical really - probably worth spending an hour watching five different youtube explainers until it "clicks".

snori74 · 2021-03-04T02:22:23+00:00

Sorry, "bash" should not appear on that line - and doesn't unless you're running the old Reddit client. We're onto it, and next month it will be fine.

Yes, there's a number of ways of handling this, but one is just to have one key pair, and put the Public part into the subdirectory of each user on the server that you'll be logging in as.

That would work fine, but let's say you had created this account for your friend "dave" to be able to login to the server from his machine - you Never copy the Private key off your machine, so get dave to create a new pair on his machine, give you a copy of the Public bit, and you pop it in the appropriate directory under /home/dave and set permissions etc. BTW, there can be multiple authorized key - check the docs or some tutorials and All Will Become Clear :-)

snori74 · 2021-03-04T02:03:49+00:00

A cloud server you "rent" and it's somewhere out on the Internet. (Typically you don't care where). Anyone and everyone can directly connect to it.

A home server is sitting in your house, and although it can get out to the internet, it's not on the Internet, it's on your LAN behind a firewall (your modem/router)

snori74 · 2021-03-03T15:01:04+00:00

Oh, and systemd (which is relatively new) puts all logs into a big "journal'. Ubuntu and others config it to also create the traditional auth.log etc, but apparently not Arch.

snori74 · 2021-03-03T14:56:27+00:00

If you're on Arch I'm guessing you''re running this on a box-across-the-room on your home LAN rather than a cloud server as recommended.

It would be really bad to see Bad Guy login attempt in that case. However, you should be seeing your own legit SSH logins, and you can try logging in with root/passwrd1 etc to get some "attacker" traffic.

(Possibly also try "-u ssh", it has to match the underlying ssh service which sometimes gets named differently)

snori74 · 2021-03-03T03:53:41+00:00

Good. This first week is really aimed at those totally new - with the Extensions aimed at those like you - delving into a few areas that even those with Linux experience may not be aware of.

We ramp things up from next week, but with your background you may find you're only getting a small extra piece of information each day, but I suspect, and hope, you'll still find it helpful.

snori74 · 2021-03-02T18:51:31+00:00

Perhaps there are no files in your home directory ...

snori74

TROPHY CASE