General Linux Chat and Small Questions v. I broke my Arch Install - Hardware & Software

[IMG]http://i.imgur.com/slYfYFu.png[/IMG] Sigh. You'd think they'd push out updated packages to the apt repositories for this shit. Unless I'm completely retarded.

'apt-get update' first

Doh, I swear I did that already. Worked on my home server, though not my VPS because it's running 13.10 for some reason. Fuck it, time to do an upgrade...

[QUOTE=nikomo;46067456]Oh, just in case anyone here hosts servers: The security vulnerability that was found in bash is worse than Heartbleed by an order of magnitude, you need to rush to patch your servers. If your machine is acceptable on the open Internet with SSH, it's possible that it can be exploited.[/QUOTE] Glorious fish mustard race

[QUOTE=Mega1mpact;46071326]Glorious fish mustard race[/QUOTE] BusyBox Ash is never beaten

I set the initial variables of the universe to produce Earth, all the people on it, computers, and a program that will do what I want it to do.

is there anything else i need to do right now to patch the bash vulnerability other than update it? i killed apache just in case

[QUOTE=AlphaGunman;46073420]is there anything else i need to do right now to patch the bash vulnerability other than update it? i killed apache just in case[/QUOTE] Worst case is just to reboot, but that's about it. You're good if the new bash version doesn't execute the code someone posted earlier.

[QUOTE=mastersrp;46073450]Worst case is just to reboot, but that's about it. You're good if the new bash version doesn't execute the code someone posted earlier.[/QUOTE] alright, thanks, guess i'm fine then

Would've loved to sit down with a wireshark and watch the attacks, but no, today was the day I had to go back to work...

Do the vulnerabilities affect zsh? I know they're not the same, but IDK how the exploit works either, and they have similar syntax

I'm running base install of nginx for a web server and have SSH open to the world but only able to access it with SSH key. Am I safe?

[QUOTE=benjgvps;46069813][IMG]http://i.imgur.com/slYfYFu.png[/IMG] Sigh. You'd think they'd push out updated packages to the apt repositories for this shit. Unless I'm completely retarded.[/QUOTE] Just curious, why are you signed in as root? Why not use sudo instead?

I love the hdparm warning messages and flags [code]% sudo hdparm --fwdownload PHCC492H.LOD /dev/sdb /dev/sdb: Use of --fwdownload is VERY DANGEROUS. This flag has not been tested with many drives to date. You are trying to deliberately overwrite the drive firmware with the contents of the specified file. If this fails, your drive could be toast. Please supply the --yes-i-know-what-i-am-doing flag if you really want this. Program aborted. % sudo hdparm --fwdownload PHCC492H.LOD --yes-i-know-what-i-am-doing /dev/sdb /dev/sdb: Use of --fwdownload is EXTREMELY DANGEROUS. This might destroy the drive and well as all of the data on it. Please also supply the --please-destroy-my-drive flag if you really want this. Program aborted. % sudo hdparm --fwdownload PHCC492H.LOD --yes-i-know-what-i-am-doing --please-destroy-my-drive /dev/sdb[/code] +1 for the tested list, fwdownload works with my Seagate ST3500418AS.

[QUOTE=joestrange8;46076731]Just curious, why are you signed in as root? Why not use sudo instead?[/QUOTE] Eh, I just have the account saved on mRemoteNG and haven't got around to changing the credentials to the other account. I am completely aware having the root account open is bad for security, though it makes things easier for winscp. I [I]do[/I] have fail2ban setup to prevent people from brute forcing it, so it's not the worst thing in the world.

[QUOTE=rilez;46076443]Do the vulnerabilities affect zsh? I know they're not the same, but IDK how the exploit works either, and they have similar syntax[/QUOTE] [code]nick@paradisiac ~ % env x='() { :;}; echo vulnerable' zsh -c "echo this is a test" this is a test [/code] nope but doesn't matter unless /bin/sh points to zsh

[QUOTE=lavacano;46079623][code]nick@paradisiac ~ % env x='() { :;}; echo vulnerable' zsh -c "echo this is a test" this is a test [/code] nope but doesn't matter unless /bin/sh points to zsh[/QUOTE] wouldn't it be slightly strange to use zsh as a CGI shell anyway?

Is it possible to download Windows games via Steam when using Linux? I want to play Path of Exile but my account is bound with the Steam one.

[QUOTE=Puvleek;46079991]Is it possible to download Windows games via Steam when using Linux? I want to play Path of Exile but my account is bound with the Steam one.[/QUOTE] Try PlayOnLinux

[QUOTE=mastersrp;46080032]Try PlayOnLinux[/QUOTE] Does this mean that I have to uninstall my normally installed Steam? I'm really new to these things, I've been only using Linux since yesterday.

[QUOTE=Puvleek;46080265]Does this mean that I have to uninstall my normally installed Steam? I'm really new to these things, I've been only using Linux since yesterday.[/QUOTE] Not if you've installed Steam normally, that means without using Wine. PlayOnLinux creates a directory for each application you install through it (Such as Steam), which allows you to run Windows games through specific Wine versions to ensure their compatibility and such. In short, you should be good. Also. please note that Windows is not Linux. You have no idea how much Linux just isn't Windows at all. So you shouldn't run Windows applications on Linux unless you REALLY have to, otherwise use any native Linux versions or alternatives, if possible.

You'll have to install Steam [I]again[/I] using PlayOnLinux/Wine, but you will keep your existing installation.

Yup, that's what I did. What is more, the game launched without any major problems. While the performance is poor (as far as I know it's caused by my AMD GPU), the game is actually playable, which made me happy. Also my Windows installation disks have arrived a while ago (my previous HDD died and a new one was sent due to having a warranty, this is why I am currently using Linux to begin with), so I'll switch back to that OS in the next few days. Nevertheless, I'm satisfied with my experiences with Ubuntu. The installation process was very easy, it didn't take long to understand how things work and I'm glad there are native variants of the applications that I often use. On top of that it launches really quickly, there are some pleasant interface tricks and the overall integration of application seems more natural than how it was in Windows. If not for the fact that there are still not many games natively running on Linux, I would definitely consider using it for a longer time, this is pretty much the only deal breaker for me. All in all, I'm glad that should Microsoft screw up Windows one day, there is a decent alternative.

If you guys have any Debian systems, install debsecan and run it. Not my fault when you have trouble falling asleep tonight though.

looks like I wasn't planning on getting any sleep anyway [code]~# debsecan | grep remote -c 159 [/code]

Do note that a bunch of them are false-positives because of how the patching was handled. If you want to switch from "I wonder how much I should yell at maintainers" to "What do I need to patch" mode, run debsecan --suite wheezy --only-fixed

Planning on setting up a drive for just archival and backups (though RAID is likely later since the whole idea is redundancy). Has anyone used btrfs for this sort of application, the compression is quite attractive. Also thinking about btrfs for my / but I'm yet to be convinced, anyone do this already?

If you're an advanced user, use ZFS-on-Linux.

[QUOTE=ben1066;46089625]Planning on setting up a drive for just archival and backups (though RAID is likely later since the whole idea is redundancy). Has anyone used btrfs for this sort of application, the compression is quite attractive. Also thinking about btrfs for my / but I'm yet to be convinced, anyone do this already?[/QUOTE] The "compression" can probably be archieved on most modern filesystems, but as mentioned above, ZFSOnLinux is pretty good for archiving stuff, especially incremental. I would recommend however, to keep your / partition away from these kinds of filesystems, not because it isn't possible (you should be able to boot straight to btrfs and ZFS), but because it *may* be able to cause issues later on, especially if anything breaks.