[Zaphod-Users] zaphod hack
Kai Germaschewski
kai.germaschewski at unh.edu
Wed Oct 12 16:42:43 EDT 2011
Hi everyone,
zaphod has been broken into again -- and probably a while ago. The intruder
logged passwords in ssh and sshd, that is, not only is your zaphod password
compromised, but you should also consider the passwords for all machine that
you logged into from zaphod compromised as well (and hence you should change
them).
zaphod's software unfortunately is rather out of date and it's virtually
impossible to make it decently secure without rebuilding it from scratch,
which I currently don't have time for. So instead, I took zaphod off the
public internet and moved it into a private network, which should make
future attacks less likely. I also rebuilt / reinstalled ssh and sshd on
zaphod, s105 and s106. Other machines, in particular s107, lolcat, sherman,
etc. had to go into the private network with it. The immediate consequence
is that you won't be able to log onto to zaphod anymore for two reasons:
It's not directly reachable from the outside, and I also deleted everyone's
compromised passwords, so you'll have to get a new one (by stopping by my
office, or emailing me if you're not local).
There are two ways to get onto zaphod:
1) indirectly: go through fishercat.sr.unh.edu
2) directly: install and configure a VPN client (openvpn) and connect
directly to the private network that zaphod is on.
For 1), you need an account on fishercat, while for 2) you need keys etc to
set up the VPN, so you'll have to see me and we'll have to figure out how to
do it (I've been using the VPN approach for quite a while and find it rather
convenient after the initial setup, but can't quite remember how to create
the keys etc...)
--Kai
--
Kai Germaschewski
Assistant Professor, Dept of Physics / Space Science Center
University of New Hampshire, Durham, NH 03824
office: Morse Hall 245E
phone: +1-603-862-2912
fax: +1-603-862-2771
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.sr.unh.edu/pipermail/zaphod-users/attachments/20111012/7b3cb729/attachment.html
More information about the Zaphod-Users
mailing list