The eupolicy.social admin @admin

Peter N. M. HansteenHappy "Logging in as users -, [ and $ day" to all who celebrate:Jul 19 02:02:12 portal sshd-session[88959]: Failed password for invalid user - from 152.42.130.79 port 33738 ssh2 Jul 19 03:00:14 portal sshd-session[79691]: Failed password for invalid user [ from 152.42.130.79 port 41708 ssh2 Jul 19 03:58:56 portal sshd-session[6194]: Failed password for invalid user $ from 152.42.130.79 port 55398 ssh2<a href="https://mastodon.social/tags/ssh" class="mention hashtag" rel="nofollow noopener" target="_blank">#ssh</a> <a href="https://mastodon.social/tags/passwordgroping" class="mention hashtag" rel="nofollow noopener" target="_blank">#passwordgroping</a> <a href="https://mastodon.social/tags/security" class="mention hashtag" rel="nofollow noopener" target="_blank">#security</a> <a href="https://mastodon.social/tags/passwords" class="mention hashtag" rel="nofollow noopener" target="_blank">#passwords</a> <a href="https://mastodon.social/tags/cybercrime" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybercrime</a> <a href="https://mastodon.social/tags/botnet" class="mention hashtag" rel="nofollow noopener" target="_blank">#botnet</a>

Paul Chambers🚧PuTTY, the renowned FOSS SSH client for Windows, is not the same people as those behind the PUTTY.ORG website." – and now putty.org is spouting anti-vaccination propaganda "because a bunch of communists hate me.""An unfolding controversy over the contents of a website that contained links to several different pieces of SSH-related software has escalated. At the time of writing, the owners of the website have replaced this content with anti-vaccination propaganda." <a href="https://oldfriends.live/tags/Putty" class="mention hashtag" rel="nofollow noopener" target="_blank">#Putty</a> <a href="https://oldfriends.live/tags/SSH" class="mention hashtag" rel="nofollow noopener" target="_blank">#SSH</a> <a href="https://oldfriends.live/tags/Linux" class="mention hashtag" rel="nofollow noopener" target="_blank">#Linux</a> <a href="https://www.theregister.com/2025/07/17/puttyorg_website_controversy/" rel="nofollow noopener" translate="no" target="_blank">https://www.theregister.com/2025/07/17/puttyorg_website_controversy/</a>🚨 The real Putty software website: <a href="https://www.chiark.greenend.org.uk/~sgtatham/putty/" rel="nofollow noopener" translate="no" target="_blank">https://www.chiark.greenend.org.uk/~sgtatham/putty/</a>🔗 putty.org archive before: <a href="https://archive.ph/oyGCU" rel="nofollow noopener" translate="no" target="_blank">https://archive.ph/oyGCU</a> 🔗 Putty.org archive after: <a href="https://archive.ph/ArTC7" rel="nofollow noopener" translate="no" target="_blank">https://archive.ph/ArTC7</a> 🔗 All: <a href="https://archive.ph/putty.org" rel="nofollow noopener" translate="no" target="_blank">https://archive.ph/putty.org</a>

Death by Lambda<a href="https://mastodon.social/@Viss" class="u-url mention" rel="nofollow noopener" target="_blank">@Viss</a> Also, 99% of malicious <a href="https://mastodon.social/tags/ssh" class="mention hashtag" rel="nofollow noopener" target="_blank">#ssh</a> attempts are "internet safety researchers".I black hole the lot of them.

LucBonjour Bignole !De part mon activité d’administrateur systèmes, je dois régulièrement me connecter en SSH à de nombreuses machines. 216 d’après mon fichier <code>.ssh/config</code>, mais y a des alias et des machines virtuelles de développement dans le tas. Mais je dépasse largement les 150 machines.J’ai longtemps — depuis que je l’ai découvert, il y a des années — utilisé <a href="https://pypi.org/project/concierge/" rel="nofollow noopener" target="_blank">concierge</a> (écrit en Python) pour gérer ma configuration SSH. Un de ses grands avantages est le support de moteurs de templates, ce qui me permet de faire des boucles du genre :<pre><code>{% for host in ('foo', 'bar') %}Host {{ host }} HostName {{ host }}.domain.tld User luc{% endfor %}</code></pre>Le problème de concierge est qu’il n’est plus maintenu depuis plusieurs années, ce qui complique son installation sur des systèmes récents. Entre les dépendances pas bien fixées qui installent une version incompatibles de leurs dépendances à elles et certaines fonctionnalités de la bibliothèque standard qui ont migré dans des modules non listés en tant que dépendances… ça foirait à chaque installation.Ma solution : forker concierge pour créer <a href="https://pypi.org/project/bignole/" rel="nofollow noopener" target="_blank">Bignole</a> ! (une <a href="https://fr.wiktionary.org/wiki/bignole" rel="nofollow noopener" target="_blank">bignole</a> est un terme d’argot pour… concierge 😁)Le code est sur <a href="https://framagit.org/fiat-tux/bignole" rel="nofollow noopener" target="_blank">https://framagit.org/fiat-tux/bignole</a>.Au programme du fork :<ul><li>mise à jour des dépendances</li><li>intégration directe des moteurs de templates sous forme de dépendances optionnelles au lieu de proposer des paquets distincts comme le fait concierge</li><li>suppression du support de <code>libnotify</code> qui n’a jamais fonctionné chez moi : je voulais avoir rapidement un outil fonctionnel, pas passer des jours à débuguer</li><li>suite de tests automatisés via Gitlab CI (parce que la CI, c’est mon dada, j’adore ça)</li><li>modernisation des outils de publication : exit les <code>setup.py</code> et <code>setup.cfg</code>, bonjour <code>pyproject.toml</code> (bon, j’avoue, c’est parce que j’utilise ça dans <a href="https://argos-monitoring.framasoft.org/" rel="nofollow noopener" target="_blank">Argos Panoptès</a> et je sais pas faire autrement 😅)</li></ul>Pour installer Bignole, avec <code>jinja2</code> par exemple, c’est simple comme bonjour :<pre><code>pip install 'bignole[jinja]'</code></pre>Et si vous utilisez <a href="https://docs.astral.sh/uv/" rel="nofollow noopener" target="_blank">uv</a> (et vous devriez car c’est fort pratique) :<pre><code>uv tool install 'bignole[jinja]'</code></pre>Après l’installation, vous aurez deux utilitaires : <code>bignole</code> et <code>bignole-check</code> (celui-ci ne servant qu’à vous indiquer si votre fichier contient une syntaxe correcte).En faisant <code>bignole --systemd</code>, vous aurez des instructions pour créer un service systemd qui surveillera votre fichier de configuration (<code>~/.bignolerc</code> par défaut) et re-générera automatiquement votre <code>.ssh/config</code> au moindre changement.Pour le reste de l’utilisation, je vous laisse lire le README sur <a href="https://pypi.org/project/bignole/" rel="nofollow noopener" target="_blank">https://pypi.org/project/bignole/</a> 🙂PS : oui, je connais le système des <code>Tag</code> dans la config SSH (j’en utilise), mais une boucle reste pratique même en les utilisant. Par exemple :<pre><code>{% for host in ('foo', 'bar') %}Host {{ host }} HostName {{ host }}.domain.tld Tag perso{% endfor %}</code></pre><a rel="nofollow noopener" class="hashtag u-tag u-category" href="https://fiat-tux.fr/tag/dev/" target="_blank">#Dev</a> <a rel="nofollow noopener" class="hashtag u-tag u-category" href="https://fiat-tux.fr/tag/python/" target="_blank">#Python</a> <a rel="nofollow noopener" class="hashtag u-tag u-category" href="https://fiat-tux.fr/tag/ssh/" target="_blank">#Ssh</a>

Luc, fromagerIt gives me great, great pleasure to announce that <a href="https://framapiaf.org/tags/Bignole" class="mention hashtag" rel="nofollow noopener" target="_blank">#Bignole</a>, my fork of <a href="https://framapiaf.org/tags/Concierge" class="mention hashtag" rel="nofollow noopener" target="_blank">#Concierge</a> is finally published!<a href="https://pypi.org/project/bignole/" rel="nofollow noopener" translate="no" target="_blank">https://pypi.org/project/bignole/</a>Do you use <a href="https://framapiaf.org/tags/SSH" class="mention hashtag" rel="nofollow noopener" target="_blank">#SSH</a> a lot? Is your .ssh/config complex and thousands of lines long? Try Bignole!By using a template engine (jinja2 and mako are available), the SSH config I maintain is less than a third of the .ssh/config file that's generated!

Luc, fromagerJ’ai le grand, l’immense plaisir de vous annoncer que <a href="https://framapiaf.org/tags/Bignole" class="mention hashtag" rel="nofollow noopener" target="_blank">#Bignole</a>, mon fork de <a href="https://framapiaf.org/tags/Concierge" class="mention hashtag" rel="nofollow noopener" target="_blank">#Concierge</a> est enfin publié ! <a href="https://pypi.org/project/bignole/" rel="nofollow noopener" translate="no" target="_blank">https://pypi.org/project/bignole/</a>Vous utilisez beaucoup <a href="https://framapiaf.org/tags/SSH" class="mention hashtag" rel="nofollow noopener" target="_blank">#SSH</a> ? Votre .ssh/config est d’une complexité sans nom et fait des milliers de lignes ? Essayez Bignole ! Avec l’utilisation d’un moteur de template (jinja2 ou mako), la config SSH que je maintiens fait moins d’un tiers du fichier .ssh/config qui est généré !

Crazy-to-Bike<a href="https://mastodon.social/@alexantemachina" class="u-url mention" rel="nofollow noopener" target="_blank">@alexantemachina@mastodon.social</a> Gerade habe ich das letzte # Proxmox <a href="https://fediworld.de/tags/Backup" rel="nofollow noopener" target="_blank">#Backup</a> der <a href="https://fediworld.de/tags/Homeassistant" rel="nofollow noopener" target="_blank">#Homeassistant</a> <a href="https://fediworld.de/tags/VM" rel="nofollow noopener" target="_blank">#VM</a>, zu dessen Zeitpunkt die Daten in Homeassistant noch alle da waren, zurückgespielt. Und siehe da, nun ist auch das Verzeichnis '/homeassistant' mit jeder Menge Inhalt befüllt. Kein Wunder, dass die histrorischen Daten fehlen, wenn die ganze Datenbank, die configuration.yaml etc. komplett weg sind. Aus irgendeinem Grund hat sich das Verzeichnis komplett geleert, als ob da jemand 'rm -r /homeassistant' gemacht hätte. Da aber niemand außer mir Zugriff darauf hat (Zugriff von extern nur per <a href="https://fediworld.de/tags/VPN" rel="nofollow noopener" target="_blank">#VPN</a>, <a href="https://fediworld.de/tags/SSH" rel="nofollow noopener" target="_blank">#SSH</a> mit <a href="https://fediworld.de/tags/Pubkey" rel="nofollow noopener" target="_blank">#Pubkey</a> abgesichert und Passwortzugang deaktiviert, keiner außer mir kennt die Zugangsdaten, mein Notebook ist vollverschlüsselt), kann das eigentlich nicht sein. 🤔🤷‍♂️ Eigentlich könnte nur sein, dass ein Addon einen Trojaner / Backdoor enthält. Installiert ist - evcc - File Editor - Grafana * - Let's Encrypt * - Mosquito Broker - SQLite Web - TasmoAdmin - Terminal & SSH - Zigbee2MQTT aus <a href="https://fediworld.de/tags/HACS" rel="nofollow noopener" target="_blank">#HACS</a> - card-mod - Power Flow Card Plus - Power Distribution Card - Energy Flow Card Plus - Energy Period Selector Plus * * aktuell unbenutzt Und Integrationen für - FritzBox - Backup * - Einkaufsliste * - HACS - Homeassistant Supervisor * - Meteorologisk institutt (Met.no) * - Mobile App * - MQTT - Radio Browser * - Goodwe Inverter - Reolink - SMLIGHT SLZB - Sonne * - Tasmota * nicht selbst installiert und bis auf Backup ungenutzt

PupRed :pride_heart:<a href="https://mk.absturztau.be/tags/BitVise" rel="nofollow noopener" target="_blank">#BitVise</a> CEO Denis B. doxxed me and called me an Idiot instead of answering my Questions about <a href="https://mk.absturztau.be/tags/PuTTY" rel="nofollow noopener" target="_blank">#PuTTY</a>.org Domain they stole to advertise their own Product! Read more about it here: <a href="https://blog.pupred.com/blog/puttyvsbitvise/" rel="nofollow noopener" target="_blank">https://blog.pupred.com/blog/puttyvsbitvise/</a> <a href="https://mk.absturztau.be/tags/it" rel="nofollow noopener" target="_blank">#it</a> <a href="https://mk.absturztau.be/tags/telnet" rel="nofollow noopener" target="_blank">#telnet</a> <a href="https://mk.absturztau.be/tags/ssh" rel="nofollow noopener" target="_blank">#ssh</a> <a href="https://mk.absturztau.be/tags/bitvise" rel="nofollow noopener" target="_blank">#bitvise</a> <a href="https://mk.absturztau.be/tags/putty" rel="nofollow noopener" target="_blank">#putty</a> <a href="https://mk.absturztau.be/tags/blog" rel="nofollow noopener" target="_blank">#blog</a> <a href="https://mk.absturztau.be/tags/news" rel="nofollow noopener" target="_blank">#news</a> <a href="https://mk.absturztau.be/tags/itnews" rel="nofollow noopener" target="_blank">#itnews</a>

Kevin Karhan :verified:<a href="https://oldbytes.space/@drscriptt" class="u-url mention" rel="nofollow noopener" target="_blank">@drscriptt</a> Naive question: WHEN does the average <a href="https://infosec.space/tags/Internet" class="mention hashtag" rel="nofollow noopener" target="_blank">#Internet</a> <a href="https://infosec.space/tags/user" class="mention hashtag" rel="nofollow noopener" target="_blank">#user</a> ever open up a webpage with an <a href="https://infosec.space/tags/IP" class="mention hashtag" rel="nofollow noopener" target="_blank">#IP</a> address instead of a <a href="https://infosec.space/tags/domain" class="mention hashtag" rel="nofollow noopener" target="_blank">#domain</a> or even <a href="https://infosec.space/tags/FQDN" class="mention hashtag" rel="nofollow noopener" target="_blank">#FQDN</a>?<ul><li>Serioisly, the only cases I saw were either some old, non-public - facing server in some B2B/API setting or a test that <a href="https://infosec.space/tags/httpd" class="mention hashtag" rel="nofollow noopener" target="_blank">#httpd</a> / <a href="https://infosec.space/tags/ngnix" class="mention hashtag" rel="nofollow noopener" target="_blank">#ngnix</a> / <a href="https://infosec.space/tags/ssh" class="mention hashtag" rel="nofollow noopener" target="_blank">#ssh</a> / … function properly on like a <a href="https://infosec.space/tags/VPS" class="mention hashtag" rel="nofollow noopener" target="_blank">#VPS</a> and that the <a href="https://infosec.space/tags/DNS" class="mention hashtag" rel="nofollow noopener" target="_blank">#DNS</a> hasn't been updated (yet!) to include said host / FQDN in the records.</li></ul>The Idea if !SSL / <a href="https://infosec.space/tags/TLD" class="mention hashtag" rel="nofollow noopener" target="_blank">#TLD</a> for <a href="https://infosec.space/tags/IPaddresses" class="mention hashtag" rel="nofollow noopener" target="_blank">#IPaddresses</a> makes me <a href="https://www.youtube.com/watch?v=g3j9muCo4o0" rel="nofollow noopener" target="_blank">feel like Jeff Goldblum!</a>

Mad A. Argon :qurio:Another <a href="https://is-a.cat/tags/ssh" class="mention hashtag" rel="nofollow noopener" target="_blank">#ssh</a> <a href="https://is-a.cat/tags/creature" class="mention hashtag" rel="nofollow noopener" target="_blank">#creature</a>... For some reason I KNEW it was peacock tail, not e.g. fluffy fox tail :blobcatjoy: <a href="https://is-a.cat/tags/drawing" class="mention hashtag" rel="nofollow noopener" target="_blank">#drawing</a> <a href="https://is-a.cat/tags/art" class="mention hashtag" rel="nofollow noopener" target="_blank">#art</a> <a href="https://is-a.cat/tags/MastoArt" class="mention hashtag" rel="nofollow noopener" target="_blank">#MastoArt</a> <a href="https://is-a.cat/tags/CreativeToots" class="mention hashtag" rel="nofollow noopener" target="_blank">#CreativeToots</a> <a href="https://is-a.cat/tags/krita" class="mention hashtag" rel="nofollow noopener" target="_blank">#krita</a> <a href="https://is-a.cat/tags/ArtWithOpenSource" class="mention hashtag" rel="nofollow noopener" target="_blank">#ArtWithOpenSource</a> <a href="https://is-a.cat/tags/randomart" class="mention hashtag" rel="nofollow noopener" target="_blank">#randomart</a>

matthew - retroedge.techGood morning. Anyone know of a guide for generating an SSH key file (.pem or .ppk) for allowing FileZilla (file transfer program) to access a remote server with a key file instead of a password? So far, what I have tried has not worked. I am likely missing a step, but not sure what it is. <a class="hashtag" href="https://social.retroedge.tech/tag/ssh" rel="nofollow noopener" target="_blank">#ssh</a> <a class="hashtag" href="https://social.retroedge.tech/tag/filezilla" rel="nofollow noopener" target="_blank">#filezilla</a> <a class="hashtag" href="https://social.retroedge.tech/tag/sysadmin" rel="nofollow noopener" target="_blank">#sysadmin</a>

Heals :heart_nb:Would anyone with ample <a href="https://indiepocalypse.social/tags/GnuPG" class="mention hashtag" rel="nofollow noopener" target="_blank">#GnuPG</a> or <a href="https://indiepocalypse.social/tags/OpenPGP" class="mention hashtag" rel="nofollow noopener" target="_blank">#OpenPGP</a> knowledge know if changing the expiry date of an Authrntication subkey has any effect on the <a href="https://indiepocalypse.social/tags/SSH" class="mention hashtag" rel="nofollow noopener" target="_blank">#SSH</a>-pubkey gpg-agent published for that subkey?I’m trying to decide if I want to have my subkeys - which are stored on a hardware key - expire or not…

House Panther :verified_paw:Sometimes really amazing things happen. I got some <a href="https://goblackcat.social/tags/SSH" class="mention hashtag" rel="nofollow noopener" target="_blank">#SSH</a> intrusion attempts coming from a virtual machine on a network controlled by a company local to my home city of Wilmington, DE. So naturally this piqued my curiosity and did some research on the company.They're small but doing some interesting stuff so I took the opportunity to report the intrusion attempt in a very polite and friendly way. At the same time, I expressed interest in working for them part time because nothing ventured is nothing gained. I think I am qualified to be a Linux admin for them. So why the hell not!? Linux is after all my passion.

Royal Apps GmbHNeed to reboot a server but want to pick up right where you left off? 👀 No problem — just head to Settings (macOS) or Options (Windows), find the “Behavior” section, and enable the setting 💡<a href="https://dotnet.social/tags/automation" class="mention hashtag" rel="nofollow noopener" target="_blank">#automation</a> <a href="https://dotnet.social/tags/digitaltransformation" class="mention hashtag" rel="nofollow noopener" target="_blank">#digitaltransformation</a> <a href="https://dotnet.social/tags/productivity" class="mention hashtag" rel="nofollow noopener" target="_blank">#productivity</a> <a href="https://dotnet.social/tags/Itops" class="mention hashtag" rel="nofollow noopener" target="_blank">#Itops</a> <a href="https://dotnet.social/tags/remotemanagement" class="mention hashtag" rel="nofollow noopener" target="_blank">#remotemanagement</a> <a href="https://dotnet.social/tags/technology" class="mention hashtag" rel="nofollow noopener" target="_blank">#technology</a> <a href="https://dotnet.social/tags/software" class="mention hashtag" rel="nofollow noopener" target="_blank">#software</a> <a href="https://dotnet.social/tags/productivity" class="mention hashtag" rel="nofollow noopener" target="_blank">#productivity</a> <a href="https://dotnet.social/tags/rdp" class="mention hashtag" rel="nofollow noopener" target="_blank">#rdp</a> <a href="https://dotnet.social/tags/ssh" class="mention hashtag" rel="nofollow noopener" target="_blank">#ssh</a>

Marcus Rohrmoser 🌻<a href="https://digitalcourage.social/tags/Show" class="mention hashtag" rel="nofollow noopener" target="_blank">#Show</a>: Personal video <a href="https://digitalcourage.social/tags/unoffice" class="mention hashtag" rel="nofollow noopener" target="_blank">#unoffice</a> hours <a href="https://digitalcourage.social/tags/booking" class="mention hashtag" rel="nofollow noopener" target="_blank">#booking</a> system. <a href="https://mro.name/sprechstunde/" rel="nofollow noopener" translate="no" target="_blank">https://mro.name/sprechstunde/</a> Runs fine on shared hosting (leveraging <a href="https://digitalcourage.social/tags/RFC3875" class="mention hashtag" rel="nofollow noopener" target="_blank">#RFC3875</a> <a href="https://digitalcourage.social/tags/CGI" class="mention hashtag" rel="nofollow noopener" target="_blank">#CGI</a> and <a href="https://digitalcourage.social/tags/ssh" class="mention hashtag" rel="nofollow noopener" target="_blank">#ssh</a>) ¹ <a href="https://mro.name/b5zef29" rel="nofollow noopener" translate="no" target="_blank">https://mro.name/b5zef29</a>

**The New Oil** @thenewoil@mastodon.thenewoil.org · Jul 3

Jul 3

The New Oil @thenewoil@mastodon.thenewoil.org

#Cisco warns that #UnifiedCM has hardcoded root #SSH credentials

https://www.bleepingcomputer.com/news/security/cisco-removes-unified-cm-callManager-backdoor-root-account/

#cybersecurity

**Axel | R.I.P Natenom** @xtaran@chaos.social · Jul 1

Jul 1

Axel | R.I.P Natenom @xtaran@chaos.social

Following a recent incident, here's a reminder: #SudoConsideredHarmful

What I do use instead of #sudo? "ssh root@localhost" with keys: https://github.com/xtaran/sshudo and "alias sudo sshudo" or "ln -vis /usr/bin/sshudo /usr/bin/sudo".

(For those who wonder what I refer to: https://www.stratascale.com/vulnerability-alert-CVE-2025-32462-sudo-host and https://www.stratascale.com/vulnerability-alert-CVE-2025-32463-sudo-chroot)

GitHubGitHub - xtaran/sshudo: Drop-in sudo and pkexec replacement doing ssh root@localhost passing parameters like empty strings properlyDrop-in sudo and pkexec replacement doing ssh root@localhost passing parameters like empty strings properly - xtaran/sshudo

#SSHudo #SSH #CVE_2025_32462