Log in

No account? Create an account
entries friends calendar profile Feren's dART gallery Previous Previous Next Next
Attention dumbass users of my server... - Paint It Black
Living the American dream one heartbreaking piece at a time
Attention dumbass users of my server...
I'm a nice guy. Maybe I'm too nice. I host websites and user accounts and DNS and e-mail and stuff on my server for a very very low (read: practically idiotic, as it doesn't even begin to recover my operating cost) fee. In exchange, I ask that you do something very simple: don't ignore the system's warnings about password strength when you set your passwords. Today I had a user account that was cracked, as near as I can tell, by simply bruteforcing the password. Once they logged in the cracker busily tried to compromise the system with nifty little scripts and tricks. Luckily I caught them early in their efforts. Even more luckily, they didn't actually do any damage to the box or compromise the system's integrity.

Because of this I've run John the Ripper and the results proved very surprising and unpleasant. These findings, in conjunction with this event, have forced me to make the following decree: Henceforth, if you set your password to be your username, but think you are OH-SO-CLEVER by typing it in reverse (which is ridiculously simple to crack) your account will be revoked and I will consider it a default on your one-year hosting fee. Furthermore, for every crackable password of this nature that I find, I shall kill you.

Let the bodies hit the floor

Tags: , ,
Current Mood: frustrated frustrated
Current Music: drowning pool - bodies (vrenna XXX mix)

7 thoughts or Leave a thought
yotogi From: yotogi Date: January 17th, 2006 11:01 pm (UTC) (Link)
Oh sweet baby Jeebus
roho From: roho Date: January 17th, 2006 11:05 pm (UTC) (Link)
Least you're not doing the hosting for Abba?
chebutykin From: chebutykin Date: January 17th, 2006 11:53 pm (UTC) (Link)
Glad for the reminder... I actually set out to change my account's password again yesterday, and realized that I no longer know how to do that on my own on Panther. Hint, por favor?
duckhunter From: duckhunter Date: January 18th, 2006 12:12 am (UTC) (Link)
Man, you are way too nice a guy....

If the threat of loss of access and physcial violence don't work, or they beg to come back after loss of access, make their lives hell.

Give them a security level that requires them to change their passwords every two weeks, they can't resuse the previous 26 passwords, and every word is required to have a lower case letter, a capital letter, 2 unique special characters, and a numeral. Oh, and the password must be a minimum of 10 characters long.

Make 'em squeal, Pa! Make 'em squeal!!
nekosensei From: nekosensei Date: January 18th, 2006 12:17 am (UTC) (Link)
Wow...that was really dumb. Even I don't do shit like that...
nekosensei From: nekosensei Date: January 18th, 2006 12:18 am (UTC) (Link)
By the way, I've discovered that knowing three languages helps. That, and in order to make my passwords, I mix 'em...and I throw in a couple of numbers just for kicks... :)
mindslide From: mindslide Date: January 20th, 2006 02:13 am (UTC) (Link)
Could I become the official troll of your journal? I find myself rolling my eyes at at least ONE of your commenters, per post. People sure do like to impress you!
7 thoughts or Leave a thought