| View previous topic :: View next topic |
| Author |
Message |
Lord.DragonFly.of.Dawn
Advanced Member
Joined: 18 Jul 2024
Posts: 607
Location: South Portland, Maine, USA, Earth, Sol System
|
 Posted: Wed Mar 18, 2024 2:58 am Post subject: |
 |
|
well thats interesting.
I don't suppose this would have anything to do with the problem?
A friend of mine suggested doing a traceroute to make sure I was connecting to where I thought I was. And heres the result.
| Code: | dragonfly@Mizuho Spice and Wolf $ traceroute 192.168.42.2
traceroute to 130.111.131.121, 30 hops max, 40 byte packets
1 batgirl.cs.usm.maine.edu (130.111.131.121) 4.304 ms 4.942 ms 5.092 ms
2 * * *
3 gig10-0-2.ptldmeptl-rtr02.nyroc.rr.com (24.25.160.129) 25.020 ms 25.481 ms 26.173 ms
4 ge-5-1-0.syrcnycsr-rtr03.nyroc.rr.com (24.24.7.145) 36.331 ms 36.783 ms 37.146 ms
5 ge-0-3-0.albynywav-rtr03.nyroc.rr.com (24.24.7.170) 50.948 ms ge-7-3-0.albynywav-rtr03.nyroc.rr.com (24.24.7.174) 50.434 ms 51.305 ms
6 * * *
7 * * *
8 * * *
9 rrcs-24-39-51-75.nys.biz.rr.com (24.39.51.75) 52.927 ms 49.715 ms 46.903 ms
10 gi5-2.gw-orono.net.maine.edu (130.111.2.25) 51.116 ms 50.170 ms 48.436 ms
11 vl622.gw-bangor.net.maine.edu (130.111.0.98) 70.305 ms 69.024 ms 46.116 ms
12 vl624.gw-portland.net.maine.edu (130.111.0.101) 48.948 ms 58.794 ms 58.283 ms
13 GW-P-Science-int.unet.maine.edu (130.111.0.70) 46.225 ms 46.588 ms 50.791 ms
14 batgirl.cs.usm.maine.edu (130.111.131.121) 49.833 ms !X 47.320 ms !X 48.110 ms !X
|
and an offending entry in hosts.conf
| Code: | 127.0.0.1 localhost Mizuho
130.111.131.121 Naru 192.168.42.6 |
Now the question becomes, where did that entry come from? and why did it work?
I could see that working if i had provided a name that needed to be looked up, but if I provide an IP it should parse directly... unless it gets parsed through the resolver to transform it into binary or whatever form ping, nmap, and traceroute desire?
Either way with that entry removed the problem clears up.
now I get to trawl through gigabytes of archived logs to see if i can find any evidence of when that change happened to the machines on my network.
yay.....
_________________
ArchLinux x86_64 - Custom Built Desktop
ArchLinux x86_64 - Compaq CQ50 Laptop
ArchLinux i686 - Acer Aspire One Netbook
ArchLinux i686 - Dell Presario ze2000 (w/ shattered LCD)
PuppyLinux, CloneZilla, PartedMagic, DBAN - rescue thumbdrives
Windows 7 (x86_64 desktop alternate boot)
|
|
| Back to top |
|
crouse
Site Admin
Joined: 17 Apr 2024
Posts: 11833
Location: Iowa
|
| Posted: Wed Mar 18, 2024 3:12 am Post subject: |
|
|
I suggest as root
lastb
and
less /var/log/auth.log | grep fail
_________________
Veronica - Arch Linux 64-bit -- Kernel 2.6.33.4-1
Archie/Jughead - Arch Linux 32-bit -- Kernel 2.6.33.4-1
Betty/Reggie - Arch Linux (VBox) 32-bit -- Kernel 2.6.33.4-1
BumbleBee - OpenSolaris-SunOS 5.11
|
|
| Back to top |
|
masinick
Linux Guru
Joined: 03 Apr 2024
Posts: 8615
Location: Concord, NH
|
| Posted: Wed Mar 18, 2024 3:51 am Post subject: Cracked? |
|
|
| You were probably cracked. Putting entries in /etc/hosts is one of many ways that crackers break in and mess up your system. For all you know, your system may have been transmitting some of the Spam that we get! Glad you found one issue; hope that was the extent of the damage, but if someone got that far in, I'd check a lot more and consider rebuilding the system, particularly if you have backed up what you need to retain. |
|
| Back to top |
|
Lord.DragonFly.of.Dawn
Advanced Member
Joined: 18 Jul 2024
Posts: 607
Location: South Portland, Maine, USA, Earth, Sol System
|
| Posted: Wed Mar 18, 2024 8:30 pm Post subject: |
|
|
while it is entirely probable that it was in fact I that edited the host file (doing sys-admin stuff at 3AM while hopped up on decongestant means you don't remember stuff you do afterwards...) I will be reinstalling the system just to be sure.
Thankfully all my data is on a separate partition so i can nuke the system without nuking my data.
_________________
ArchLinux x86_64 - Custom Built Desktop
ArchLinux x86_64 - Compaq CQ50 Laptop
ArchLinux i686 - Acer Aspire One Netbook
ArchLinux i686 - Dell Presario ze2000 (w/ shattered LCD)
PuppyLinux, CloneZilla, PartedMagic, DBAN - rescue thumbdrives
Windows 7 (x86_64 desktop alternate boot)
|
|
| Back to top |
|
crouse
Site Admin
Joined: 17 Apr 2024
Posts: 11833
Location: Iowa
|
|
| Back to top |
|
Lord.DragonFly.of.Dawn
Advanced Member
Joined: 18 Jul 2024
Posts: 607
Location: South Portland, Maine, USA, Earth, Sol System
|
| Posted: Thu Mar 19, 2024 1:40 am Post subject: |
|
|
I discovered the hard way (back in my windows days) that having all your data on a separate partition from your OS was a really good idea. A separate physical disk is ideal of course but a separate partition is better than nothing.
I'm thinking of trying arch this time. I really liked it last time I used it, but that would mean that i'd have three different distributions to deal with. That can get annoying when trying to install something....
"is it this package manager?"
"nope. how about this one?"
"un uh. then it has to be this one."
"nein? WTF?!"
_________________
ArchLinux x86_64 - Custom Built Desktop
ArchLinux x86_64 - Compaq CQ50 Laptop
ArchLinux i686 - Acer Aspire One Netbook
ArchLinux i686 - Dell Presario ze2000 (w/ shattered LCD)
PuppyLinux, CloneZilla, PartedMagic, DBAN - rescue thumbdrives
Windows 7 (x86_64 desktop alternate boot)
|
|
| Back to top |
|
masinick
Linux Guru
Joined: 03 Apr 2024
Posts: 8615
Location: Concord, NH
|
| Posted: Thu Mar 19, 2024 2:04 am Post subject: Make it easy for yourself |
|
|
| Ya, but Pacman is pretty easy. Be sure to check out http://usalug.org/phpBB2/viewtopic.html?t=12028 - that should make it pretty easy. pacman -Syu is the easy "dist update" command, pacman -S kde xorg gdm acroread openoffice-base openoffice-spell-en jre jdk firefox pidgin gimp tomboy will get you a pretty nice base KDE system. |
|
| Back to top |
|
Lord.DragonFly.of.Dawn
Advanced Member
Joined: 18 Jul 2024
Posts: 607
Location: South Portland, Maine, USA, Earth, Sol System
|
| Posted: Thu Mar 19, 2024 2:08 am Post subject: |
|
|
i'm a gnomeboy myself actually, but thx.
And none of the package managers are hard, it's remembering which one is the one for the machine you are on is the hard part. especially when you use SSH so much (you don't get the visual cues from the GUI that way)
_________________
ArchLinux x86_64 - Custom Built Desktop
ArchLinux x86_64 - Compaq CQ50 Laptop
ArchLinux i686 - Acer Aspire One Netbook
ArchLinux i686 - Dell Presario ze2000 (w/ shattered LCD)
PuppyLinux, CloneZilla, PartedMagic, DBAN - rescue thumbdrives
Windows 7 (x86_64 desktop alternate boot)
|
|
| Back to top |
|
masinick
Linux Guru
Joined: 03 Apr 2024
Posts: 8615
Location: Concord, NH
|
| Posted: Thu Mar 19, 2024 2:49 am Post subject: Use aliases, saves time and typing |
|
|
| Lord.DragonFly.of.Dawn wrote: | i'm a gnomeboy myself actually, but thx.
And none of the package managers are hard, it's remembering which one is the one for the machine you are on is the hard part. especially when you use SSH so much (you don't get the visual cues from the GUI that way) |
Use a bash alias and learn the commands once, then forget 'em. When you REALLY need to know them, just look 'em up in the .bashrc file.
eg.
| Code: | | alias ug="sudo pacman -Syu" |
| Code: | | alias inst="sudo pacman -S $@" |
|
|
| Back to top |
|
Lord.DragonFly.of.Dawn
Advanced Member
Joined: 18 Jul 2024
Posts: 607
Location: South Portland, Maine, USA, Earth, Sol System
|
| Posted: Thu Mar 19, 2024 2:58 am Post subject: |
|
|
oh sure....
take the EASY way out.....
-eyeroll-
Actually thats not a bad idea... I may have to do that. thanks for the idea!
_________________
ArchLinux x86_64 - Custom Built Desktop
ArchLinux x86_64 - Compaq CQ50 Laptop
ArchLinux i686 - Acer Aspire One Netbook
ArchLinux i686 - Dell Presario ze2000 (w/ shattered LCD)
PuppyLinux, CloneZilla, PartedMagic, DBAN - rescue thumbdrives
Windows 7 (x86_64 desktop alternate boot)
|
|
| Back to top |
|
masinick
Linux Guru
Joined: 03 Apr 2024
Posts: 8615
Location: Concord, NH
|
| Posted: Thu Mar 19, 2024 4:07 am Post subject: |
|
|
| Lord.DragonFly.of.Dawn wrote: | oh sure....
take the EASY way out.....
-eyeroll-
Actually thats not a bad idea... I may have to do that. thanks for the idea! |
I know all of the Debian commands, but I still create aliases for them, and anything, for that matter, that I find myself doing more than once a week. It doesn't mean I don't know the commands, it means I know how to get around on the system extremely quickly and effectively! Moreover, once I create this stuff, I tend to install several distros on multiple partitions on my computer. It is a small matter indeed to copy them between partitions. Most of my distros are Debian based, so I can use the SAME aliases on them. On a Fedora, Mandriva, or Arch system, obviously I have to use other schemes. With Fedora and Mandriva, I usually use their GUI packaging tools, but with Arch, I use pacman -Syu, so it doesn't take long before I create an alias! |
|
| Back to top |
|
|
