It is seventy-two degrees outside right now. My window is open and the pigeons (recently uprooted from their home in the now-destroyed abandoned grandstands) are cooing at me. A stiff breeze blows the multitude of papers on my desk about, turning my room into a small-scale cyclone. The forecast for tomorrow? Forty-nine. This past weekend? Thirty. WTF Nebraska, you’re not Colorado. You’re supposed to be more stable than this.
A bulky CRT appeared in my room a while back, apparently I’d lent it to somebody about a year ago and he brought it back. I was like, “What do I do with this thing?” There’s no room on my desk for CRTs any more, I live my life in flat-panel glory. Ah, but an idea blossoms! Hark back (I believe that hearken back is also correct grammar) to the days of my freshman year, listening to a senior CS student speak about turning an old worthless computer into an always-running slideshow set up outside his door, displaying things like comics and so forth. My roommate just upgraded to a new dual-proc gaming box, so he had his old ‘puter stuffed in the corner holding up, I think, clothes. Quick, dust that guy off, oops, find a hard drive, okay, install Ubuntu because the disc was closest, run some extra-long VGA cable and put the monitor on a bucket in the hallway, set up FTP and slam some photos into the screensaver and alrighty, hey! That’s pretty cool. We’re up to about 150 pictures right now in just under 400 megs. Later on I’ll write a script to troll the Dilbert and Foxtrot websites and scrape the daily comic from them, that’ll be sweet.
So when you set up a box and start your SSH service and open good ol’ port 22, remember that since you can access it from the outside world, everybody else can too. Normally not a problem because, hey, you’re relatively unknown and you choose good passwords and so forth, right? You don’t often make a username and password the same, do you? I hope not, because when somebody performs a dictionary attack on you, they will crack your server. And they will use it for malicious activity.
Brief aside: Remember how my window was open? Remember how I live in Nebraska? Yeah, the cows are blowing inside. I’ll go ahead and close that.
Meanwhile, back at the ranch, Cox shuts down our cable. I try browsing to a site about… uh.. oh yeah, Apple’s new announcements. Can’t access anything, reboot the router, no dice, reboot the modem, hey presto, announcement page about Cox shutting down our cable for hacking. Pause for puzzled fear. Hacking? I didn’t do that… did you do that? Anyone else doing anything funky? No? Ten digits, hey Cox, what up? “You have a virus on your computer.” Uh, no I don’t, we’re all compsci here and hey, we use Macintosh haha, what’s a virus again? No really, can you tell me what kind of traffic I was generating? SSH scanning? Really? Wow. Okay. Yeah, thanks for turning that back on.
Check the logs. User authentication failed for user a. User authentication failed for user b. User authentication failed for user c…. user authentication failed for user american… user authentication failed for user bob… user authentication failed for user jake… user authentication accepted for user jake. Password for user jake changed. “Well now, I guess I know what happened. Shouldn’t have made such an insecure password. Where did that come from?” The password was cracked from a cybercafe in Asia, and subsequent logons were from an ISP in Romania. I’m awfully lucky they compromised an unprivileged account, because gosh they could have done some harm to that system and my network. I’m also lucky Cox watches against hacking, because after they gained access they used it as a bridge to do scanning against other machines, which is why Cox blocked me.
Boy was that exciting… my first experience being hacked, and on a Linux box, too! Well, it was my fault, but wow. Within just a day or two of opening the port, too. I’d write more, but I’m really busy and I need to close some windows before I suffer serious drain bamage.
March 1st, 2006 at 11:20 pm
Mixed feelings… Eric hacked?.. must have read wrong… Cox did good thing? … feeling queasy…. unmerited attack upon the grandeur of NE… spinning slowing down… over-long explanation filled with terms both incomprehensible and African? Ahh yes. All is well in the world. Things really are still the same.
Hey, though, I’m glad no nefarious deeds were deeded, and as for Romania and somewhere in Asia, heh heh, well, let’s just say THEY’ll get theirs. Oh yes. Get.
March 2nd, 2006 at 12:38 am
Your insults against Nebraska can only go on for so much longer, Mr. Hankins.
Maybe I’ll contact my Romanian friends again, and have them send you the message to stop being the Tartuffe of society!
March 2nd, 2006 at 2:07 am
Wow it’s crazy. I have been reading up on a bunch of tech type items and what you just wrote actually made some sense. Anyways yeah, new speaker and new mini mac, exciting stuff.
Dan J.
March 2nd, 2006 at 8:37 am
Romania….why is always Romania that’s to blame for the Web’s Woes? Fake eBay auctions. Phishing. Hacking. Port scanning.
Fucking Vampires.
March 3rd, 2006 at 11:33 am
Nebraska weather has ALWAYS been unstable and unpredictable… that’s what happens when you’re located in the middle of a huge continent and there are no large bodies of water nearby to regulate temperature. If you’re lost as to why water is able to do this… water has a crazy high specific heat, which means that it takes around 4 joules of energy to increase the temperature of one gram of water by 1 degree Centegrade. This means that a large body of water can absorb a huge amount of energy while maintaining a relatively stable temperature, which helps to buffer the temperature of land that happens to be in close proximity, which unfortunately for all of us, does not include Nebraska…
March 9th, 2006 at 10:09 pm
“most likely to become a computer programmer” that’s so obvious, I would vote you “most likely to get something else pierced” I could see you piercing your ear…
March 10th, 2006 at 6:57 am
by the way, since no one else has said it, and to feed your ego, the “SSH” pun in your title? Yeah, that was pretty clever! nice job.