#garfield Logs

May 06 2015

#garfield Calendar


00:48 rue_house I'm watching honeypot videos on youtube
00:49 rue_house the hacker did NOT CLUE IN when trying to add a user account asked him for his favorite moveue
00:49 rue_house movie
00:49 rue_house hahahahahahahahahah
00:53 rue_house zhanx, I want to set up a honeypot that captures the passwords hackers set for root on the system
00:53 rue_house I'm thinking of a system with a RO drive and a lineprinter with a custom passwd program
07:08 katsmeow-afk .
09:19 rue_house the list of china ISPs I'm filtering out is really growing
09:20 rue_house I'd like to make a honeypot that captures the passwords they set
09:20 rue_house if they get in
09:20 rue_house which would be easy, cause they are all doing the same dictionary attacks
10:19 katsmeow-afk .
10:20 katsmeow-afk i wish i knew if i was being attacked
10:22 katsmeow-afk do humans not know that each letter in a passord exponentially ups the unbreakableness, and if they misspelle it, it breaks dictionary attacks, and if they use more than one word it ups^ the unbreakability?
10:42 katsmeow-afk thisIsmYpa$$worD4iRc
10:43 katsmeow-afk thepasswordforallthemoneyinmycompanyisiwasnot32in2014
10:44 katsmeow-afk rotating passwords, it can be invalid 60seconds after you use it
10:47 katsmeow-afk take the time as displayed at the login keybd, enter the day and hour and minutes reversed, and press <enter> only when the seconds display an even number
11:26 katsmeow-afk if they know you will be using englich, try a word from another language : poLLenmaKesmyCabezaHurtinSpring
11:27 Tom_itx WWII used navajoe
11:27 Tom_itx -e
11:27 tsmeow-afk
11:27 katsmeow-afk code talkers
11:28 katsmeow-afk the nameplate on the treadmill motor says 90vdc, 4000rpm
11:29 katsmeow-afk if i do 4:1 , is 1000rpm too low for aluminum and plastics?
11:29 Tom_itx kinda
11:29 Tom_itx we ran aluminum EM at 10k
11:30 katsmeow-afk so i need to do 2:1 and worry about torque when cutting steel?
11:30 katsmeow-afk ouch
11:30 Tom_itx put the transmission from your nissan in it
11:30 katsmeow-afk heh
11:30 katsmeow-afk i do still have that, and 4 VW transaxles
11:31 Tom_itx i run mine around 3k most of the time
11:31 Tom_itx but i don't try to cut steel
11:31 katsmeow-afk 3k at the bit?
11:31 Tom_itx yeah
11:31 katsmeow-afk aarrggg
11:32 katsmeow-afk this little motor can't cut steel directly, i'd bet money on it
11:32 Tom_itx you could almost direct drive it
11:32 katsmeow-afk so i can't di 1:1
11:32 Tom_itx mine is 90v ~1/6 hp
11:32 katsmeow-afk but you don't cut steel
11:32 Tom_itx not easily
11:32 Tom_itx ~1.7:1
11:33 katsmeow-afk i would wanna use it like a small drill press (up to 1/4 inch), and pcbs drilling and sheet steel edging, plastic routing
11:33 Tom_itx http://tom-itx.no-ip.biz:81/~webpage/cnc/new_pulleys/timing_pulley1.jpg
11:33 Tom_itx small one on the motor
11:34 Tom_itx both got bored out btw
11:34 Tom_itx http://tom-itx.no-ip.biz:81/~webpage/cnc/new_pulleys/timing_pulley3.jpg
11:35 katsmeow-afk the affrodable place in Scotland doesn't have items paired up, and the place in Canadia wants $100 for two pullesy and a belt (and $17 per boring)
11:36 tsmeow-afk ponders a direct drive on top of the spi
11:37 Tom_itx i found i could get mine from sdp-si for the same price as the interweb and was able to get what i wanted, not what i was limited to
11:38 katsmeow-afk cept nothing comes up for me on their site
11:38 Tom_itx you'll have to find a pc with java i suppose
11:38 Tom_itx google the different belt series and figure which one will support the given HP
11:39 katsmeow-afk or buy from Scotland, they have 32mm ID timing sprockets for $15
11:39 Tom_itx i wasn't too worried about it on mine
11:39 Tom_itx what series?
11:39 katsmeow-afk i dunno
11:39 Tom_itx what ratio?
11:40 Tom_itx and what 2 shaft diameters
11:40 katsmeow-afk they didn't have a kit, and i didn't have a ratio in mind
11:41 katsmeow-afk geetting urls for you...
11:41 Tom_itx 1hp>
11:41 Tom_itx ?
11:41 katsmeow-afk http://www.bearingstation.co.uk/products/Pulleys/V_Pulleys/SPZ_V_Pulley/80X1SPZ
11:42 katsmeow-afk http://www.bearingstation.co.uk/Products/Taper_Bushes/Taper_Bush_Metric/1210
11:42 katsmeow-afk http://www.bearingstation.co.uk/Products/Pulleys/HTD_Pulleys
11:42 katsmeow-afk i dunno from 5mm, 8mm, 14mm pitch
11:43 katsmeow-afk being aluminium, he said shipping would be $20 ballpark to me from Scotland
11:45 Tom_itx 5mm pitch might be ok
11:45 Tom_itx 14 might be too big
11:45 Tom_itx mine is 3 iirc
11:45 katsmeow-afk http://www.bearingstation.co.uk/Products/Pulleys/HTD_Pulleys/HTD_Pulley_5mm/565M15TL <<== 5mm, uses the taperlock url i gave
11:46 katsmeow-afk it's 11(lbs) price
11:46 katsmeow-afk which i thinkis under $15
11:46 Tom_itx would be nice if they had a belt length calculator
11:46 katsmeow-afk i did not place an order, because i didn't have a motor shaft spec
11:48 katsmeow-afk http://www.bearingstation.co.uk/Products/Belts/Timing_Belts/5M
11:48 katsmeow-afk halfway down is 15mm wide
11:48 Tom_itx mmm that must take flash player... i have java installed on the other pc
11:48 katsmeow-afk it's plain html
11:49 katsmeow-afk i don't see any flash?
11:49 Tom_itx sdp-si
11:49 katsmeow-afk oh
11:49 katsmeow-afk i have flash disabled, FF and IE kept on autorunning movies, which i refused to have happen
11:49 Tom_itx if it would work, you could calculate your center distance, pulley size and it would tell you what belt you need
11:50 katsmeow-afk since i am building it, anything from "just clears" to 5 inches should be fine
11:51 katsmeow-afk the motor is longer than the spindle, even if i take 2 inches off the shaft, so i haveto put it above the spindle in free air anyhow
11:51 katsmeow-afk else it will hit the work before the bit does
11:52 katsmeow-afk i *have* the motor, it spins by hand, not put power on it, not measured it in any way
11:52 Tom_itx i'm gonna see if flash player fixed it
12:08 Tom_itx their site is borked... just called em
12:08 tsmeow-afk
12:10 katsmeow-afk i am going to hold off a day longer ordering , even if i am ready to order, i wanna think over how i can put these power wchair motors above the wheels, and atm i dunno what the shaft sizes are on them either
12:10 katsmeow-afk but i now have 4 identical pairs of motor-gearbox-wheels
12:10 katsmeow-afk err
12:10 katsmeow-afk 2 pairs
12:11 Tom_itx design twice purchase once
12:11 katsmeow-afk yeas
12:11 Tom_itx bbl
12:12 katsmeow-afk me too, bbl
21:33 katsmeow-afk .
21:37 Tom_itx storms.
21:39 katsmeow-afk i didn't say anything because i figured you were already on top of it
21:39 katsmeow-afk the storms dropped a tornado on OKC
21:39 Tom_itx and N of here
21:41 katsmeow-afk my radar map isn't updating right, this one looks like it did 4 hrs ago
21:43 katsmeow-afk and http://classic.wunderground.com is fubard
21:44 katsmeow-afk "it was too much strain to support the new modern-loooking uninformative page AND the old classic with all it;s data, so we are dropping the old classic"
21:46 Tom_itx http://www.intellicast.com/National/Radar/Current.aspx?animate=true&location=USKS0523
21:47 katsmeow-afk wierd, the storm over OKC is still there on your radar map too
21:47 katsmeow-afk lil more to one side
21:47 katsmeow-afk but still there
21:48 katsmeow-afk yea,, a few of those stow overly strong cores
21:48 katsmeow-afk show
21:48 tsmeow-afk notices Rue, Ark a
21:51 katsmeow-afk i wonder wtf the 10 day forecast must auto-update every 3 minutes
21:51 katsmeow-afk grrrr
21:52 katsmeow-afk the "modern" page is to graphics and icon bloated it takes a minute to "update" it
22:04 katsmeow-afk this maps are too far off, the radar map puts HUT directly north of ICT, but the road map of KS puts Hutchison strongly NE of Wichita,, and i thought you were east of Witchyta anyhow
22:05 katsmeow-afk the radar map puts HUT where the road map has McPhereson
22:05 Tom_itx https://www.youtube.com/watch?v=Q1CMSV81_ws
22:06 Tom_itx i'm in wichita, hutch is 50Mi NW
22:06 katsmeow-afk i knew someone up in Concordia once
22:07 katsmeow-afk their family has farmland from the dustbowl days, they no longer farmed, they rented it out to farmers
22:07 katsmeow-afk i meant NW, the radar map seems to put it way too far east
22:08 katsmeow-afk is that the one of the front-end-loader-backhoe literally climbing into the rail bin car?
22:09 Tom_itx uh huh
22:09 tsmeow-afk hasto dl it to se
22:09 katsmeow-afk seenit
22:09 katsmeow-afk that's a stunt i think i would never do, and i have spent some days riding a 580
22:10 Tom_itx me either
22:10 Tom_itx sleep here.
22:10 katsmeow-afk be safe
22:15 katsmeow-afk oh, that's a trackhoe, not one i have seen
22:16 katsmeow-afk the one i saw , the loader used no special-made "stairs" like that one is using
22:24 Tom_itx https://www.youtube.com/watch?v=CuGBpwnWW2I
22:24 Tom_itx skilz
22:25 katsmeow-afk downloads
22:25 Tom_itx possible nudity.. haven't finished it yet
22:25 tsmeow-afk glances downw
22:26 katsmeow-afk yep, seen female before
22:26 m_itx ha
22:26 katsmeow-afk keep the bedroom lights on, silly
22:27 Tom_itx i thought you meant you'd seen this
22:28 katsmeow-afk no,, i don't think i wanna watch, if something goes wrong, it's gonna be really worng
22:29 Tom_itx naw, it's ok
22:31 katsmeow-afk sheeeeze
22:31 katsmeow-afk if we cannot sleep tonite, i know why
22:56 katsmeow-afk mine ears are ringing
23:07 katsmeow-afk my calves wanna cramp up too
23:21 zhanx Evening
23:21 zhanx Rue you can do the whole honey pot but why?
23:25 katsmeow-afk woah, discountsteel.com just unborked, and i discovered i already get a much lower price than their "discounts"
23:25 katsmeow-afk hi zhanx
23:25 katsmeow-afk i now have 2 pair of identical power wchair motor/gearbox/wheels
23:25 zhanx Evening kat
23:26 zhanx Trolling motors?
23:26 katsmeow-afk power wheelchair
23:26 katsmeow-afk fwiw : http://www.discountsteel.com/files/pdf/Gage_to_Decimal_Conversion.pdf
23:26 anx is practicing k
23:27 zhanx Fishing tomorrow
23:27 rue_house zhanx, china hackers are annoying me
23:27 katsmeow-afk some of their numbes are off, for instance, 1/4 plate is 10.2 lbs/ft^2
23:27 zhanx Ban all of China
23:28 katsmeow-afk going to macreme a net?
23:28 rue_house I have a LARGE list of chinese isp's I'm blocking
23:28 rue_house and soemthing funny
23:28 katsmeow-afk rue buys direct from china, of course they wanna know why
23:28 rue_house the number of attacks is staying constant more or less
23:28 zhanx Made a new landyard
23:28 rue_house which means there is a network that tries from different isp's if it fail a host
23:28 zhanx BRB baby Isup
23:29 katsmeow-afk or they have abotnet
23:29 rue_house one of the first things the hackers do is change the system root passwd so they can log in again
23:29 rue_house I'm writing a new passwd program
23:29 zhanx Rue it's a buffer overflow etc
23:30 rue_house it always says the entered passwords do not match
23:30 rue_house but it sends it to a line printer and file on a usb drive
23:30 rue_house ;)
23:30 zhanx Heck depending on the age of the computer you can hack the ram
23:30 rue_house they are doing stupid password attacks
23:30 zhanx Without root
23:30 rue_house apparently they get 10% of machines
23:31 rue_house May 6 20:23:57 t0002 sshd[23334]: (pam_unix) authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.162.111.131
23:31 rue_house May 6 20:23:59 t0002 sshd[23334]: Failed password for invalid user sales from 195.162.111.131 port 41557 ssh2
23:31 rue_house May 6 20:24:00 t0002 sshd[23336]: (pam_unix) authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.162.111.131 user=root
23:31 rue_house May 6 20:24:02 t0002 sshd[23336]: Failed password for root from 195.162.111.131 port 41807 ssh2
23:31 rue_house May 6 20:24:04 t0002 sshd[23338]: (pam_unix) authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.162.111.131 user=root
23:31 rue_house May 6 20:24:05 t0002 sshd[23338]: Failed password for root from 195.162.111.131 port 42093 ssh2
23:31 rue_house if you look at the youtube videos, these are NOT sharp hackers
23:31 rue_house one of them was asked "what is your favorite movie" when trying to create a new account on a system, and he didn't click in
23:32 rue_house I'm building a network and IP list
23:32 tsmeow-afk wonders why that is impor
23:32 rue_house I want to get their passwords and hack their hacked machines
23:32 rue_house effectivly take them away from them
23:33 katsmeow-afk and their fav movie helps you do that?
23:33 zhanx They are that dumb
23:33 rue_house the program that creates accounts asks a lot fo questions, 'what is your favorite movie' is NOT one of them
23:34 rue_house 173.8.96.0/19
23:34 katsmeow-afk but mothers maiden name is?
23:34 rue_house there is another one
23:35 rue_house it asks you fyour first, last name, room number, etc etc etc
23:35 rue_house why it akss a room number I dont know, but dont care
23:35 zhanx My is has default logins on all cisco routers
23:35 zhanx Don't ask
23:35 zhanx Isp
23:35 katsmeow-afk Tiggr useto watch people joining on irc, and tracert them, one troublemaker always went thru 1 of 2 paths, kept changing the ip at the end, Tiggr saw the ip on the path , didn't wait for the last ping reply, and kickbanned him, usually before he got one line to the channel
23:36 zhanx Nice
23:37 katsmeow-afk yeas, it's different now, what with shells/bnc and tor and vpn and things
23:39 rue_house ./a.out
23:39 rue_house Enter new UNIX password:
23:39 rue_house Retype new UNIX password:
23:39 rue_house Sorry, passwords do not match
23:39 rue_house passwd: Authentication token manipulation error
23:39 rue_house passwd: password unchanged
23:39 rue_house got it
23:39 rue_house !
23:40 rue_house I wonder if a hacker would go thru their entire password list to try to type it right
23:40 rue_house ;)
23:40 katsmeow-afk now run it thru translation and send it in Romanian
23:40 zhanx Rue is old school
23:41 zhanx Multi threaded gpus do it now
23:41 rue_house these are not doing that
23:41 zhanx I do
23:41 rue_house go youtube for linux honeypot
23:42 rue_house its AWESOME entertainment
23:42 zhanx Wait disclaimer I don't hack
23:42 rue_house some hackers are brutally stupid
23:42 rue_house hahah sure sure
23:42 zhanx I bet
23:42 zhanx If I had the bandwidth or the time I could show you
23:42 rue_house I need to build a little system that has a read only filesystem and a root password of 1234
23:43 tsmeow-afk fondles her ER25 spindle just a
23:43 rue_house and my little passwd program
23:43 rue_house katsmeow-afk, I'm wating for you to tell me what you do with it
23:43 zhanx I could do it with no password
23:44 rue_house I wonder if my ssh has any vonerabilities
23:44 katsmeow-afk got the bearings, got the tube, got the lil motor to spin it yesterday
23:44 zhanx Tons
23:44 rue_house I dont think I'm interested in focusing the US military on hacking my router
23:44 katsmeow-afk going to edge plates to straight lines, drill holes, groove plastic
23:44 zhanx Not in anymore
23:45 zhanx Oh oh oh. Tell me thus has been done before. .
23:45 zhanx I want to make a log table
23:45 katsmeow-afk crap, spilled a tube of to-220 all over the floor
23:45 zhanx So I am making a router jig
23:46 zhanx To square it up
23:49 rue_house May 6 20:51:34 t0002 sshd[23367]: refused connect from 222.186.58.131 (222.186.58.131)
23:49 rue_house May 6 20:58:04 t0002 sshd[23369]: refused connect from 221.229.166.4 (221.229.166.4)
23:50 rue_house those seem to be the worst networks
23:50 zhanx Check out a synthetic flood
23:50 zhanx Sny even
23:51 zhanx Syn auro correct hates me
23:51 rue_house wow, yea
23:51 rue_house but I want to keep collecitng the ip addresses of hacked machiens
23:52 zhanx Why?
23:52 rue_house once I get the hackers personal password, I can go thru the list and flip all the root passwrds to my side
23:52 zhanx Database of dumb computer people?
23:52 rue_house better yet if I have a login programt hat always says the passwords dont match and they enter every password they have ever used
23:53 rue_house are you laughing too?
23:53 zhanx Dictionary attacks and yes
23:53 rue_house I think the hackers use non-dictionary passwords
23:54 rue_house so the machines they take over wont get taken by a different hacker
23:54 rue_house this makes sense to me
23:55 zhanx Ok that was the alarm, off to bed
23:55 zhanx Night