#linuxcnc-devel Logs

Sep 09 2020

#linuxcnc-devel Calendar

12:21 AM -!- #linuxcnc-devel mode set to +v by ChanServ
06:06 AM linuxcnc-build: build #4906 of 1402.rip-wheezy-rtpreempt-i386 is complete: Failure [4failed runtests] Build details are at http://buildbot.linuxcnc.org/buildbot/builders/1402.rip-wheezy-rtpreempt-i386/builds/4906 blamelist: Phillip Carter <phillcarter54@gmail.com>
07:22 AM linuxcnc-build: build #7249 of 0000.checkin is complete: Failure [4failed] Build details are at http://buildbot.linuxcnc.org/buildbot/builders/0000.checkin/builds/7249 blamelist: Phillip Carter <phillcarter54@gmail.com>
07:31 AM jepler: I think that the user map disappeared when we switchd www.linuxcnc.org to static hosting and moved forum to its own site. The ugraded version of Joomla did not have a compatible plug-in for the user map, or the information was not preserved in the migration, or something.
07:31 AM jepler: There are logs kept by the hosting provider of www.linuxcnc.org (apache style), I have occasionally done manual summaries of the contained data
07:32 AM jepler: yesterday there were 75158 requests to wlo, 67123 via http and 8035 via https
07:33 AM jepler: 89 lines yesterday matched the string '2.8.0', and they came from 39 distinct IP addresses
07:34 AM jepler: er that's on the 7th actually. yesterday is 13231 accesses from 271 distinct IPs that match the string '2.8.0'
07:38 AM jepler: 185.164.56.213 - - [09/Sep/2020:05:26:57 -0700] "GET /index.php/english/forum/18-computer/25924-gamepad-problem?start=6 HTTP/1.1" 302 574 "-" "Mozilla/5.0 (Linux; Android 9; SM-A505FM) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.111 Mobile Safari/537.36"
07:38 AM jepler: 2.56.101.222 - - [09/Sep/2020:05:27:04 -0700] "GET /index.php/english/forum/18-computer/25924-gamepad-problem?start=6%27%29+AND+[redacted portion]etc%2Fpasswd%27%29%23 HTTP/1.1" 418 0 "-" "Mozilla/5.0 (X11; U; FreeBSD i386; de-CH; rv:1.9.2.8) Gecko/20100729 Firefox/3.6.8"
07:39 AM jepler: Interesting breakin attempt. One computer followed a VERY outdated link to a forum post (this is log of wlo, not flo) and got 302 redirected, i.e., nothing to see here. Then, a few seconds later, a DIFFERENT machine tried an SQL injection attack against the VERY SAME link
07:49 AM -!- #linuxcnc-devel mode set to +v by ChanServ
09:28 AM rs[m]: i never really understood those sql injections. i built some database backed web apps in the 90ies, but even back then, php and the php mysql interface supported sql queries with placeholders and transport of the actual data "out of band" of the query
09:28 AM rs[m]: nobody seemed to use that
09:28 AM rs[m]: AFAIR that worked quite well back then
09:29 AM -!- #linuxcnc-devel mode set to +v by ChanServ
11:38 AM jepler: I think the thing is, many people coded without using them because it was easy (and maybe because documentation was poor and bad examples were numerous)
12:53 PM Tom_itx is now known as Tom_L
03:07 PM JT-Cave: hal and ini pins is in 2.8's docs but not master
03:10 PM JT-Cave: hmm I'm wrong
10:55 PM -!- #linuxcnc-devel mode set to +v by ChanServ
11:15 PM skunkworks: the new buster livecd does something a little funky - after it goes to the login screen after x amount of time - you enter the password and it logs in for a second - then back out to the loggin screen. You have to then enter the username and password