If you've ever looked at SSH server logs you know what I'm about to say: Any SSH server connected to the public Internet is getting bombarded by constant attempts to log in. Not just a few of them. A lot of them. Sometimes even dozens per second. And this problem is not going away; it is, in fact, getting worse. And attackers' behavior is changing.
The graph attached to this post shows the number of attempted SSH logins per day to one of @cloudlab s clusters over a four-year period. It peaks at about 3.4 million login attempts per day.
This is part of a study we did on our production system, using logs of more than 640 million login attempts, covering more than 1,500 hosts on our side and observing more than 840 thousand incoming IP addresses.
A paper presenting our analysis and a new, highly effective means to block SSH brute force attacks ("Where The Wild Things Are: Brute-Force SSH Attacks In The Wild And How To Stop Them") will be presented next week at #NSDI24 by @sachindhke . The full paper is at https://www.flux.utah.edu/paper/singh-nsdi24
#throwbackthursday again! In 2021 I did a series of live streams demonstrating that a quality pro #puppet can be made with accessible materials like simple polar fleece. The result! The VoD is up on our #peertube, link in bio #puppets#puppetbuilding
Tonight I'll be streaming the point and click adventure version of King's Quest II... or should I say, King Saltine will be streaming their playthrough of King's Quest II.... I've lost my dang mind.
New monstor just dropped! This is my second sack #puppet, done for an O:P community member. Turns out I quite enjoy making sack #puppets! #puppetbuilding
Why does the #puppet Jira at Perforce let me create a user with my e-mail address, send me an activation link, and then tells me that this user is not allowed to access Jira?
On that note, why is the issue tracking not public anymore in the first place? Feels like the open source nature of #puppet is getting diminished.
Alright, #puppetserver “idling” between 400%CPU and 600%CPU (for a setup with < 15 hosts, all of them having had their agent run a while ago, each of those taking a couple seconds) is going to be the final nail in the #puppet coffin for me.
Atrocious migration experience, every single time, and now a huge waste of resources? Enough.
Another #puppet off to their forever home! I think of this one as “that guy at the Linux conference who wouldn’t stop talking to us at the bar.” #puppets#puppetbuilding#smallbusiness
@gvrooyen@iw just be glad that it #rust isn’t as popular a word as #go or #puppet or #chef. Maybe the next programming language will be ‘THE’ and freak out all the search engines.
Okay, finally getting around to a pinned #introduction post on this server.
Hi, I'm Kevin, a professional #puppet builder, amateur puppet performer and maker of puppet-based media. I run my own shop, host regular #live streams and host a #podcast. My style is very much inspired by Jim #Henson and The #Muppets, of course!
Here's a (very) small sample of some my favourite pieces I've made over the years. All links in my profile or go to https://www.operationpuppet.com
PROVE ME WRONG
He's a miswired human and #fascist. BUT WORSE, if he flames out, there still will be a huge operation in place to carry on. #puppet#cognitivefail
Today I got to tell my students that in the bad old days we used to write scripts that just SSHed into every machine and ran sed on config files but today we had puppet and I regret to inform you that based on their facial expressions we apparently still write scripts that just SSH into every machine and run sed on config files
(Reposted to fix a picture) I made an Audrey II puppet and dressed up as Seymour from Little Shop of Horrors for Halloween. Ended up with the prize for scariest costume from my work’s costume contest 😎 #Halloween#handmade#art#puppet#HalloweenCostume
As I think about using #fediverse integration more, I reflect that I used to be discouraged there aren't a lot of #puppet people here.
But then I realized: that's not a bad thing. I can be among the first. This is actually a perfect place to be. Imagine being the among the first of any genre on any platform.
I may not have a big audience here but each one of them will be an actual human person. That's valuable.
It explains a bit how to use #fwupd from other programming languages or in frameworks such as #Puppet and #Ansible, so might be useful for people thinking of using fwupd in a customer project.
Bert & Ernie are the most famous flatmates from #sesamestreet. They are known as Epi y Blas or Beto y Enrique in Spanish. Does your language have a different name too?