From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from lists.gentoo.org ([140.105.134.102] helo=robin.gentoo.org) by nuthatch.gentoo.org with esmtp (Exim 4.60) (envelope-from ) id 1Fooxk-0004Tf-9r for garchives@archives.gentoo.org; Fri, 09 Jun 2006 21:56:16 +0000 Received: from robin.gentoo.org (localhost [127.0.0.1]) by robin.gentoo.org (8.13.6/8.13.6) with SMTP id k59LmHPj000457; Fri, 9 Jun 2006 21:48:17 GMT Received: from smtp.gentoo.org (smtp.gentoo.org [140.211.166.183]) by robin.gentoo.org (8.13.6/8.13.6) with ESMTP id k59LTk2k000194 for ; Fri, 9 Jun 2006 21:29:46 GMT Received: from [129.130.0.165] (align.cns.ksu.edu [129.130.0.165]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by smtp.gentoo.org (Postfix) with ESMTP id BE6B3647CF for ; Fri, 9 Jun 2006 21:29:45 +0000 (UTC) Message-ID: <4489E848.9020108@gentoo.org> Date: Fri, 09 Jun 2006 16:29:44 -0500 From: Lance Albertson User-Agent: Thunderbird 1.5.0.4 (Macintosh/20060530) Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-dev@gentoo.org Reply-to: gentoo-dev@lists.gentoo.org MIME-Version: 1.0 To: gentoo-dev@lists.gentoo.org Subject: Re: [gentoo-dev] Project Sunrise thread -- a try of clarification References: <44887368.9030302@gentoo.org> <1149803837.19443.101.camel@cgianelloni.nuvox.net> <4488A4F3.5060908@gentoo.org> <1149811589.19102.23.camel@vertigo.twi-31o2.org> <1149841698.9743.20.camel@localhost> <1149870017.22473.22.camel@cgianelloni.nuvox.net> <1149874871.9743.77.camel@localhost> <1149884042.22473.150.camel@cgianelloni.nuvox.net> <1149886303.32544.7.camel@localhost> In-Reply-To: <1149886303.32544.7.camel@localhost> X-Enigmail-Version: 0.93.2.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="------------enigB2170BF1C908B5663585C674" X-Archives-Salt: ed062234-6680-463d-a651-2b91a08c50c7 X-Archives-Hash: 99f05fadd391f25d1f8e084a7e886dff This is an OpenPGP/MIME signed message (RFC 2440 and 3156) --------------enigB2170BF1C908B5663585C674 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Patrick Lauer wrote: > On Fri, 2006-06-09 at 16:14 -0400, Chris Gianelloni wrote: > [snip] >>> If someone wanted to exploit boxen he'd use a much simpler attack >>> vector ... our rsync mirrors are wide open. No need to secure the lit= tle >>> window over there when the front door is open ... >> Really? I'd like you to give me root on rsync.gentoo.org, then. What= 's >> that? You can't? What a wonder! >=20 > I don't need that ... > Look, three-step plan to hacking Gentoo boxen: >=20 > 1) open a few rsync mirrors and get them into the official rotation Actually, the only rotation you can get on is a community one (which minimizes the amount of users). All the servers under rsync.g.o are strictly controlled by infra. So nice try ... --=20 Lance Albertson Gentoo Infrastructure | Operations Manager --- GPG Public Key: Key fingerprint: 0423 92F3 544A 1282 5AB1 4D07 416F A15D 27F4 B742 ramereth/irc.freenode.net --------------enigB2170BF1C908B5663585C674 Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc" -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.1 (Darwin) iD8DBQFEiehIQW+hXSf0t0IRAiivAJ4s7VQLimK3uAHSpJze58r98ZgQfwCfaMLy gIjq/feWa7LMZRVNjIe0K/c= =eR5R -----END PGP SIGNATURE----- --------------enigB2170BF1C908B5663585C674-- -- gentoo-dev@gentoo.org mailing list