Archive for Security

OpenSSH ControlMaster and Subversion

April 13, 2008 at 12:14 · Filed under Programming, Security

OpenSSH has a fantastic feature called ControlMaster. Basically this option allows you to create a socket that will share your already opened ssh session to the same host. To enable this option for all you put the following snippet in your $HOME/.ssh/config after creating something like $HOME/.ssh/sockets:

Host *
  ControlMaster auto
  ControlPath ~/.ssh/sockets/%r@%h:%p

For every username@host:port it will create a socket in $HOME/.ssh/sockets. The only problem is that current Subversion (1.4.6 on my FreeBSD box) cannot work well with control sockets when using the svn+ssh:// URI identifier. In order to work around this problem you can add a specific host before the wildcard entry, for example:

Host svn.example.com
  ControlMaster no

Host *
  ControlMaster auto
  ControlPath ~/.ssh/sockets/%r@%h:%p

Of course, doing it like this is a bit tedious for every Subversion repository you use in this manner. Thankfully there is another way to do this. In $HOME/.subversion/config there is a section called [tunnels]. If you add the following entry to that section it will disable the ControlMaster:

[tunnels]
ssh = ssh -o ControlMaster=no
Tags: , ,

Comments

The cake is a lie

January 27, 2008 at 13:02 · Filed under Games, Security

Some of you may have played Valve’s Portal game and remember the phrase that ‘[t]he cake is a lie’. Most of us most likely associated this with the fact you get incinerated at the end of the trials.

I think the meaning is twofold though. Remember the source code leak Valve experienced in 2003 of their Half Life 2 engine code base? It became clear during a trial in Germany in November 2006 that a group called ‘myg0t’ (a play on ‘mein Gott’?) was actually responsible for the source code leak. Now, apparently the myg0t group has some sort of initiation ritual where people have to (source: Wikipedia article on myg0t):

  1. bake a cake
  2. write “myg0t owns me” on it
  3. take a picture of the cake with your face (including party hat) next to it
  4. take a picture of you eating the cake and
  5. post the picture online in a gallery

Now, given that the Orange box came out in 2007, would it be overly strange if Valve was making a reference (with the cake is a lie quote) that the ‘cake initiation’ is just a lie for them (myg0t) to laugh at others who want to join? Personally I think it fits right into Valve’s alley.

Tags: , ,

Comments