Minutes 2024-10-03: Difference between revisions
Jump to navigation
Jump to search
(initial commit) |
(No difference)
|
Revision as of 22:08, 3 October 2024
- Met in Rekhi 114 for Install-a-thon at 5PM
- everyone who showed up already had Linux installed on their laptops lol
- talked about hacking Bryce's router
- warehouse mode (https://github.com/MeisterLone/Askey-RT5010W-D187-REV6)
- Moved to Rekhi 101 at 7PM for Nate's presentation on Plan9!
- Going over new members to LUG
- Why they wanted to learn Linux
- What is UNIX
- UNIX philosophy (do one thing and do it well)
- UNIX-likes
- Linux
- FreeBSD
- AIX
- Limitations of UNIX
- Not everything is a file (syscalls, sockets)
- Graphics
- New features tacked-on after the fact rather than designed from within the operating system.
- Processes are privileged by default
- Tools 'work backwards' to subtract privileges from processes
- chroot
- FreeBSD jails
- OpenBSD pledge and unveil
- Linux cgroups and namespaces
- Clustering is hard
- Proper clustering systems basically rewrite the entire application-level stack (e.g. Kubernetes)
- Scope creep in common utilities causes vulnerabilities
- sudo
- GTFOBins (https://gtfobins.github.io)
- What is Plan9?
- What Plan9 does better
- Networking stack is represented as multiple filesystems in /net
- /net/tcp
- /net/udp
- /net/tcp
- /net/icmp
- Graphical devices are represented as files in /dev
- /dev/screen is your current screen
- "screenshotting" is just copying /dev/screen to a file, and converting it to png
- global mounts do not exist, all processes have their own namespace
- mount and unmount (not 'umount') to control filesystems
- processes without audio filesystems will not be able to play audio, processes without /dev/net can't send network traffic, etc
- 9p protocol backs all inter-process file-based communication
- 9p is network transparent
- can mount remote audio filesystem to play audio on remote computers
- interact with /dev/kbd (keyboard) on remote computer
- Plan 9 is a distributed operating system
- An idealized Plan 9 lab consists of a number of servers
- User-facing terminals are thin clients with no local storage
- CPU servers for compute
- File servers for data storage
- Auth servers for authentication
- Networking stack is represented as multiple filesystems in /net
- State of Plan 9 today
- Failed to gain significant market share, UNIX and UNIX-likes got 'good enough'
- Development slowed in 1990's
- Fourth edition was released under custom open-source license in 2002
- Allen finds a statement from Stallman in the early 2000's about it not being 'FOSS' lol
- All editions released under GPL in 2015
- 2021 control given to Plan 9 Foundation, license changed to MIT for all editions
- 9Front
- Developed by cat-v, self-described "Random Contrarian Insurgent Organization"
- 9Front website
- 9Front fixes and improvements to Plan 9
- All around better hardware support, especially on Thinkpads
- Improved filesystems (cwfs, hjfs)
- Who is Cirno
- Official 9Front mascot
- Using 9front
- Demo!
- How does piping raw audio files to audio filesystem work given sample rates?
- Threat landscape for 9Front?
- that one path traversal exploit /g/ found on 9Front's homepage (https://cyber.vumetric.com/vulns/CVE-2022-28380/path-traversal-vulnerability-in-rc-httpd-project-rc-httpd/)
- recompiling the kernel
- Going over new members to LUG
- Wrap up
- ....don't fork-bomb guardian
- Josh is switching to Plan9
- ...please don't host copyright-sussy material on your public Shell page
- No Schmidt's today :(
- most members had upcoming and/or take-home exams