Loading Profile...
Recent activity
Subscribe to this feed
areinwarth asked a question in Wuala on October 19, 2009 22:20:
Average online time shrinkingIn my home network there are two machines running Wuala and trading storage. In the last few days I notice that although they are both active 24/7 and online Wuala states that my average online time is not only not increasing, but slowly and slightly shrinking. (The network link is monitored so I am sure it has not been down.)
The machines run different OSes (CentOS Linux 5.3 and Windows XP) and current Wuala versions.
Any idea how to debug that further?
-
areinwarth started following the question "today i can t connect,wuala make something on their server?" in Wuala.
-
areinwarth started following the question "When you share a file with a friend or private group, how is the key transferred?" in Wuala.
-
areinwarth started following the question "default to "my files"" in Wuala.
-
A comment on the problem "Wuala does not start on linux anymore." in Wuala:
And if wuala and wualacmd differ from the ones in your wuala-directory, it could be a good idea to replace them, too. – areinwarth, on September 10, 2008 13:30 -
areinwarth replied on September 10, 2008 13:29 to the problem "Wuala does not start on linux anymore." in Wuala:
-installed is passed to the loader2.jar in the wuala start-up-script. Does wualacmd work for you? If not I would suggest replacing loader2.jar with the one from http://wua.la/files/wuala.tar.gz. Perhaps an update didn't work for you ... -
areinwarth replied on September 10, 2008 10:30 to the question "take the login command away from the commandline" in Wuala:
> Well, what you ́re writing shows that you have thought alot
> about security of your systems (so am I).
I've been working in that sector for some years now, it were a
shame if I hadn't thought about such problems.
> Is it really good that it is _necessary_ to write down a
> password on the shell or in a file?
Personally I'm unbiased about this, but, as linux tends to
dribble to the 'uncombed masses', it might be necessary to take
inexperienced admins by the hand.
> just with an interactive mode like the sudo/su command
> have. And such a possibility is all that I want.
Ah, now I understand what you propose: In case the subcommand
'login' is not followed by two parameters, wuala should
interactively ask for them, e.g.
[user@host wuala]$ ./wualacmd login user
Password: xxxx
or
[user@host wuala]$ ./wualacmd login
Username: xxxx
Password: xxxx
Right?
> I just think the way of the login made a (possible and small!)
> security problem and it can be fixed without alot of
> coding (isn ́t it, roger?).
Sure, this shouldn't be a problem at all.
> Of course, there should be also a way to automate the login
> process stayed open.
Yes, please. :)
> Oh by the way: I do not think theres a system in the world
> which cannot be physically touched.
A virtual system, which resides in an encrypted filesystem of its
host plus some additional security controls added: the
probability to access that machine is low enough that I can live
with it :) (But I fear we are far from the topic now ...) -
areinwarth replied on September 10, 2008 07:05 to the question "take the login command away from the commandline" in Wuala:
> Saving passwords of your compter, encrypted or not, is always a
> security hole.
At first go I see two scenarios in which a user's credentials might be
attacked on a linux-system:
a) multi-user systems which are accessed remotely ("root server")
b) systems which can be physcally accessed by an attacker
For scenario a) it is usually sufficient to protect the
credentials by file permissions, unless you do not trust the
administrator of the machine (in which case you shouldn't save
anything there, encrypted or not) or an attack leads to elevated
rights on the target machine. (As I don't know how wuala handles
the credentials at run-time, there could even be possiblities to
get them from the machine's memory, which I find far more
disconcerting.)
In scenario b) all unencrypted data are likely to be disclosed,
so, in my opinion, filesystem based encryption is an absolut
must.
> I think its better to look for security by design than to hope
> of the perfect user.
Which design do you propose here? You ask to "take the login
command away from the commandline", but what should replace it?
By the way, I usually don't work interactivly on the linux server
I run wuala on, so I am dependent on a scriptable solution for
logging in. (And yes, the filesystems are encrypted, even as this
system cannot be physically touched :) -
areinwarth replied on September 09, 2008 22:41 to the question "Ist es möglich 18+ auszuschalten?" in Wuala:
Dunkel der Sinn Deiner Frage ist, junger Jedi.
Wenn es Dir darum geht, die 18+-Dateien auszublenden:
Menu User - Manage Account -> Haken bei "Display family friendly content only" setzen.
Wenn es Dir um was anderes geht, solltest Du Deine Frage etwas präzisieren ... -
areinwarth replied on September 09, 2008 19:02 to the question "take the login command away from the commandline" in Wuala:
If your laptop is stolen and its filesystems are not encrypted, you
needn't wonder if someone accesses your data. In this case the blame
cannot be shifted towards wuala. -
areinwarth replied on September 09, 2008 13:04 to the question "take the login command away from the commandline" in Wuala:
> I _must_ write my login and password down in cleartext to the
> shell.
No, you needn't.
Create a file which contains your login credentials, set secure
file permissions on it and use
./wualacmd login `cat credentials`
instead of
./wualacmd login youruser yourpassword.
Hope this helps until wuala has a builtin feature for this. -
A comment on the problem "Wuala startet nicht und gibt folgende Fehlermeldung aus:" in Wuala:
dito, wobei ich mir bewusst bin, dass das halt nicht der "offizielle Weg" ist :) – areinwarth, on September 02, 2008 13:51 -
A comment on the problem "Wuala startet nicht und gibt folgende Fehlermeldung aus:" in Wuala:
Aus readme.txt:
~/wuala/ Default program directory. Start Wuala with -basepath PATH
if you want it to use another one. – areinwarth, on September 02, 2008 11:29 -
A comment on the problem "Wuala startet nicht und gibt folgende Fehlermeldung aus:" in Wuala:
> Geht vielleicht auf Windows und OS X einfach, aber die
> Linux-Version ist immer ein riesen Ding, das ich nicht ganz
> verstehe.
Ist doch eigentlich sogar noch einfacher als unter Windows:
- von http://wua.la/en/launch die Linux-Version von wuala downloaden
- entpacken ...
- und die 3 Dateien nach ~/wuala verschieben – areinwarth, on September 02, 2008 07:02 -
A comment on the problem "Wuala startet nicht und gibt folgende Fehlermeldung aus:" in Wuala:
I must admit that I don' like java myself; nevertheless this is no reason at all to shoot a SIGKILL on that poor process without testing if a SIGTERM, SIGHUP or a SIGINT does its job. Please remember that a process killed via SIGKILL is not able to do any housekeeping before it dies, like closing file handles or opened ports.
man 7 signal might help. – areinwarth, on September 01, 2008 19:42 -
areinwarth marked one of Roger's replies in Wuala as useful. Roger replied to the question "can i see who is downloading my files?". areinwarth and 3 other people think it's one of the best replies.
-
areinwarth marked one of Roger's replies in Wuala as useful. Roger replied to the problem "Problems with the linux command line client".
-
areinwarth replied on August 26, 2008 14:44 to the problem "Problems with the linux command line client" in Wuala:
> If I start wuala as ./wualacmd login areinwarth mypassword everything
> works as expected, but if i start it without login credentials (as I
> don't want to share my password with other users of this machine via
> ps aux) and login in afterwards, the NFS mount only lists world
> readable folders.
Oops, I must have been too hasty for wuala: I just looked into
~/wuala/direct/areinwarth again and now all folders are visible.
Sorry for the line noise :) -
areinwarth replied on August 26, 2008 14:35 to the problem "Problems with the linux command line client" in Wuala:
Hi Roger!
> Please download new script versions of wuala and wualacmd from
> http://wua.la/en/launch (just extract the two mentioned scripts from
> the linux archive into your wuala folder). Most of your problems do
> not occur in the latest version.
Thank you for you help, seems as if I misunderstood what wuala does
during it's updates.
Indeed this solves the login problem and additionally wualacmd does no
longer try to connect to the X server, so my original problem is
solved.
But IT were not what it is, if a solution wouldn't make new problems
arise :)
If I start wuala as ./wualacmd login areinwarth mypassword everything works as expected, but if i start it without login credentials (as I don't want to share my password with other users of this machine via ps aux) and login in afterwards, the NFS mount only lists world readable folders.
[alex@vcent5i wuala]$ ./wualacmd login areinwarth mypassword
Logged in as areinwarth
[alex@vcent5i wuala]$ ls direct/areinwarth
Public
It's not a big problem for me as I am able to access the invisible folders, yet it still looks like a bug to me :)
[alex@vcent5i wuala]$ ls direct/areinwarth/Documents
test.txt
> No it is not possible to connect with a gui client to a nogui
> session :(
It's a pity, but not really a problem. I will fire up the gui client on another machine if I want to search for public files then.
Thank you for your help,
Alexander -
areinwarth reported a problem in Wuala on August 26, 2008 08:28:
Problems with the linux command line clientI'm using wuala on a server running
[alex@vcent5i ~]$ cat /etc/redhat-release
CentOS release 5.2 (Final)
which corresponds closely to Redhat Enterprise Linux 5.2.
The installed jdk is
[alex@vcent5i ~]$ rpm -qa jdk
jdk-1.6.0_06-fcs
(If more information is needed, please feel free to ask.)
I originally installed wuala in an X-Session and am now trying to use the command line client instead.
I noticed the following problems:
- wualacmd's default behaviour is to try to connect to the X-server running on $DISPLAY, you must ecplicitly override this by the parameter -nogui. In my opinion this is plainly wrong for a command line program.
- I fire up wualacmd by
[alex@vcent5i wuala]$ ./wualacmd -nogui
Wuala Commandline
Once Wuala is running, you can send commands to it by calling
it again with the desired command as argument (e.g. './wuala logout'
The commands will be passed on to the first instance.
Execute './wuala help' for a list of available commands.
The help command the start up message (which, by the way, is missing a closing bracket) refers to states that there is a sub-command called "login". Using this without any parameters reveals that it's usage is "login username password". It were nice if the help command would have told me about obligatory parameters.
When trying the command in the described syntax, no login is processed, instead you see the following
[alex@vcent5i wuala]$ ./wualacmd login areinwarth mypassword
Usage: login username password
and the NFS-mount stays empty, except for my public files.
[alex@vcent5i wuala]$ ls direct/areinwarth
Public
[alex@vcent5i wuala]$
This prompts me to believing that I am indeed not logged in, especially as this is exactly the same behaviour if I deliberately enter a wrong password.
Even if I run the gui and activate "Remember my password" in the "Sign In"-window, the next guiless start of the program does not login or at least does not offer me my private files.
- Is there a way to connect a gui client to a command line client's session? In the rare cases I use X (or rather NX) it is quite uncomfortable to kill the cmdclient first and fire up the gui client subsequently.
I searched the publicly available documentation, but found no solution for my problem. Any help is appreciated.
Thanks in advance,
Alexander
