Community discussions

Search found 8 matches

by phistrom
Thu Oct 17, 2019 6:36 pm
Forum: General
Topic: Is there an new exploit going around?
Replies: 45
Views: 4298

Re: Is there an new exploit going around?

Was there anyone here using SSH keys to log in instead of passwords? For anyone exploited, did the bot add any keys for any users?
by phistrom
Fri Aug 30, 2019 10:38 pm
Forum: Scripting
Topic: mkdir function for easy folder creation
Replies: 8
Views: 922

Re: mkdir function for easy folder creation

I agree that the script is long and scary looking, but the idea was to give you a very robust function that should run no matter what your settings are. It has to set up and tear down a temporary group, user, firewall rules, and check to see if it needs to briefly toggle on your FTP service, and the...
by phistrom
Thu Aug 29, 2019 7:31 pm
Forum: Scripting
Topic: mkdir function for easy folder creation
Replies: 8
Views: 922

mkdir function for easy folder creation

I have created a script that creates a $mkdir global function to create directories. Once you have run the script, you can write this on the command line: $mkdir some/new/folder . It builds on this code found on the official Wiki , which uses FTP via /tool fetch to create the directory tree. This fu...
by phistrom
Sat Jul 27, 2019 11:58 pm
Forum: General
Topic: Default Configuration Privacy
Replies: 8
Views: 751

Re: Default Configuration Privacy

Export skipping keys and stuff is not exactly advantage, it's major shortcoming I really can't think of a scenario where this is a shortcoming other than you lost your private key or password and need to recover it. Is it so you can /export and copy the config to other devices? Seems like you could...
by phistrom
Sat Jul 27, 2019 7:42 pm
Forum: General
Topic: Default Configuration Privacy
Replies: 8
Views: 751

Re: Default Configuration Privacy

At least /export doesn't dump out any private keys or passwords though. I was hoping once you flashed a custom default configuration on there, it was impossible to dump it back out to the command line in its entirety because that might have some pretty sensitive stuff in there. I have my answer, but...
by phistrom
Sat Jul 27, 2019 2:34 am
Forum: General
Topic: Default Configuration Privacy
Replies: 8
Views: 751

Re: Default Configuration Privacy

So someone with admin or console access to the device can dump out the configuration? I was hoping the answer was no, that it was treated like passwords where, once it's on there, you can't see the custom default script.
by phistrom
Wed Jul 24, 2019 4:56 am
Forum: General
Topic: Default Configuration Privacy
Replies: 8
Views: 751

Default Configuration Privacy

If I flash a custom default configuration to a Mikrotik device using NetInstall, is that custom configuration reasonably private? Is it acceptable practice to put the admin password on it this way or to add certificate private keys or other sensitive information/credentials? By "reasonably private" ...
by phistrom
Sun Jul 14, 2019 6:37 am
Forum: Scripting
Topic: Day of the Week and More
Replies: 0
Views: 488

Day of the Week and More

I wrote a script that will hopefully be of use to people who need common date functions like finding out what day of the week it is. It creates a function that you can call that gives you several convenient variables for that point in time. You run this script only once, and then refer to the global...