💾 Archived View for berserk.red captured on 2020-10-31 at 00:40:36. Gemini links have been rewritten to link to archived content

View Raw

More Information

⬅️ Previous capture (2020-09-24)

🚧 View Differences

-=-=-=-=-=-=-

Welcome to berserk.red.

Users with content:

gemini://berserk.red/~jack/ (updated 5 months ago)

gemini://berserk.red/~asirgado/ (updated 9 months ago)

gemini://berserk.red/~zuyos/ (updated 9 months ago)

gemini://berserk.red/~aymeric/ (updated 9 months ago)

gemini://berserk.red/~andreas/ (updated 9 months ago)

experimental, use it at your own risk

also people have local shell on the machine, despite automatic

security updates, it is safe to assume the machine hacked.

--------------------

Hi,

https://berserk.red is a shell + web hosting service

The price is 1€ per month for 1GB of space.

(trial 0.1€ for the first month)

you can register by sending your pub key to:

cat ~/.ssh/id_rsa.pub | curl -d@- https://berserk.red/register/:username

# usernames are lowercase a-z up to 8 characters

# By registering *YOU AGREE* with the Terms Of Service, visible at:

curl https://berserk.red/tos

then follow the instructions.

After you register and pay you can access it by:

ssh username@berserk.red "echo hi > public_html/index.html"

sftp username@berserk.red

sshfs .. etc

All the logs about your payment/registration are stored in log/ and

are not accessible by anyone but you and me.

Please send feedback to:

jack@baxx.dev or https://github.com/jackdoe/berserk

Usage:

public_html/

everything under this directory can be accessed via web on

https://berserk.red/~username/

gemini is also supported (gemini://gemini.circumlunar.space/)

gemini://berserk.red/~username/

public_html/finger.txt

finger support

$ finger jack@berserk.red

printing https://berserk.red/~jack/finger.txt

--------

helloooo!

private/

your private files

available commands: (at the moment)

├── bin

│   ├── bash

│   ├── cat

│   ├── echo

│   ├── grep

│   ├── gzip

│   ├── ls

│   ├── mkdir

│   ├── more

│   ├── mv

│   ├── nano

│   └── tar

├── dev

│   ├── null

│   ├── random

│   ├── tty

│   └── zero

└── usr

├── bin

│   ├── clear

│   ├── id

│   ├── less

│   ├── mutt

│   ├── locale

│   ├── nnn

│   ├── talk

│   ├── touch

│   ├── tree

│   ├── vim

* there is no outgoing internet from the machine

* users are chrooted to their homedir

-b

--------------------

there is no docker, no cloud, no replication, no nothing

using 1 machine with attached volume on digital ocean (maybe will move

it to hetzner)

/etc/security/limits.conf:

memory, nprocs, cpu, etc..

quota:

usrquota,grpquota

chroot:

Match Group berserk

AuthorizedKeysFile /etc/ssh/authorized_keys/%u

ChrootDirectory %h

this is questionable, I feel a bit safer, but it is more

annoying to let people interact, esp not having /proc mounted

security:

up-to-date ubuntu, with daily security updates etc.. but that

only gets us so far, assume the machine hacked.

/home/user is owner by root (and user is chrooted into it)

/home/user/private is owned by user:user and mode is 0700

/home/user/public_html is owned by user:user

/home/user/log owned by root mode 700 and files are 0600

log contains logs of the http request registering the user

and payment subscription events from paypal.

secuirty updates are automatically installed and if they

require restart the machine is automatially restarted

(immidiately after the update)

internet:

there is only 443,80 and dne outgoing and 443,80 and ssh incoming

talk:

you can talk with someone by typing

$ talk jack@127.0.0.1

it is pretty cool

backups:

there are no backups

games:

nudoku - sudoku

+---+---+---+---+---+---+---+---+---+ nudoku 0.2.5

| 7 | 3 | | 2 | 4 | | | 8 | 9 | level: easy

+---+---+---+---+---+---+---+---+---+

| 8 | | 2 | | 5 | 7 | 3 | 6 | 4 | Commands

+---+---+---+---+---+---+---+---+---+ Q - Quit

| 4 | | 6 | 3 | | | | | 7 | r - Redraw

+---+---+---+---+---+---+---+---+---+ h - Move left

| 1 | | 3 | 4 | | | 9 | | 8 | l - Move right

+---+---+---+---+---+---+---+---+---+ j - Move down

| | 4 | 8 | 6 | | 9 | 2 | 1 | | k - Move up

+---+---+---+---+---+---+---+---+---+ x - Delete number

| 2 | | | 8 | 1 | | | 4 | 5 | c - Check solution

+---+---+---+---+---+---+---+---+---+ N - New puzzle

| 9 | 8 | | 5 | | | | 3 | 1 | S - Solve puzzle

+---+---+---+---+---+---+---+---+---+ H - Give a hint

| 6 | 1 | 5 | 7 | | 4 | | | 2 |

+---+---+---+---+---+---+---+---+---+

| | 2 | 7 | 9 | 8 | 1 | | 5 | 6 |

+---+---+---+---+---+---+---+---+---+

NB: use it at your own risk

TODO:

--------------------

Why?

why not?

I feel I have lost my edge, havent been reading the exploit lists, and

just chilling as if everything is taken care of. Having a box where

people can get a shell will surely keep me on my toes.

Shell + public_html was my first experience on the web, in ~1999, I

had an ugly website where I used to write poems for my girlfriend (now

my wife). Sadly when they shut it down I did not download it and now

they are lost forever (I dont remember what I wrote, but I doubt it is

a big loss). Anyway, it was a lot of fun trying to quit vi for the

first time haha.