💾 Archived View for berserk.red captured on 2020-11-07 at 00:33:22. Gemini links have been rewritten to link to archived content
⬅️ Previous capture (2020-10-31)
-=-=-=-=-=-=-
gemini://berserk.red/~jack/ (updated 5 months ago)
gemini://berserk.red/~asirgado/ (updated 9 months ago)
gemini://berserk.red/~zuyos/ (updated 9 months ago)
gemini://berserk.red/~aymeric/ (updated 9 months ago)
gemini://berserk.red/~andreas/ (updated 9 months ago)
experimental, use it at your own risk
also people have local shell on the machine, despite automatic
security updates, it is safe to assume the machine hacked.
--------------------
Hi,
https://berserk.red is a shell + web hosting service
The price is 1€ per month for 1GB of space.
(trial 0.1€ for the first month)
you can register by sending your pub key to:
cat ~/.ssh/id_rsa.pub | curl -d@- https://berserk.red/register/:username
# usernames are lowercase a-z up to 8 characters
# By registering *YOU AGREE* with the Terms Of Service, visible at:
curl https://berserk.red/tos
then follow the instructions.
After you register and pay you can access it by:
ssh username@berserk.red "echo hi > public_html/index.html"
sftp username@berserk.red
sshfs .. etc
All the logs about your payment/registration are stored in log/ and
are not accessible by anyone but you and me.
Please send feedback to:
jack@baxx.dev or https://github.com/jackdoe/berserk
Usage:
public_html/
everything under this directory can be accessed via web on
https://berserk.red/~username/
gemini is also supported (gemini://gemini.circumlunar.space/)
gemini://berserk.red/~username/
public_html/finger.txt
finger support
$ finger jack@berserk.red
printing https://berserk.red/~jack/finger.txt
--------
helloooo!
private/
your private files
available commands: (at the moment)
├── bin
│ ├── bash
│ ├── cat
│ ├── echo
│ ├── grep
│ ├── gzip
│ ├── ls
│ ├── mkdir
│ ├── more
│ ├── mv
│ ├── nano
│ └── tar
├── dev
│ ├── null
│ ├── random
│ ├── tty
│ └── zero
└── usr
├── bin
│ ├── clear
│ ├── id
│ ├── less
│ ├── mutt
│ ├── locale
│ ├── nnn
│ ├── talk
│ ├── touch
│ ├── tree
│ ├── vim
* there is no outgoing internet from the machine
* users are chrooted to their homedir
-b
--------------------
there is no docker, no cloud, no replication, no nothing
using 1 machine with attached volume on digital ocean (maybe will move
it to hetzner)
/etc/security/limits.conf:
memory, nprocs, cpu, etc..
quota:
usrquota,grpquota
chroot:
Match Group berserk
AuthorizedKeysFile /etc/ssh/authorized_keys/%u
ChrootDirectory %h
this is questionable, I feel a bit safer, but it is more
annoying to let people interact, esp not having /proc mounted
security:
up-to-date ubuntu, with daily security updates etc.. but that
only gets us so far, assume the machine hacked.
/home/user is owner by root (and user is chrooted into it)
/home/user/private is owned by user:user and mode is 0700
/home/user/public_html is owned by user:user
/home/user/log owned by root mode 700 and files are 0600
log contains logs of the http request registering the user
and payment subscription events from paypal.
secuirty updates are automatically installed and if they
require restart the machine is automatially restarted
(immidiately after the update)
internet:
there is only 443,80 and dne outgoing and 443,80 and ssh incoming
talk:
you can talk with someone by typing
$ talk jack@127.0.0.1
it is pretty cool
backups:
there are no backups
games:
nudoku - sudoku
+---+---+---+---+---+---+---+---+---+ nudoku 0.2.5
| 7 | 3 | | 2 | 4 | | | 8 | 9 | level: easy
+---+---+---+---+---+---+---+---+---+
| 8 | | 2 | | 5 | 7 | 3 | 6 | 4 | Commands
+---+---+---+---+---+---+---+---+---+ Q - Quit
| 4 | | 6 | 3 | | | | | 7 | r - Redraw
+---+---+---+---+---+---+---+---+---+ h - Move left
| 1 | | 3 | 4 | | | 9 | | 8 | l - Move right
+---+---+---+---+---+---+---+---+---+ j - Move down
| | 4 | 8 | 6 | | 9 | 2 | 1 | | k - Move up
+---+---+---+---+---+---+---+---+---+ x - Delete number
| 2 | | | 8 | 1 | | | 4 | 5 | c - Check solution
+---+---+---+---+---+---+---+---+---+ N - New puzzle
| 9 | 8 | | 5 | | | | 3 | 1 | S - Solve puzzle
+---+---+---+---+---+---+---+---+---+ H - Give a hint
| 6 | 1 | 5 | 7 | | 4 | | | 2 |
+---+---+---+---+---+---+---+---+---+
| | 2 | 7 | 9 | 8 | 1 | | 5 | 6 |
+---+---+---+---+---+---+---+---+---+
NB: use it at your own risk
TODO:
--------------------
Why?
why not?
I feel I have lost my edge, havent been reading the exploit lists, and
just chilling as if everything is taken care of. Having a box where
people can get a shell will surely keep me on my toes.
Shell + public_html was my first experience on the web, in ~1999, I
had an ugly website where I used to write poems for my girlfriend (now
my wife). Sadly when they shut it down I did not download it and now
they are lost forever (I dont remember what I wrote, but I doubt it is
a big loss). Anyway, it was a lot of fun trying to quit vi for the
first time haha.