Re: information question
113 opentcpauth I had a question as to the function of 'auth'. I am not quite sure what this does. If someone could give me a heads up. Any advice appriciated. it allows identifying users on the other edn of tcp/ip connection, ie when irc server recives connection it then connect to auth port of source ip and sends port on which it received connection to identify user which connected . It is considered as security service as other admin can easily locate user that does sth for example nasty and tell you who you should punish. regards, Eyck -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
information question
Hello Debian ISPers, I have a question regarding something I noticed on a debian machine I use. I have a debian machine set up for internal ticketing (request tracker) and I was browsing through my httpd logs and noticed that some random users of the internet have been hitting the non existant sites of users that I have on the machine (i.e- ~debian-isp). I was wondering how they are finding out which users that I have on the machine and was wondering if I could be running services that pose a security problem. I only have the following open: PortState Protocol Service 21 opentcpftp 22 opentcpssh 25 opentcpsmtp 80 opentcphttp 113 opentcpauth 443 opentcphttps 515 opentcpprinter 3306opentcpmysql 6000opentcpX11 I had a question as to the function of 'auth'. I am not quite sure what this does. If someone could give me a heads up. Any advice appriciated. Thank you! D. Ghost 'space ghost with debian flavor'
Re: information question
113 opentcpauth I had a question as to the function of 'auth'. I am not quite sure what this does. If someone could give me a heads up. Any advice appriciated. it allows identifying users on the other edn of tcp/ip connection, ie when irc server recives connection it then connect to auth port of source ip and sends port on which it received connection to identify user which connected . It is considered as security service as other admin can easily locate user that does sth for example nasty and tell you who you should punish. regards, Eyck
Re: information question
sites of users that I have on the machine (i.e- ~debian-isp). I was wondering how they are finding out which users that I have on the machine and was wondering if I could be running services that pose a security problem. I only have the following open: PortState Protocol Service 21 opentcpftp 22 opentcpssh 25 opentcpsmtp 80 opentcphttp 113 opentcpauth 443 opentcphttps 515 opentcpprinter 3306opentcpmysql 6000opentcpX11 I had a question as to the function of 'auth'. I am not quite sure what this does. If someone could give me a heads up. Any advice appriciated. Auth servers are used to determine the owner of a specific connection, more commonly known as identity servers, and essentially useless. Some IRC servers use them to make sure you're not IRC'ing as root. Some network scanners use ident to determine what services are running as root, to aid them in a system compromise. If you need to run identity/auth services at all, use one that can be configured to return useless information like (*shameless plug*) ident2 at http://netgraft.com/ You can probably safely disable it, though. -MB