Re: Strongest linux - kernel patches
Peter == Peter Cordes [EMAIL PROTECTED] writes: [...] Peter Luckily, that's a solved problem. Con Kolivas's -ck3 patch for Peter 2.4.21 includes grsecurity and XFS. There's also wolk, which contains grsecurity, XFS, and a ton of other patches. http://sourceforge.net/projects/wolk -- Hubert Chan [EMAIL PROTECTED] - http://www.uhoreg.ca/ PGP/GnuPG key: 1024D/124B61FA Fingerprint: 96C5 012F 5F74 A5F7 1FF7 5291 AF29 C719 124B 61FA Key available at wwwkeys.pgp.net. Encrypted e-mail preferred. pgp0.pgp Description: PGP signature
Re: ssl on debian
Op do 03-07-2003, om 07:30 schreef Jim: Maybe you should install openssl-dev? Hey, i have installed openssl latest source, and everything installed fine, but when i open a program that requires ssl it tells me ssl not installed ?? I can type openssl at the prompt and can use that fine, so what i'am i missing, thanks signature.asc Description: Dit berichtdeel is digitaal gesigneerd
Re: help with firewall
On Wed, Jul 02, 2003 at 11:38:57PM +0200, [EMAIL PROTECTED] wrote: Hi, Can anyone help me with this firewall.I would like to change INTNET=192.168.0.0/24 to more exacts ips like 192.168.0.1,192.168.0.22 and so one. you will either have to rewrite every rule matching 192.168.0.0/24 to match every single host - so 10 hosts make ten rules - or you switch to a smaller subnet e.g. 192.168.0.0/27 going from IP 192.168.0.1 to 192.168.0.30 with a Broadcast .31 the later only leaves less free IP in your subnet, but will help to reduce work. Gruss Horst -- Have you noticed the way people's intelligence capabilities decline sharply the minute they start waving guns around? -- Dr. Who -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: ssl on debian
have a look at /usr/local/ssl/bin. it may be wise to include /usr/local/ssl in your default PATH. cu, g. On Thu, 3 Jul 2003, Jim wrote: Hey, i have installed openssl latest source, and everything installed fine, but when i open a program that requires ssl it tells me ssl not installed ?? I can type openssl at the prompt and can use that fine, so what i'am i missing, thanks -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: ssl on debian
On Thu, Jul 03, 2003 at 03:30:00PM +1000, Jim wrote: i have installed openssl latest source, and everything installed fine, but when i open a program that requires ssl it tells me ssl not installed ?? Er...why did you not install the packages instead of installing from source? -- - mdz -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
subscribe
subscribe -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: OT: An Idea for an IDS
On Tue, Jul 01, 2003 at 04:42:05PM +0200, Lucio wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 (..) Project Descriptive Name: Astu mdids Project UNIX Name: astu Project Description: Multiplatform distributed intrusion detection system You are aware, of course, that you are re-inventing Prelude [1] right? (and that is only one of the distributed IDS systems currently available with a GPL license) Friendly, Javi [1] http://prelude-ids.org pgp0.pgp Description: PGP signature
Re: Strongest linux - kernel patches
Oh men, I didn't pay attention to the thread for all the day. Thank you VERY much!!! I'll be taking a look at them ASAP. Thanks ppl!!! Pope On Jueves, 3 de Julio de 2003 04:28, Hubert Chan wrote: Peter == Peter Cordes [EMAIL PROTECTED] writes: [...] Peter Luckily, that's a solved problem. Con Kolivas's -ck3 patch for Peter 2.4.21 includes grsecurity and XFS. There's also wolk, which contains grsecurity, XFS, and a ton of other patches. http://sourceforge.net/projects/wolk -- Luis Gomez Miralles InfoEmergencias - Technical Department Phone (+34) 654 24 01 34 Fax (+34) 963 49 31 80 [EMAIL PROTECTED] PGP Public Key available at http://www.infoemergencias.com/lgomez.asc -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: OT: An Idea for an IDS
All, Thanks for the great response to this thread. I knew (at the time I posted) such tactic (if not properly implemented/configured) could lead to a denial of service attack, but I appreciate those who took the time to point that out for everyone. -- Phillip Hofmeister PGP/GPG Key: http://www.zionlth.org/~plhofmei/ wget -O - http://www.zionlth.org/~plhofmei/key.txt | gpg --import Please send spam to [EMAIL PROTECTED] (added for email-address searching bots) Do not send mail to the above address. -- Excuse #61: Nesting roaches shorted out the ether cable -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Strongest linux - kernel patches
On Thu, Jul 03, 2003 at 07:43:23PM +0200, Ulrich Scholler wrote: During the reign of 2.4.19, I've had problems with kswapd dying after a few days of uptime when I used the -ck patches. Is this still the case? I'll let you know in a few days... root 4 0.0 0.0 00 ?RW Jul02 0:08 [kswapd] (I don't use my machine constantly, so it probably doesn't swap as much as a desktop used all day.) -- #define X(x,y) x##y Peter Cordes ; e-mail: X([EMAIL PROTECTED] , s.ca) The gods confound the man who first found out how to distinguish the hours! Confound him, too, who in this place set up a sundial, to cut and hack my day so wretchedly into small pieces! -- Plautus, 200 BC -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
ssl on debian
Hey, i have installed openssl latest source, and everything installed fine, but when i open a program that requires ssl it tells me ssl not installed ?? I can type openssl at the prompt and can use that fine, so what i'am i missing, thanks
Re: Strongest linux - kernel patches
Peter == Peter Cordes [EMAIL PROTECTED] writes: [...] Peter Luckily, that's a solved problem. Con Kolivas's -ck3 patch for Peter 2.4.21 includes grsecurity and XFS. There's also wolk, which contains grsecurity, XFS, and a ton of other patches. http://sourceforge.net/projects/wolk -- Hubert Chan [EMAIL PROTECTED] - http://www.uhoreg.ca/ PGP/GnuPG key: 1024D/124B61FA Fingerprint: 96C5 012F 5F74 A5F7 1FF7 5291 AF29 C719 124B 61FA Key available at wwwkeys.pgp.net. Encrypted e-mail preferred. pgpBWkC4FEEwL.pgp Description: PGP signature
Re: ssl on debian
Op do 03-07-2003, om 07:30 schreef Jim: Maybe you should install openssl-dev? Hey, i have installed openssl latest source, and everything installed fine, but when i open a program that requires ssl it tells me ssl not installed ?? I can type openssl at the prompt and can use that fine, so what i'am i missing, thanks signature.asc Description: Dit berichtdeel is digitaal gesigneerd
Re: help with firewall
On Wed, Jul 02, 2003 at 11:38:57PM +0200, [EMAIL PROTECTED] wrote: Hi, Can anyone help me with this firewall.I would like to change INTNET=192.168.0.0/24 to more exacts ips like 192.168.0.1,192.168.0.22 and so one. you will either have to rewrite every rule matching 192.168.0.0/24 to match every single host - so 10 hosts make ten rules - or you switch to a smaller subnet e.g. 192.168.0.0/27 going from IP 192.168.0.1 to 192.168.0.30 with a Broadcast .31 the later only leaves less free IP in your subnet, but will help to reduce work. Gruss Horst -- Have you noticed the way people's intelligence capabilities decline sharply the minute they start waving guns around? -- Dr. Who
Re: ssl on debian
have a look at /usr/local/ssl/bin. it may be wise to include /usr/local/ssl in your default PATH. cu, g. On Thu, 3 Jul 2003, Jim wrote: Hey, i have installed openssl latest source, and everything installed fine, but when i open a program that requires ssl it tells me ssl not installed ?? I can type openssl at the prompt and can use that fine, so what i'am i missing, thanks
Re: ssl on debian
On Thu, 3 Jul 2003, [EMAIL PROTECTED] wrote: i have installed openssl latest source, and everything installed fine, but when i open a program that requires ssl it tells me ssl not installed ?? I can type openssl at the prompt and can use that fine, so what i'am i missing, You installed it from source, right? You need to make sure other programs know where OpenSSL's libraries are. Make sure line with path to OpenSSL libraries is on /etc/ld.so.conf. Then run ldconfig as root. But if you installed OpenSSL from latest source, you might encounter another problem. Packages were compiled against the packaged version and hence there's a change they won't work with the newest one. Be careful about that. - Peter -- Peter Solodov| Concordia University http://alcor.concordia.ca/~peter | Montreal, QC, Canada
Re: ssl on debian
On Thu, Jul 03, 2003 at 03:30:00PM +1000, Jim wrote: i have installed openssl latest source, and everything installed fine, but when i open a program that requires ssl it tells me ssl not installed ?? Er...why did you not install the packages instead of installing from source? -- - mdz
subscribe
subscribe
Re: Strongest linux - kernel patches
Hi, On Wed Jul 02, 2003 at 22:50:20 -0300, Peter Cordes wrote: Luckily, that's a solved problem. Con Kolivas's -ck3 patch for 2.4.21 includes grsecurity and XFS. (I didn't mention it before because I didn't realize it was significant. (I'm not using ACLs).) Con's webpage is http://members.optusnet.com.au/ckolivas/kernel/ During the reign of 2.4.19, I've had problems with kswapd dying after a few days of uptime when I used the -ck patches. Is this still the case? regards, uLI
Re: OT: An Idea for an IDS
On Tue, Jul 01, 2003 at 04:42:05PM +0200, Lucio wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 (..) Project Descriptive Name: Astu mdids Project UNIX Name: astu Project Description: Multiplatform distributed intrusion detection system You are aware, of course, that you are re-inventing Prelude [1] right? (and that is only one of the distributed IDS systems currently available with a GPL license) Friendly, Javi [1] http://prelude-ids.org pgpPAQv7Hq6tc.pgp Description: PGP signature
Re: Strongest linux - kernel patches
Oh men, I didn't pay attention to the thread for all the day. Thank you VERY much!!! I'll be taking a look at them ASAP. Thanks ppl!!! Pope On Jueves, 3 de Julio de 2003 04:28, Hubert Chan wrote: Peter == Peter Cordes [EMAIL PROTECTED] writes: [...] Peter Luckily, that's a solved problem. Con Kolivas's -ck3 patch for Peter 2.4.21 includes grsecurity and XFS. There's also wolk, which contains grsecurity, XFS, and a ton of other patches. http://sourceforge.net/projects/wolk -- Luis Gomez Miralles InfoEmergencias - Technical Department Phone (+34) 654 24 01 34 Fax (+34) 963 49 31 80 [EMAIL PROTECTED] PGP Public Key available at http://www.infoemergencias.com/lgomez.asc
Re: OT: An Idea for an IDS
All, Thanks for the great response to this thread. I knew (at the time I posted) such tactic (if not properly implemented/configured) could lead to a denial of service attack, but I appreciate those who took the time to point that out for everyone. -- Phillip Hofmeister PGP/GPG Key: http://www.zionlth.org/~plhofmei/ wget -O - http://www.zionlth.org/~plhofmei/key.txt | gpg --import Please send spam to [EMAIL PROTECTED] (added for email-address searching bots) Do not send mail to the above address. -- Excuse #61: Nesting roaches shorted out the ether cable