Re: Logcheck, Logsentry, LogRider etc.
Hi .. On Sun, Mar 30, 2003 at 11:42:36PM +0200, Stefan Neufeind wrote: So generally: I'm looking for a good log-monitoring-tool - not only for Debian- systems (at least I'm honest) so I need to be able to also compile and package it again myself for different systems. I am using logcheck, personally installed on my Debian-Server/WS, because, there are no debian-packages .. :( But the big issue with logcheck is, that you can get mails with log-entries, but logcheck cannot provide the time to each log-message. :( So .. it is quite unusable for a professional use... Could you give me any advice, explain why Psionic was taken over by cisco etc.? And where can I find current homepages for logcheck, logsentry etc.? www.google.de should know it. regards Jan -- .''`.Jan-Hendrik Palic | : :' : ** Debian GNU/ Linux ** | ** OpenOffice.org ** ,.. ,.. `. `' http://www.debian.org | http://www.openoffice.org ,: ..` ` `- [EMAIL PROTECTED] | ' ` ` pgp0.pgp Description: PGP signature
Re: Logcheck, Logsentry, LogRider etc.
Hi .. On Sun, Mar 30, 2003 at 11:42:36PM +0200, Stefan Neufeind wrote: So generally: I'm looking for a good log-monitoring-tool - not only for Debian- systems (at least I'm honest) so I need to be able to also compile and package it again myself for different systems. I am using logcheck, personally installed on my Debian-Server/WS, because, there are no debian-packages .. :( But the big issue with logcheck is, that you can get mails with log-entries, but logcheck cannot provide the time to each log-message. :( So .. it is quite unusable for a professional use... Could you give me any advice, explain why Psionic was taken over by cisco etc.? And where can I find current homepages for logcheck, logsentry etc.? www.google.de should know it. regards Jan -- .''`.Jan-Hendrik Palic | : :' : ** Debian GNU/ Linux ** | ** OpenOffice.org ** ,.. ,.. `. `' http://www.debian.org | http://www.openoffice.org ,: ..` ` `- [EMAIL PROTECTED] | ' ` ` pgpnQammJUebj.pgp Description: PGP signature
Re: machine monitoring packages
Hi .. On Thu, Feb 13, 2003 at 02:59:26PM +, gabe wrote: I would like to know what ppl think is the best package for monitor servers, at my last work place they were installing mon. In my new job they use Nagios, which I'm not to sure about due to the fact that installation / configuration goes wrong. Most importantly there's no deb package for Nagios which makes me not wanna use it in the first place. We are using nagios-1.0 very well at my company. I am running it on debian-woody with selfbackported packages from sid. It runs fine .. very fine and the configuration is ok. Regards Jan -- .''`.Jan-Hendrik Palic | : :' : ** Debian GNU/ Linux ** | ** OpenOffice.org ** ,.. ,.. `. `' http://www.debian.org | http://www.openoffice.org ,: ..` ` `- [EMAIL PROTECTED] | ' ` ` msg08666/pgp0.pgp Description: PGP signature
Re: machine monitoring packages
Hi .. On Thu, Feb 13, 2003 at 02:59:26PM +, gabe wrote: I would like to know what ppl think is the best package for monitor servers, at my last work place they were installing mon. In my new job they use Nagios, which I'm not to sure about due to the fact that installation / configuration goes wrong. Most importantly there's no deb package for Nagios which makes me not wanna use it in the first place. We are using nagios-1.0 very well at my company. I am running it on debian-woody with selfbackported packages from sid. It runs fine .. very fine and the configuration is ok. Regards Jan -- .''`.Jan-Hendrik Palic | : :' : ** Debian GNU/ Linux ** | ** OpenOffice.org ** ,.. ,.. `. `' http://www.debian.org | http://www.openoffice.org ,: ..` ` `- [EMAIL PROTECTED] | ' ` ` pgpXlZoua5gVW.pgp Description: PGP signature
Re: Converting Users from Solaris to (Debian-)Linux
Hi All ... thnx for all your advices. All went fine Many thnx, you saved me much time! Regards Jan On Fri, Aug 30, 2002 at 01:06:22PM +0200, Jan-Hendrik Palic wrote: Hi all .. I have a small problem, I am working on migrating an apache virtual web server with 80-120 virtual servers from a solaris to a linux mashine. I played around with /etc/passwd or /etc/shadow but I saw, that seems not to be easy to get it work. What I want ist, that the users have the same account with the same password on the linux maschine and solaris. Does anyone have a hint to do it? regards Jan -- .''`.Jan-Hendrik Palic | : :' : ** Debian GNU/ Linux ** | ** OpenOffice.org ** ,.. ,.. `. `' http://www.debian.org | http://www.openoffice.org ,: ..` ` `- [EMAIL PROTECTED] | ' ` ` -- .''`.Jan-Hendrik Palic | : :' : ** Debian GNU/ Linux ** | ** OpenOffice.org ** ,.. ,.. `. `' http://www.debian.org | http://www.openoffice.org ,: ..` ` `- [EMAIL PROTECTED] | ' ` `
Converting Users from Solaris to (Debian-)Linux
Hi all .. I have a small problem, I am working on migrating an apache virtual web server with 80-120 virtual servers from a solaris to a linux mashine. I played around with /etc/passwd or /etc/shadow but I saw, that seems not to be easy to get it work. What I want ist, that the users have the same account with the same password on the linux maschine and solaris. Does anyone have a hint to do it? regards Jan -- .''`.Jan-Hendrik Palic | : :' : ** Debian GNU/ Linux ** | ** OpenOffice.org ** ,.. ,.. `. `' http://www.debian.org | http://www.openoffice.org ,: ..` ` `- [EMAIL PROTECTED] | ' ` ` pgpoFBajYeuSd.pgp Description: PGP signature
Re: Converting Users from Solaris to (Debian-)Linux
Hi .. thnx for the reply ... On Fri, Aug 30, 2002 at 11:24:20AM -0400, Steve Mickeler wrote: The shadow file format between linux and solaris are different, but as long as you have the crypt() portion from the solaris shadow file, you can put it in the linux shadow file. example linux /etc/shadow entry: joeuser:YxlYT1esV4yz2:11474:0:9:7::: example solaris /etc/shadow entry: joeuser:YxlYT1esV4yz2:11513:: The /etc/passwd entries will look the same. I have created a user test with pass test on Linux and Solaris: /etc/shadow on Linux: test:$1$mT.fKI5L$Fgq6C.AKbkzGfCU.RDDqj.:11929:0:9:7:-1:-1:134549020 /etc/shadow on Solaris: test:TCs9gC4bJy8rg:11929:: the hashes are quite different .. ;( That could be a problem, no? Regards Jan -- .''`.Jan-Hendrik Palic | : :' : ** Debian GNU/ Linux ** | ** OpenOffice.org ** ,.. ,.. `. `' http://www.debian.org | http://www.openoffice.org ,: ..` ` `- [EMAIL PROTECTED] | ' ` `
Re: Quick Question about the 2.2 Kernel and Iptables
Hi .. On Sat, Aug 10, 2002 at 08:54:55PM -0400, Phillip Hofmeister wrote: On Sat, 10 Aug 2002 at 09:52:11AM -0500, Daniel J. Rychlik wrote: Quick Question about the 2.2 Kernel and Iptables, does the 2.2 kernel have support for Iptables? Im rebuilding my server tonight I need to know if the latest stable 2.2 will handle iptables. In addition to my 0 replythe latest stable kernel is 2.4.18(+?). Which does support IPTABLES. 2.4.19 -- .''`.Jan-Hendrik Palic | : :' : ** Debian GNU/ Linux ** | ** OpenOffice.org ** ,.. ,.. `. `' http://www.debian.org | http://www.openoffice.org ,: ..` ` `- [EMAIL PROTECTED] | ' ` ` pgpKdrnUMsNpu.pgp Description: PGP signature
Re: OpenSSH vuln: BSD only?
On Thu, Jun 27, 2002 at 10:38:44AM +0200, Wim Fournier wrote: http://bvlive01.iss.net/issEn/delivery/xforce/alertdetail.jsp?oid=20584 I just read this over at iss, it seems that the vuln only exists for default installations of BSD and only for S-KEY and BSD authentication. So need to upgrade at all.. its just a way to get everyone over to 3.x i guess... For Debian it is not nessessary to upgrade in case of these securityissues. But in ssh-3.4 are many other security fixes and bugfixes, so it is recommended to upgrade. But me is not hurry up for this and wait for the new deb ... :) Regards Jan -- .''`.Jan-Hendrik Palic | : :' : ** Debian GNU/ Linux ** | ** OpenOffice.org ** ,.. ,.. `. `' http://www.debian.org | http://www.openoffice.org ,: ..` ` `- [EMAIL PROTECTED] | ' ` ` pgptCyHrkNN3n.pgp Description: PGP signature
Re: Hi :
Hi Tom On Thu, Oct 18, 2001 at 07:46:01PM +0100, Tom Breza wrote: Hi I got this today in my mail box, this is generated by somthing but I don't know what is it? Why I got message from root? and why is empty? also is strage a X-UIDL, what can generate that kind of mail and why is empty? do you have log2mail installed? palic@shaun:~$ dpkg -l | grep log2mail ii log2mail 0.2.5 Daemon watching logfiles and mailing lines m palic@shaun:~$ I do and I get empty mails from root, too. Why is it empty ... I think, because of missing configuration! Regards Jan -- One time, you all will be emulated by linux! Jan- Hendrik Palic Url:http://www.billgotchy.de; E-Mail: [EMAIL PROTECTED] -BEGIN GEEK CODE BLOCK- Version: 3.12 GCS d- s: a-- C++ UL++ P+++ L+++ E W++ N+ o+ K- w--- O- M- V- PS++ PE Y+ PGP++ t--- 5- X+++ R-- tv- b++ DI-- D+++ G+++ e+++ h+ r++ z+ --END GEEK CODE BLOCK-- PGP signature
Re: Hi :
Hi Tom On Thu, Oct 18, 2001 at 07:46:01PM +0100, Tom Breza wrote: Hi I got this today in my mail box, this is generated by somthing but I don't know what is it? Why I got message from root? and why is empty? also is strage a X-UIDL, what can generate that kind of mail and why is empty? do you have log2mail installed? [EMAIL PROTECTED]:~$ dpkg -l | grep log2mail ii log2mail 0.2.5 Daemon watching logfiles and mailing lines m [EMAIL PROTECTED]:~$ I do and I get empty mails from root, too. Why is it empty ... I think, because of missing configuration! Regards Jan -- One time, you all will be emulated by linux! Jan- Hendrik Palic Url:http://www.billgotchy.de; E-Mail: [EMAIL PROTECTED] -BEGIN GEEK CODE BLOCK- Version: 3.12 GCS d- s: a-- C++ UL++ P+++ L+++ E W++ N+ o+ K- w--- O- M- V- PS++ PE Y+ PGP++ t--- 5- X+++ R-- tv- b++ DI-- D+++ G+++ e+++ h+ r++ z+ --END GEEK CODE BLOCK-- pgpWjZfE8rh4V.pgp Description: PGP signature
Re: Sniffing SSH and HTTPS
Hi ... On Sat, Sep 01, 2001 at 04:54:32PM -0500, Rob Zietlow wrote: So it's not as much of an insecurity in the connections, it's mostly a user issue. Watch your keys, especially when they change unexpectedly (school changes thiers every 6 months). Ok .. I thought of it ... :) Thnx for all your questions. :) Regards Jan-Hendrik Palic -- One time, you all will be emulated by linux! Jan- Hendrik Palic Url:http://www.billgotchy.de; E-Mail: [EMAIL PROTECTED] -BEGIN GEEK CODE BLOCK- Version: 3.12 GCS d- s: a-- C++ UL++ P+++ L+++ E W++ N+ o+ K- w--- O- M- V- PS++ PE Y+ PGP++ t--- 5- X+++ R-- tv- b++ DI-- D+++ G+++ e+++ h+ r++ z+ --END GEEK CODE BLOCK-- -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Sniffing SSH and HTTPS
Hi ... On Sat, Sep 01, 2001 at 04:54:32PM -0500, Rob Zietlow wrote: So it's not as much of an insecurity in the connections, it's mostly a user issue. Watch your keys, especially when they change unexpectedly (school changes thiers every 6 months). Ok .. I thought of it ... :) Thnx for all your questions. :) Regards Jan-Hendrik Palic -- One time, you all will be emulated by linux! Jan- Hendrik Palic Url:http://www.billgotchy.de; E-Mail: [EMAIL PROTECTED] -BEGIN GEEK CODE BLOCK- Version: 3.12 GCS d- s: a-- C++ UL++ P+++ L+++ E W++ N+ o+ K- w--- O- M- V- PS++ PE Y+ PGP++ t--- 5- X+++ R-- tv- b++ DI-- D+++ G+++ e+++ h+ r++ z+ --END GEEK CODE BLOCK--
Sniffing SSH and HTTPS
Hi all... I have a small question. I found on SF a small tool, which may sniffing SSH and HTTPS (not tested). The Url is : http://ettercap.sourceforge.net/ Is it possible? Are SSH und HTTPS connections unsecure and how do we make is secure than? Greetings Jan -- One time, you all will be emulated by linux! Jan- Hendrik Palic Url:http://www.billgotchy.de; E-Mail: [EMAIL PROTECTED] -BEGIN GEEK CODE BLOCK- Version: 3.12 GCS d- s: a-- C++ UL++ P+++ L+++ E W++ N+ o+ K- w--- O- M- V- PS++ PE Y+ PGP++ t--- 5- X+++ R-- tv- b++ DI-- D+++ G+++ e+++ h+ r++ z+ --END GEEK CODE BLOCK-- PGP signature
Re: Sniffing SSH and HTTPS
Hi .. On Tue, Aug 28, 2001 at 06:44:59PM +0200, Davy Gigan wrote: Jan-Hendrik Palic writes: http://ettercap.sourceforge.net/ Is it possible? Are SSH und HTTPS connections unsecure and how do we make is secure than? old ssh protocol v1.5 IS a security hole, you can snif it. I don't know any vulnerability for the last OpenSSH_2.9p2 or OpenSSH_2.5.2p2 (which is last in debian security's updates) ... for the moment. Remember there is no 100% secure software. That' true. Don't know for https, but that's not a surprise then. Why? Greetings Jan -- One time, you all will be emulated by linux! Jan- Hendrik Palic Url:http://www.billgotchy.de; E-Mail: [EMAIL PROTECTED] -BEGIN GEEK CODE BLOCK- Version: 3.12 GCS d- s: a-- C++ UL++ P+++ L+++ E W++ N+ o+ K- w--- O- M- V- PS++ PE Y+ PGP++ t--- 5- X+++ R-- tv- b++ DI-- D+++ G+++ e+++ h+ r++ z+ --END GEEK CODE BLOCK-- PGP signature
Sniffing SSH and HTTPS
Hi all... I have a small question. I found on SF a small tool, which may sniffing SSH and HTTPS (not tested). The Url is : http://ettercap.sourceforge.net/ Is it possible? Are SSH und HTTPS connections unsecure and how do we make is secure than? Greetings Jan -- One time, you all will be emulated by linux! Jan- Hendrik Palic Url:http://www.billgotchy.de; E-Mail: [EMAIL PROTECTED] -BEGIN GEEK CODE BLOCK- Version: 3.12 GCS d- s: a-- C++ UL++ P+++ L+++ E W++ N+ o+ K- w--- O- M- V- PS++ PE Y+ PGP++ t--- 5- X+++ R-- tv- b++ DI-- D+++ G+++ e+++ h+ r++ z+ --END GEEK CODE BLOCK-- pgp4R36eT7ytb.pgp Description: PGP signature
Re: Sniffing SSH and HTTPS
Hi .. On Tue, Aug 28, 2001 at 06:44:59PM +0200, Davy Gigan wrote: Jan-Hendrik Palic writes: http://ettercap.sourceforge.net/ Is it possible? Are SSH und HTTPS connections unsecure and how do we make is secure than? old ssh protocol v1.5 IS a security hole, you can snif it. I don't know any vulnerability for the last OpenSSH_2.9p2 or OpenSSH_2.5.2p2 (which is last in debian security's updates) ... for the moment. Remember there is no 100% secure software. That' true. Don't know for https, but that's not a surprise then. Why? Greetings Jan -- One time, you all will be emulated by linux! Jan- Hendrik Palic Url:http://www.billgotchy.de; E-Mail: [EMAIL PROTECTED] -BEGIN GEEK CODE BLOCK- Version: 3.12 GCS d- s: a-- C++ UL++ P+++ L+++ E W++ N+ o+ K- w--- O- M- V- PS++ PE Y+ PGP++ t--- 5- X+++ R-- tv- b++ DI-- D+++ G+++ e+++ h+ r++ z+ --END GEEK CODE BLOCK-- pgpiAFPhsQZpm.pgp Description: PGP signature
joe....
Hi... the securityfix works with the new joe but when I tested it by killing joe, my keybord dies. I wasn't able to write a command, but I could switch between the consoles What is happend? Jan -- One time, you all will be emulated by linux! Jan- Hendrik Palic Url:http://www.billgotchy.de; E-Mail: [EMAIL PROTECTED] pgpE7ftYgwC1f.pgp Description: PGP signature