Re: News server ?
-> > Is there any other way to get your mails? I have to fetch about a 20 mailis -> > per day, Is the debian-security on any news server? like -> > debian.security.annonce ? -> > thx pshemol -> -> i was informed last time that i asked that all debian lists should be in USENET -> under linux.debian.* and this particular list should be -> linux.debian.announce.security (although all servers i've checked don't have -> this group) well so, 1. I've heard some time ago the linux.* hierarchy is dead. 2. debian is NOT a linux distribution - it's packaging system so, if at all, comp.os.debian or comp.unix.debian would be much better. I am planning to make gateway with debian mailing lists gatewayed for my personal tests, on my machine or our firm news server, but it will take some time. Then, probably... -- Matus "fantomas" Uhlar, sysadmin at NEXTRA, Slovakia; IRCNET admin of *.sk [EMAIL PROTECTED] ; http://www.fantomas.sk/ ; http://www.nextra.sk/ WinError #9: Out of error messages.
Re: News server ?
-> > Is there any other way to get your mails? I have to fetch about a 20 mailis -> > per day, Is the debian-security on any news server? like -> > debian.security.annonce ? -> > thx pshemol -> -> i was informed last time that i asked that all debian lists should be in USENET -> under linux.debian.* and this particular list should be -> linux.debian.announce.security (although all servers i've checked don't have -> this group) well so, 1. I've heard some time ago the linux.* hierarchy is dead. 2. debian is NOT a linux distribution - it's packaging system so, if at all, comp.os.debian or comp.unix.debian would be much better. I am planning to make gateway with debian mailing lists gatewayed for my personal tests, on my machine or our firm news server, but it will take some time. Then, probably... -- Matus "fantomas" Uhlar, sysadmin at NEXTRA, Slovakia; IRCNET admin of *.sk [EMAIL PROTECTED] ; http://www.fantomas.sk/ ; http://www.nextra.sk/ WinError #9: Out of error messages. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: 127.0.0.0/8 addresses from the network
-> > is debian protected beforeconnecting from remote hosts to address
-> > 127.0.0.0/8 ?
-> >
-> > how?
->
->
-> [amos]:~/# grep spoof-protect /etc/init.d/networking
-> if [ -e /etc/network/spoof-protect ]; then
-> . /etc/network/spoof-protect
->
-> [amos]:~/# grep 127.0.0.1 /etc/network/spoof-protect
-> LOCAL_IPS="127.0.0.1/8"
->
-> [amos]:~/# grep LOCAL_IPS /etc/init.d/networking -A4|tail -5
-> for ip in $LOCAL_IPS; do
-> ipchains -D input -j DENY -l -s $ip -i ! lo 2>/dev/null || true
-> ipchains -A input -j DENY -l -s 127.0.0.0/8 -i ! lo
-> done
well but this one is (according to the source) called only on 2.0 and 2.1
kernels.
I have kernel 2.2 and no ipchains rule in kernel set up
btw shouldn't ipchains stay BEFORE ipfwadm ? (afaik ipchains is newer then
ipfwadm)
spoofprotect () {
echo -n "Setting up IP spoofing protection: "
if spoofprotect_rp_filter; then
echo "rp_filter."
elif spoofprotect_ipfwadm; then
echo "ipfwadm."
elif spoofprotect_ipchains; then
echo "ipchains."
else
echo "FAILED"
fi
}
i runned this command:
up route add -net 127.0.0.0/8 dev lo
into /etc/network/interfaces into lo configl;
is that ok, isn't it superflous etc?
--
Matus "fantomas" Uhlar, sysadmin at NEXTRA, Slovakia; IRCNET admin of *.sk
[EMAIL PROTECTED] ; http://www.fantomas.sk/ ; http://www.nextra.sk/
Support bacteria - they're the only culture some people have.
Re: 127.0.0.0/8 addresses from the network
-> > is debian protected beforeconnecting from remote hosts to address
-> > 127.0.0.0/8 ?
-> >
-> > how?
->
->
-> [amos]:~/# grep spoof-protect /etc/init.d/networking
-> if [ -e /etc/network/spoof-protect ]; then
-> . /etc/network/spoof-protect
->
-> [amos]:~/# grep 127.0.0.1 /etc/network/spoof-protect
-> LOCAL_IPS="127.0.0.1/8"
->
-> [amos]:~/# grep LOCAL_IPS /etc/init.d/networking -A4|tail -5
-> for ip in $LOCAL_IPS; do
-> ipchains -D input -j DENY -l -s $ip -i ! lo 2>/dev/null || true
-> ipchains -A input -j DENY -l -s 127.0.0.0/8 -i ! lo
-> done
well but this one is (according to the source) called only on 2.0 and 2.1
kernels.
I have kernel 2.2 and no ipchains rule in kernel set up
btw shouldn't ipchains stay BEFORE ipfwadm ? (afaik ipchains is newer then
ipfwadm)
spoofprotect () {
echo -n "Setting up IP spoofing protection: "
if spoofprotect_rp_filter; then
echo "rp_filter."
elif spoofprotect_ipfwadm; then
echo "ipfwadm."
elif spoofprotect_ipchains; then
echo "ipchains."
else
echo "FAILED"
fi
}
i runned this command:
up route add -net 127.0.0.0/8 dev lo
into /etc/network/interfaces into lo configl;
is that ok, isn't it superflous etc?
--
Matus "fantomas" Uhlar, sysadmin at NEXTRA, Slovakia; IRCNET admin of *.sk
[EMAIL PROTECTED] ; http://www.fantomas.sk/ ; http://www.nextra.sk/
Support bacteria - they're the only culture some people have.
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
127.0.0.0/8 addresses from the network
HEllo, is debian protected beforeconnecting from remote hosts to address 127.0.0.0/8 ? how? -- Matus "fantomas" Uhlar, sysadmin at NEXTRA, Slovakia; IRCNET admin of *.sk [EMAIL PROTECTED] ; http://www.fantomas.sk/ ; http://www.nextra.sk/ If Barbie is so popular, why do you have to buy her friends?
127.0.0.0/8 addresses from the network
HEllo, is debian protected beforeconnecting from remote hosts to address 127.0.0.0/8 ? how? -- Matus "fantomas" Uhlar, sysadmin at NEXTRA, Slovakia; IRCNET admin of *.sk [EMAIL PROTECTED] ; http://www.fantomas.sk/ ; http://www.nextra.sk/ If Barbie is so popular, why do you have to buy her friends? -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
