RE: Hacked too?
Sorry but could someone please summerize what the "Hacked too?" thread is about? just got back into town and not making sense of the thread that i read in the archives Thankx
RE: Hacked too?
Sorry but could someone please summerize what the "Hacked too?" thread is about? just got back into town and not making sense of the thread that i read in the archives Thankx -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Hard Disk Organization
Just curious but how did you lose the data? I seem to hve run into huge disk prlbems with page defualts On 8 Nov 2001, eim wrote: >Date: 08 Nov 2001 22:28:11 +0100 >From: eim <[EMAIL PROTECTED]> >To: Debian-Security List >Subject: Hard Disk Organization >Resent-From: debian-security@lists.debian.org > >Two days ago I've lost all my Personal Data on my Second HDD, >Personal Data like Photos, Images, Audio Stuff, Source Code, >Mails: everything gone...! > >I had some Backups fortuneatly but most stuff is lost forever. > >Well, now I'm Ready to start my Personal Data Organization from >the begining, I've a Debian SCSI Workstation with 2 x 8GB SCSI >Drives, "sda" and "sdb". > >Until now my Data Organization was like this: > >HD0 >- >/dev/sda1 = / (Debian root paritition)7900 MB >/dev/sda2 = swap (swap paritition) 100 MB >- > >HD1 >- >/dev/sdb1 = /mnt/d (Personal Data) 8000 MB >- > > >My user home directory is in "/home/eim" on sda1 but most >of my Real Important Files are in "/mnt/d" which is sdb1. > >So I've lost sdb1 and all my important data, but fortunately >my home dir is still there ! > >My question is, has somebody any suggestions on how to >organize personal data, maybe some Real Life examples in >order to share opinions on a Secure and Safe Data Organization. >I'm of course talking about a Work Station and not a Server for >many different users. > >If anyone has some examples or suggestions I'm ready to >share any ideas... > >Thanks for any help, >Have a good time... > >Ivo Marino > >
Re: Hard Disk Organization
Just curious but how did you lose the data? I seem to hve run into huge disk prlbems with page defualts On 8 Nov 2001, eim wrote: >Date: 08 Nov 2001 22:28:11 +0100 >From: eim <[EMAIL PROTECTED]> >To: Debian-Security List <[EMAIL PROTECTED]> >Subject: Hard Disk Organization >Resent-From: [EMAIL PROTECTED] > >Two days ago I've lost all my Personal Data on my Second HDD, >Personal Data like Photos, Images, Audio Stuff, Source Code, >Mails: everything gone...! > >I had some Backups fortuneatly but most stuff is lost forever. > >Well, now I'm Ready to start my Personal Data Organization from >the begining, I've a Debian SCSI Workstation with 2 x 8GB SCSI >Drives, "sda" and "sdb". > >Until now my Data Organization was like this: > >HD0 >- >/dev/sda1 = / (Debian root paritition)7900 MB >/dev/sda2 = swap (swap paritition) 100 MB >- > >HD1 >- >/dev/sdb1 = /mnt/d (Personal Data) 8000 MB >- > > >My user home directory is in "/home/eim" on sda1 but most >of my Real Important Files are in "/mnt/d" which is sdb1. > >So I've lost sdb1 and all my important data, but fortunately >my home dir is still there ! > >My question is, has somebody any suggestions on how to >organize personal data, maybe some Real Life examples in >order to share opinions on a Secure and Safe Data Organization. >I'm of course talking about a Work Station and not a Server for >many different users. > >If anyone has some examples or suggestions I'm ready to >share any ideas... > >Thanks for any help, >Have a good time... > >Ivo Marino > > -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Was I hacked into? who is user "nobody"? please help....
you are ok, it is doing housekeeping G On Mon, 5 Nov 2001, Gianguido Cianci wrote: >Date: Mon, 05 Nov 2001 09:59:54 -0500 >From: Gianguido Cianci <[EMAIL PROTECTED]> >To: debian-security@lists.debian.org, debian-user@lists.debian.org >Subject: Was I hacked into? who is user "nobody"? please help >Resent-From: debian-security@lists.debian.org > > > >Hi all, > > >a few minutes ago I heard my PC getting into a lot of fuss over something, >the HDD was spinning like crazy... so I looked at "top" and found that user >"nobody" was running a "find" comand > >Now, is this a bad thing? it SURE looks liek one. > >Thanks a lot, > >Gianguido > >PS please carbon copy your answers to this address too: I am not on the list >cos I don't know enough even to help the newest of newbies :-( > >_ >Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp > > >
Re: Was I hacked into? who is user "nobody"? please help....
you are ok, it is doing housekeeping G On Mon, 5 Nov 2001, Gianguido Cianci wrote: >Date: Mon, 05 Nov 2001 09:59:54 -0500 >From: Gianguido Cianci <[EMAIL PROTECTED]> >To: [EMAIL PROTECTED], [EMAIL PROTECTED] >Subject: Was I hacked into? who is user "nobody"? please help >Resent-From: [EMAIL PROTECTED] > > > >Hi all, > > >a few minutes ago I heard my PC getting into a lot of fuss over something, >the HDD was spinning like crazy... so I looked at "top" and found that user >"nobody" was running a "find" comand > >Now, is this a bad thing? it SURE looks liek one. > >Thanks a lot, > >Gianguido > >PS please carbon copy your answers to this address too: I am not on the list >cos I don't know enough even to help the newest of newbies :-( > >_ >Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp > > > -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Hi :>
Please let me know also, because I have been getting empty messages from root too On Thu, 18 Oct 2001, Tom Breza wrote: >Date: Thu, 18 Oct 2001 19:46:01 +0100 (BST) >From: Tom Breza <[EMAIL PROTECTED]> >To: debian-security@lists.debian.org >Subject: Hi :> >Resent-From: debian-security@lists.debian.org > > >Hi I got this today in my mail box, this is generated by somthing but I >don't know what is it? Why I got message from root? and why is empty? >also is strage a X-UIDL, >what can generate that kind of mail and why is empty? > >Tom > >Type Bits/KeyIDDate User ID >pub 1024/0B22D0E1 2001/09/23 Tom Breza <[EMAIL PROTECTED]> > >-BEGIN PGP PUBLIC KEY BLOCK- >Version: 2.6.3ia > >mQCNAzuuMNoAAAEEAOa8EvOztpYuHXxwb/NZVjDmXbutOK6wqF29SAnoXkiHB0ta >fGrNgcPPJoryN+291o4nxMWE2fCYNuArS8+0m9zMA5829QV2lSkkbrRXR2LLVYc4 >1bpubOom2DD2Qi+kHHYEFHdczavFxfGeQgbDCceF7uM3G5lGMxGsydsLItDhAAUR >tCNUb20gQnJlemEgPFRvbUBQQ1NlcnZpY2UtTkVULmNvLnVrPokAlQMFEDuuMNoR >rMnbCyLQ4QEBMA4EALUdA5IKzjSNVlVtRbpuuhZc4pf1qJuDn0bdSIg9vPmadXNS >uoqZn5UY8inYgx06y2RwsAf2o7ncyC33mf7cmcQ3Z6g9mfvHXPC+azfbb+RLc5be >pE3qYm1zvfQzzFT+Z4U1YvuNNfmASBsANo1ulR3rAYqKKtBMkwC1hFEysXlN >=dZ9o >-END PGP PUBLIC KEY BLOCK- > >-- Forwarded message -- >Envelope-to: [EMAIL PROTECTED] >Received: from localhost ([127.0.0.1]) > by laptop with esmtp (Exim 3.32 #1 (Debian)) > id 15u6Et-0003cm-01 > for <[EMAIL PROTECTED]>; Thu, 18 Oct 2001 07:01:07 +0100 >Received: from 192.168.253.254 [192.168.253.254] > by localhost with POP3 (fetchmail-5.9.0) > for [EMAIL PROTECTED] (single-drop); Thu, 18 Oct 2001 07:01:07 +0100 > (BST) >Received: from root by router with local (Exim 3.22 #1 (Debian)) > id 15u5g1-JF-00 > for <[EMAIL PROTECTED]>; Thu, 18 Oct 2001 06:25:05 +0100 >Message-Id: <[EMAIL PROTECTED]> >From: root <[EMAIL PROTECTED]> >To: [EMAIL PROTECTED] >Date: Thu, 18 Oct 2001 06:25:05 +0100 >X-UIDL: iX2"!]6*!!\]2!!UV/"! > > > > >
Re: Hi :>
Please let me know also, because I have been getting empty messages from root too On Thu, 18 Oct 2001, Tom Breza wrote: >Date: Thu, 18 Oct 2001 19:46:01 +0100 (BST) >From: Tom Breza <[EMAIL PROTECTED]> >To: [EMAIL PROTECTED] >Subject: Hi :> >Resent-From: [EMAIL PROTECTED] > > >Hi I got this today in my mail box, this is generated by somthing but I >don't know what is it? Why I got message from root? and why is empty? >also is strage a X-UIDL, >what can generate that kind of mail and why is empty? > >Tom > >Type Bits/KeyIDDate User ID >pub 1024/0B22D0E1 2001/09/23 Tom Breza <[EMAIL PROTECTED]> > >-BEGIN PGP PUBLIC KEY BLOCK- >Version: 2.6.3ia > >mQCNAzuuMNoAAAEEAOa8EvOztpYuHXxwb/NZVjDmXbutOK6wqF29SAnoXkiHB0ta >fGrNgcPPJoryN+291o4nxMWE2fCYNuArS8+0m9zMA5829QV2lSkkbrRXR2LLVYc4 >1bpubOom2DD2Qi+kHHYEFHdczavFxfGeQgbDCceF7uM3G5lGMxGsydsLItDhAAUR >tCNUb20gQnJlemEgPFRvbUBQQ1NlcnZpY2UtTkVULmNvLnVrPokAlQMFEDuuMNoR >rMnbCyLQ4QEBMA4EALUdA5IKzjSNVlVtRbpuuhZc4pf1qJuDn0bdSIg9vPmadXNS >uoqZn5UY8inYgx06y2RwsAf2o7ncyC33mf7cmcQ3Z6g9mfvHXPC+azfbb+RLc5be >pE3qYm1zvfQzzFT+Z4U1YvuNNfmASBsANo1ulR3rAYqKKtBMkwC1hFEysXlN >=dZ9o >-END PGP PUBLIC KEY BLOCK- > >-- Forwarded message -- >Envelope-to: tom@localhost >Received: from localhost ([127.0.0.1]) > by laptop with esmtp (Exim 3.32 #1 (Debian)) > id 15u6Et-0003cm-01 > for ; Thu, 18 Oct 2001 07:01:07 +0100 >Received: from 192.168.253.254 [192.168.253.254] > by localhost with POP3 (fetchmail-5.9.0) > for tom@localhost (single-drop); Thu, 18 Oct 2001 07:01:07 +0100 (BST) >Received: from root by router with local (Exim 3.22 #1 (Debian)) > id 15u5g1-JF-00 > for <[EMAIL PROTECTED]>; Thu, 18 Oct 2001 06:25:05 +0100 >Message-Id: >From: root <[EMAIL PROTECTED]> >To: [EMAIL PROTECTED] >Date: Thu, 18 Oct 2001 06:25:05 +0100 >X-UIDL: iX2"!]6*!!\]2!!UV/"! > > > > > -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Security Update
If you are using stable, you should look at souces.list in /etc/apt and uncomment the security url and type apt-get update apt-get upgrade and that should do you fine. But this is only if you are using the stable distribution On Sun, 14 Oct 2001, Mark Rompies wrote: >Date: Sun, 14 Oct 2001 03:21:54 +0700 >From: Mark Rompies <[EMAIL PROTECTED]> >To: debian-security@lists.debian.org >Subject: Security Update >Resent-From: debian-security@lists.debian.org > >Hi! > >I've just use Debian for the first time in my life. I want to upgrade the >applications or anything to mmake it more secure (i think it will use apps >from security.debian.org). The problem is very simple: > >what commands should i type from the console to update the security fixes >for a/any package(s)? Could i use apt-get? > >thx.. > > >
Re: Security Update
If you are using stable, you should look at souces.list in /etc/apt and uncomment the security url and type apt-get update apt-get upgrade and that should do you fine. But this is only if you are using the stable distribution On Sun, 14 Oct 2001, Mark Rompies wrote: >Date: Sun, 14 Oct 2001 03:21:54 +0700 >From: Mark Rompies <[EMAIL PROTECTED]> >To: [EMAIL PROTECTED] >Subject: Security Update >Resent-From: [EMAIL PROTECTED] > >Hi! > >I've just use Debian for the first time in my life. I want to upgrade the >applications or anything to mmake it more secure (i think it will use apps >from security.debian.org). The problem is very simple: > >what commands should i type from the console to update the security fixes >for a/any package(s)? Could i use apt-get? > >thx.. > > > -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: iptables logging
On Mon, 23 Jul 2001, Jeff Coppock wrote: > > > > iptables -A log -j LOG --log-prefix "Rejected: " # be verbose in syslog > > iptables -A log -j delete # hand over package to "delete" > > What more information does log prefix add to the log? thankx G
Re: iptables logging
On Mon, 23 Jul 2001, Jeff Coppock wrote: > > > > iptables -A log -j LOG --log-prefix "Rejected: " # be verbose in syslog > > iptables -A log -j delete # hand over package to "delete" > > What more information does log prefix add to the log? thankx G -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Snort
On Tue, 10 Jul 2001, Jeremy T. Bouse wrote: > > Snort actually dumps the raw packet details into log files in the > /var/log/snort directory... These can be open'd using Ethereal and you are > able to take a closer look at the packets themselves with relative ease... > So i should use etheral to look at way dumps? G > Respectfully, > Jeremy T. Bouse > > dude was said to been seen saying: > > > > Is there any way to get snort to send more than > > daily reports from snort? > > > > I've looked and cant fidn the answer. > > > > Thanks, > > > > G > > > > -- > ,-, > |Jeremy T. Bouse, CCNA - UnderGrid Network Services, LLC - www.UnderGrid.net > | > |Public PGP/GPG fingerprint and location in headers of message > | > | If received unsigned (without requesting as such) DO NOT trust it! > | > | [EMAIL PROTECTED] - NIC Whois: JB5713 - [EMAIL PROTECTED] | > `-' >
Re: Snort
On Tue, 10 Jul 2001, Jeremy T. Bouse wrote: > > Snort actually dumps the raw packet details into log files in the > /var/log/snort directory... These can be open'd using Ethereal and you are > able to take a closer look at the packets themselves with relative ease... > So i should use etheral to look at way dumps? G > Respectfully, > Jeremy T. Bouse > > dude was said to been seen saying: > > > > Is there any way to get snort to send more than > > daily reports from snort? > > > > I've looked and cant fidn the answer. > > > > Thanks, > > > > G > > > > -- > ,-, > |Jeremy T. Bouse, CCNA - UnderGrid Network Services, LLC - www.UnderGrid.net | > |Public PGP/GPG fingerprint and location in headers of message| > | If received unsigned (without requesting as such) DO NOT trust it! | > | [EMAIL PROTECTED] - NIC Whois: JB5713 - [EMAIL PROTECTED] | > `-' > -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Snort
Is there any way to get snort to send more than daily reports from snort? I've looked and cant fidn the answer. Thanks, G
Snort
Is there any way to get snort to send more than daily reports from snort? I've looked and cant fidn the answer. Thanks, G -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
