Re: [ilugd] how secure is 802.11b??
nothing is secure if u know how it works that shud answer yr question?? umesh - Original Message - DATE: Sat, 13 Dec 2003 21:42:40 From: vivek khurana [EMAIL PROTECTED] To: Delhi Linux [EMAIL PROTECTED] Cc: HI! Everyone I want to know is 802.11b is really secure for transmitting senestive data or should we relly on old wired lan for transmitting sensetive data within an organisation?? Also, which are the security technics can be used with 802.11b. with regards vivek = When DESTINY has closed all the DOORS; Jump out of the WINDOW __ Do you Yahoo!? New Yahoo! Photos - easier uploading and sharing. http://photos.yahoo.com/ ___ ilugd mailing list [EMAIL PROTECTED] http://frodo.hserus.net/mailman/listinfo/ilugd Free Poetry Contest. Win $10,000. Submit your poem @ Poetry.com! http://ad.doubleclick.net/clk;6750922;3807821;l?http://www.poetry.com/contest/contest.asp?Suite=A59101 ___ ilugd mailing list [EMAIL PROTECTED] http://frodo.hserus.net/mailman/listinfo/ilugd
Re: [ilugd] how secure is 802.11b??
Hi! --- umesh anand [EMAIL PROTECTED] wrote: nothing is secure if u know how it works that shud answer yr question?? umesh This doesnot answer my question. I know how pgp works bit i still use it as i know that chances of breaking in are really low. Next time please add snip while writing funny replies with reagrds vivek = When DESTINY has closed all the DOORS; Jump out of the WINDOW __ Do you Yahoo!? New Yahoo! Photos - easier uploading and sharing. http://photos.yahoo.com/ ___ ilugd mailing list [EMAIL PROTECTED] http://frodo.hserus.net/mailman/listinfo/ilugd
Re: [ilugd] Problem saving configuration!
--- Basanta Pradhan [EMAIL PROTECTED] wrote: Dear Anuj, I was also having same problem. That's why I have installed Redhat 8.0 in my PC. One thing I want to say is that I am a daily readers of Linux For You. I am having several CD's with me. But I can suggest that Using Redhat 8.0 in 2 or 3 CD version is the best. If U want any assistance U can contact me in my E-mail address. Basanta Kumar Pradhan Anuj Sharma [EMAIL PROTECTED] wrote: hi all, as an experiment i am running my system with no operating system on it. i am using the LiFY CD for October to boot. i 'saved my preferred configuration' made a 'persistant home'. when i reboot as per the instructions on typing 'linuxforu myconf=scan(or /dev/hda5 in my case)' the saved configuration should be loaded. however, while the 'config.tbz. file is found during boot the complete configuration is not restored. can anyone direct me as to what i may be doing wrong or not doing? LiFY is actually based on Knoppix. As far as I remember, Knoppix uses the cheatcode myconfig=scan or floppyconfig or floppyconf in recent editions. You can try these cheat codes. LiFY actually does not tell you as to which edition it is based on, so may be some hit and trial is required. -- narsingh Yahoo! India Mobile: Download the latest polyphonic ringtones. Go to http://in.mobile.yahoo.com ___ ilugd mailing list [EMAIL PROTECTED] http://frodo.hserus.net/mailman/listinfo/ilugd
[ilugd] (fwd) lftp buffer overflows
[Please upgrade if you use lftp -- Raju] This is an RFC 1153 digest. (1 message) -- MIME-Version: 1.0 Content-Type: multipart/mixed; boundary=-MOQ1071356882dc7d28edc7f4b82aef7a3d66873a35ad Message-ID: [EMAIL PROTECTED] From: =?iso-8859-1?b?SORybmhhbW1hciw=?= Ulf [EMAIL PROTECTED] Sender: [EMAIL PROTECTED] To: [EMAIL PROTECTED] Cc: [EMAIL PROTECTED], [EMAIL PROTECTED], [EMAIL PROTECTED] Subject: [Full-Disclosure] lftp buffer overflows Date: Sun, 14 Dec 2003 00:08:04 +0100 This message is in MIME format. ---MOQ1071356882dc7d28edc7f4b82aef7a3d66873a35ad Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable lftp buffer overflows - PROGRAM: lftp VENDOR: Alexander V. Lukyanov et al. HOMEPAGE: http://lftp.yar.ru/ VULNERABLE VERSIONS: 2.3.0, 2.4.9, 2.6.6, 2.6.7, 2.6.8, 2.6.9, probably all versions inbetween IMMUNE VERSIONS: 2.6.10, older versions with my patch applied * PROGRAM DESCRIPTION * lftp is a sophisticated command line based FTP client. It has a multithreaded design allowing you to issue and execute multiple commands simultaneosly or in the background. It also features mirroring capabilities and will reconnect and continue transfers in the event of a disconnection. Also, if you quit the program while transfers are still in progress, it will switch to nohup mode and finish the transfers in the background. HTTP protocol and FTP over HTTP proxy are supported. Version 2.3.0 includes HTTPS and FTP over SSL support. (direct quote from the program's project page at Freshmeat) lftp is free software/open source software, published under the terms of the GNU General Public License. It is one of the packages or ports in Red Hat Linux, SuSE Linux, Debian GNU/Linux, Slackware Linux, Mandrake Linux, Gentoo Linux, Conectiva Linux, OpenPKG, Yellow Dog Linux, Openwall GNU/*/Linux (Owl), ALT Linux, FreeBSD, NetBSD and OpenBSD, among others. * SUMMARY * I have found two buffer overflow security problems in lftp. They both occur when you connect to a web server with lftp using HTTP or HTTPS, and then use lftp's ls or rels commands on specially prepared directories on the web server. * TECHNICAL DETAILS * Technically, the problem lies in the file src/HttpDir.cc and the functions try_netscape_proxy() and try_squid_eplf(), which both have sscanf() calls that take data of an arbitrary length and store it in a char array with 32 elements. (Back in version 2.3.0, the problematic code was located in some other function, but the problem existed back then too.) Depending on the HTML document in the specially prepared directory, buffers will be overflown in either one function or the other. * SESSION CAPTURE * [EMAIL PROTECTED] src]$ ./lftp -v Lftp | Version 2.6.9 | Copyright (c) 1996-2002 Alexander V. Lukyanov This is free software with ABSOLUTELY NO WARRANTY. See COPYING for detail= s. Send bug reports and questions to [EMAIL PROTECTED]. [EMAIL PROTECTED] src]$ ./lftp lftp :~ open http://localhost/buffy/ lftp localhost:/buffy ls Segmentation fault [EMAIL PROTECTED] src]$ gdb lftp GNU gdb Red Hat Linux (5.3post-0.20021129.18rh) Copyright 2003 Free Software Foundation, Inc. GDB is free software, covered by the GNU General Public License, and you = are welcome to change it and/or distribute copies of it under certain conditi= ons. Type show copying to see the conditions. There is absolutely no warranty for GDB. Type show warranty for detail= s. This GDB was configured as i386-redhat-linux-gnu... (gdb) r Starting program: /none/of/your/business/lftp-2.6.9/src/lftp lftp :~ open http://localhost/buffy/ lftp localhost:/buffy ls Program received signal SIGSEGV, Segmentation fault. 0x0808e22c in FileSet::FindGEIndByName(char const*) const () (gdb) bt #0 0x0808e22c in FileSet::FindGEIndByName(char const*) const () #1 0x0808e2b1 in FileSet::FindByName(char const*) const () #2 0x080af550 in file_info::validate() () (gdb) i r eax0x 1431655765 ecx0x80e3af8135150328 edx0xb7f1b422 -1208896478 ebx0x 1431655765 esp0xbfffeaa0 0xbfffeaa0 ebp0xbfffeab8 0xbfffeab8 esi0xb5c0 -107378 edi0x 1431655765 eip0x808e22c0x808e22c eflags 0x210286 2163334 cs 0x23 35 ss 0x2b 43 ds 0x2b 43 es 0x2b 43 fs 0x0 0 gs 0x33 51 (gdb) quit The program is running. Exit anyway? (y or n) y [EMAIL PROTECTED] src]$ (Developing an exploit for this is left as an exercise to the malicious reader.) * SOLVING THE PROBLEM * You solve this problem by upgrading to 2.6.10 or by applying my attached patch. 2.6.10 is currently only available from lftp's FTP site, not from its homepage. * ATTACHED FILES * I have attached a .tar.gz
[ilugd] Re: New resource - Hacking CD
[EMAIL PROTECTED] wrote: Resource ID: 80 Title: Hacking CD Category: Software URL: http://xindia.4t.com Contact: Vikram Sethi Description: Get Hacking CD for more Visit Specified Site Inform when comment is added: ON Inform when resource is rated: ON - Submitted by Aatish Sethi on 12/14/2003 Just checked out the contents of the CD at http://xindia.4t.com/list.html . The contents include: * Hacking tutorial ,viruses, Scanners, Trojans , Crackers and many more for various platform like for Windows, NT ,Unix, Linux , Novell And Mac plus Key Loggers security tool to protect from DOS attack and many more * Hackers tools manly software contain Sniffers ,scanners ,Spoofers ,source code of various exploits ,Trojans , phreaking , programming and many more ... * Here you will get various cracker that will crack files for you and also get tutorials and learn how to crack around 200 - 230 Crackers and various Dictionaries too The CD should be named cracking CD. Besides, how much of the stuff here falls on the other side? I can understand sniffers and some scanners help in security auditing and other areas. But trojans? exploits? IMHO, this seems like contraband! :) - Sandip ___ ilugd mailing list [EMAIL PROTECTED] http://frodo.hserus.net/mailman/listinfo/ilugd
[ilugd] AutoCAD Drawing Viewer
For a large project, we have a large number of drawings in AutoCAD being submitted by the vendors for approval. Each file may be typically 2 MB in size. There may be changes at the approval stage, and some more at fabrication stage. These drwings are also required in the OM stages as also helpful in future upcoming projects. I am searching for a solution whereby all drawings can be catalogued in a Library Archive, can be searched by keywords, can be viewed in a browser. Also a way to capture the knowledge generated in the whole process. Is there any Open Source solution? A related poblem: The drawings are typically in sections of 3m for large structures as high as 30m or more in A0 size paper. For a group discussion, it becomes difficult to view the drawing comfortably, so inevitably a hard copy is required. Any technical solution for this?? Anand Shankar ___ ilugd mailing list [EMAIL PROTECTED] http://frodo.hserus.net/mailman/listinfo/ilugd
[ilugd] SQUID query
HI All I have just configured squid on one Linux box which acts as a child cache for one of the parent cache.I am able to browse through this proxy server but whenever I am trying to access google or any mail site it is not going further .If I search something in yahoo or google it is not able to search while it is able to search if I go through parent proxy server . Where am I wrong . I am sending the part of squid.conf . Thanks in advance . ***Squid.conf http_port 80 icp_port 3130 cache_peer 10.X.X.X parent 3128 0 no-query hierarchy_stoplist cgi-bin ? acl QUERY urlpath_regex cgi-bin \? no_cache deny QUERY cache_mem 32 MB cache_swap_low 90 cache_swap_high 95 maximum_object_size 4096 KB ipcache_size 1024 ipcache_low 90 cache_dir ufs /usr/local/squid/cache 1024 16 256 cache_access_log /usr/local/squid/logs/access.log cache_log /usr/local/squid/logs/cache.log pid_filename /usr/local/squid/logs/squid.pid refresh_pattern ^ftp: 1440 20% 10080 refresh_pattern ^gopher: 1440 0% 1440 refresh_pattern . 0 20% 4320 acl all src 0.0.0.0/0.0.0.0 acl manager proto cache_object acl localhost src 127.0.0.1/255.255.255.255 acl SSL_ports port 443 acl SSL_ports port 563 acl Safe_ports port 80 # http acl Safe_ports port 21 # ftp acl Safe_ports port 443 # https, snews acl Safe_ports port 563 # https, snews acl Safe_ports port 70 # gopher acl Safe_ports port 210 # wais acl Safe_ports port 1025-65535 # unregistered ports acl Safe_ports port 280 # http-mgmt acl Safe_ports port 488 # gss-http acl Safe_ports port 591 # filemaker acl Safe_ports port 777 # multiling http acl CONNECT method CONNECT http_access allow manager localhost http_access deny manager all http_access deny !Safe_ports http_access deny CONNECT !SSL_ports *** Regards Kamal ___ ilugd mailing list [EMAIL PROTECTED] http://frodo.hserus.net/mailman/listinfo/ilugd
Re: [ilugd] Dec Meet Program
On Fri, 2003-11-28 at 16:55, Ashwin Baindur wrote: Time : Begins at 1330h on 21 Dec 03 at B6, Raksha Bhawan, Man Singh Rd. Sketch wikll be put up online next week. Where is the sketch? Demo of simple install of Linux. RH9 / Fedora(?). 40 mins. Who is bringing the hardware? I had volunteered for a machine ??? Demo of a game by Pankaj Kaushal. 30 mins. Condition was that Guru's will show me how Tux Racer / other games can run without jerky motions. If I have to bring hardware I feel it would be better for me and the Guru who is going to load it up to be at your location an hour earlier so that things can be up and running.?? -- Sudev Barar Learning Linux ___ ilugd mailing list [EMAIL PROTECTED] http://frodo.hserus.net/mailman/listinfo/ilugd
Re: [ilugd] Dec Meet Program
Sudev == Sudev Barar [EMAIL PROTECTED] writes: Sudev On Fri, 2003-11-28 at 16:55, Ashwin Baindur wrote: Time : Begins at 1330h on 21 Dec 03 at B6, Raksha Bhawan, Man Singh Rd. Sketch wikll be put up online next week. Sudev Where is the sketch? Mea culpa -- the sketch will be up today. Demo of simple install of Linux. RH9 / Fedora(?). 40 mins. Sudev Who is bringing the hardware? I had volunteered for a Sudev machine ??? Demo of a game by Pankaj Kaushal. 30 mins. Sudev Condition was that Guru's will show me how Tux Racer / Sudev other games can run without jerky motions. I have Quake III and FooBillard running fine on a laptop, will bring that to the Meet as a proof of concept :) Haven't tried TuxRacer yet, will do so in a day or so. Sudev If I have to bring hardware I feel it would be better for Sudev me and the Guru who is going to load it up to be at your Sudev location an hour earlier so that things can be up and Sudev running.?? Regards, -- Raju -- Raj Mathur[EMAIL PROTECTED] http://kandalaya.org/ GPG: 78D4 FC67 367F 40E2 0DD5 0FEF C968 D0EF CC68 D17F It is the mind that moves ___ ilugd mailing list [EMAIL PROTECTED] http://frodo.hserus.net/mailman/listinfo/ilugd