Re: lug-bg: Security ...
Vesselin Markov wrote: environment phpinfo(). echo/= , . (,...) . vhost. -- Georgi Chorbadzhiyski http://georgi.unixsol.org/ A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers). http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html
lug-bg: Security ...
, . phpinfo() ? .. ? , , , . , , MySql-,, . . -- Andrei Boyanov CEO of Active Solutions Ltd. http://activesolutions.bg; http://andrei.activesolutions.bg A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers). http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html
Re: lug-bg: Security ...
Andrei Boyanov wrote: , . phpinfo() ? .. ? , , , ., , MySql-,, . . MySql-a, . MySql-a .
RE: lug-bg: Security ...
, . , , , IP . - SSL. , . . http://www.google.com/search?hl=enlr=q=pros+and+cons+of+exposing+phpinfo%2 8%29+contentsbtnG=Search -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Andrei Boyanov Sent: Tuesday, May 03, 2005 6:33 PM To: lug-bg@linux-bulgaria.org Subject: lug-bg: Security ... , . phpinfo() ? .. ? , , , . , , MySql-,, . . -- Andrei Boyanov CEO of Active Solutions Ltd. http://activesolutions.bg; http://andrei.activesolutions.bg A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers). http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers). http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html
RE: lug-bg: Security ...
, , . . -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Andrei Boyanov Sent: Tuesday, May 03, 2005 6:33 PM To: lug-bg@linux-bulgaria.org Subject: lug-bg: Security ... , . phpinfo() ? .. ? , , , . , , MySql-,, . . -- Andrei Boyanov CEO of Active Solutions Ltd. http://activesolutions.bg; http://andrei.activesolutions.bg A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers). http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers). http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html
Re: lug-bg: Security ...
, 2005-05-03 18:33 +0300, Andrei Boyanov : , . phpinfo() ? .. ? ( , webtech 2005) - mysql environment , phpinfo(). ( , ), :) signature.asc Description: This is a digitally signed message part
RE: lug-bg: Security ...
environment phpinfo(). echo/= , . (,...) . -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Vasil Kolev Sent: Tuesday, May 03, 2005 9:16 PM To: lug-bg@linux-bulgaria.org Subject: Re: lug-bg: Security ... , 2005-05-03 18:33 +0300, Andrei Boyanov : , . phpinfo() ? .. ? ( , webtech 2005) - mysql environment , phpinfo(). ( , ), :) A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers). http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html
lug-bg: Security test
GWN http://www.gentoo.org/news/en/gwn/20030609-newsletter.xml ( :) selinux.dev.gentoo.org security enhanced gentoo linux. root ( ) # ssh [EMAIL PROTECTED]gentoo . irc irc.freenode.org #gentoo-hardened . - http://mail.e-card.bg A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers). http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html
Re: lug-bg: Security Win2000 Terminal Client over internet
On 23 01 2003 08:38, Ïåòúð Ìàðêîâ wrote: Zdraveyte. BLAGODARIA mnogo na vsichki koito se otzovaha! I poneje, kakto vijdam i ot drugi postingi, spomenavaneto na Windows v tozi forum e v sastoianie da izvede ot ravnovesie dosta hora, neka da modificirame malko zadachata do slednia variant... (koito, predpolagam, shte zainteriguva vsichki Linux-specialisti:-) I taka... Imame kanal za danni koito triabva da se prekarat prez I-net no.. zakodirani...v realno vreme i dvuposochna vrazka... I neka da konkretizirame taka... SQL prilojenie koeto access-va SQL server prez i-net... Priemame che niama da pipame nito clienta nito servera zasto ne opitash s SSH tunnel mezhu dvata Linux-a. (man ssh, see -L port:host:hostport -R port:host:hostport options) [on local Machine1 SQLdaemon - ssh] /\ | | prenosna---sreda | | \/ [ssh - SQLclient on remote Machine2] (-L) Daden port na Machine1 se forword-va kym daden port na Machine2. (-R) Daden port na Machine2 se forword-va kym daden port na Machine1. ili Port1 on IP1 - Port2 na IP2 dvyposo4no i kodirano i kakvoto poddyrzha (Open)SSH tam T.e IP and Port forwording ot user space. I razbira se tova vazhi za vsqka service, dori i za active i passive FTP, dva ssh tunela trea svyrshat rabota ;-) Triabva da slojin ot dvete strani Linux-box-ove koito da podsiguriat kodiraneto na dannite. sega kak ste navyrzhete Winz-LinuxinetLinux-Winz si e vasha rabota. Mozhe po podoben na4in ili prosto Winz users polu4avat shells on Linux machines ako sa dostoverni lica ;-)... Ima i drugi resheniq razbira se de. -- Greets, fr33zb1 A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers). http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html
Re: lug-bg: Security Win2000 Terminal Client over internet
On 23 01 2003 12:01, Ïåòúð Ìàðêîâ wrote: Êàê äà ñè îðãàíèçèðàì ñèãóðíà êîìóíèêàöèÿ ÷ðåç Ëèíóêñ ìàðøðóòèçàòîðè/ðóòåðè? Îê, åòî ïàê (íàäÿâàì ñå ïî-ÿñíî;). Íàïðèìåð SQL ñåñèÿ ñ PostgreSQL ïðåç SSH òóíåë. localhost - 1.1.1.1 (client) psql, ssh1, sshd. ( L1 ) -L 5432 : 2.2.2.2 : 2345 ( R1 ) -R 2345 : 1.1.1.1 : 5432 remotehost - 2.2.2.2 (server) --- PostgreSQL, ssh2, sshd ( L2 ) -L 5432 : 1.1.1.1 : 2345 ( R2 ) -R 2345 : 2.2.2.2 : 5432 Íà 1.1.1.1 ñå èíèöèèðà ëîêàëíà êîíåêöèÿ êúì ïîðò 5432, (psql -p 5432 -h 1.1.1.1) êîÿòî ssh1 ïðèõâàùà è forward-âà (ïî secure channel) êúì ïîðò 2345 íà õîñò 2.2.2.2 ( L1 ). Òàì ssh2 ìó å êàçàíî äà ñëóøà îòäàëå÷åíèÿ ïîðò 2345 íà õîñò 1.1.1.1 ïðèõâàùà è ãî forward-âà êúì ëîêàëíèÿ ñè ïîðò 5432 (R2). Òàì ñëóøà PostgreSQL è îòãîâàðÿ ëîêàëíî íà ïîðò 5432 íà õîñò 2.2.2.2, êîÿòî ssh2 forward-âà êúì îòäàëå÷åíèÿ ïîðò 2345 íà 1.1.1.1 ( L2). Òàì ssh1 ñëóøà è forward-âà êúì ëîêàëíèÿ ñè 5432 ( R! ). Ïî-íàòàòúê ïîçíàé ;-) (Äàëè îáúðêàõ ìíîãî íåùàòà). Îñòàâà äà ñå ïðî÷åòå man ssh íàïðèìåð. -- Greets, fr33zb1 A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers). http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html
Re: lug-bg: Security Win2000 Terminal Client over internet
http://sites.inka.de/sites/bigred/devel/tcp-tcp.html - Original Message - From: George Danchev [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Thursday, January 23, 2003 1:47 PM Subject: Re: lug-bg: Security Win2000 Terminal Client over internet On 23 01 2003 12:01, Ïåòúð Ìàðêîâ wrote: Êàê äà ñè îðãàíèçèðàì ñèãóðíà êîìóíèêàöèÿ ÷ðåç Ëèíóêñ ìàðøðóòèçàòîðè/ðóòåðè? Îê, åòî ïàê (íàäÿâàì ñå ïî-ÿñíî;). Íàïðèìåð SQL ñåñèÿ ñ PostgreSQL ïðåç SSH òóíåë. localhost - 1.1.1.1 (client) psql, ssh1, sshd. ( L1 ) -L 5432 : 2.2.2.2 : 2345 ( R1 ) -R 2345 : 1.1.1.1 : 5432 remotehost - 2.2.2.2 (server) --- PostgreSQL, ssh2, sshd ( L2 ) -L 5432 : 1.1.1.1 : 2345 ( R2 ) -R 2345 : 2.2.2.2 : 5432 Íà 1.1.1.1 ñå èíèöèèðà ëîêàëíà êîíåêöèÿ êúì ïîðò 5432, (psql -p 5432 -h 1.1.1.1) êîÿòî ssh1 ïðèõâàùà è forward-âà (ïî secure channel) êúì ïîðò 2345 íà õîñò 2.2.2.2 ( L1 ). Òàì ssh2 ìó å êàçàíî äà ñëóøà îòäàëå÷åíèÿ ïîðò 2345 íà õîñò 1.1.1.1 ïðèõâàùà è ãî forward-âà êúì ëîêàëíèÿ ñè ïîðò 5432 (R2). Òàì ñëóøà PostgreSQL è îòãîâàðÿ ëîêàëíî íà ïîðò 5432 íà õîñò 2.2.2.2, êîÿòî ssh2 forward-âà êúì îòäàëå÷åíèÿ ïîðò 2345 íà 1.1.1.1 ( L2). Òàì ssh1 ñëóøà è forward-âà êúì ëîêàëíèÿ ñè 5432 ( R! ). Ïî-íàòàòúê ïîçíàé ;-) (Äàëè îáúðêàõ ìíîãî íåùàòà). Îñòàâà äà ñå ïðî÷åòå man ssh íàïðèìåð. -- Greets, fr33zb1 A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers). http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers). http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html
Re: lug-bg: Security Win2000 Terminal Client over internet
On 23 01 2003 14:07, Teodor Georgiev wrote: http://sites.inka.de/sites/bigred/devel/tcp-tcp.html ïîäîáíè ðàçñúæäåíèÿ ñà äîíÿêúäå âåðíè è äîíÿêúäå íåâåðíè, ò.å. âèíàãè èìà êîìïðîìèñ è âñÿêàêâè ãåíåðàëèçàöèè ñà íåòî÷íè ;-). Ãîëÿìàòà ñòàáèëíîñò âîäè äî ïîíèæåíà ìàíåâðåíîñò è îáðàòíî, ò.å. âçàèìíî èçêëþ÷âàùè ñà, íî ìîæå äà ñå íàìåðè (èëè ïîñòîÿííî äà ñå òúðñè) êîìïðîìèñíî ïîëîæåíèå ìåæäó òÿõ. Òà àêî äîëíîòî TCP (TCP åíêàïñóëèðàíî â TCP) ïî÷íå äà ãóáè ïàêåòè è ïîðàäè òîâà, ÷å è äâàòà TCP ñëîÿ upper è lower ñå ñàìîïîäñèãóðÿò ñàìîíàãàæäàéêè ñå íåïðåêúñíàòî è íåçàâèñèìî åäèí îò äðóã è íåçíàÿò åäèí çà äðóã è òîâà å ëîøî (à òî íåñúìíåíî å äî èçâåñòíà ñòåïåí), òî êàêâî îñòàâà àêî UDP åíêàïñóëèðàíî â TCP è TCP ïàê çàïî÷íå äà ãóáè èëè ïîëó÷àâà ðàçáúðêàíè ïàêåòè, òî íåñúìíåíî TCP ïàê ùå îïèòà äà îïðàâè ñâîÿòà ïîðåäèöà îò ïàêåòè ñúñ çàáúðçâàíå è çàáàâÿíå, à ïúê UDP-òî îòãîðå ïàê íÿìà äà çíàå çà òîâà (ò.å. ïàê íå ñà ñèíõðîíèçèðàíè upper è lower layers) è âúîáùå íå ãî å ãðèæà çà ñàìîíàñòðîéêàòà èëè ñàìîíàãàæäàíåòî è ïðàâèëíîñòòà íà ïîðåäèöàòà îò ïàêåòè, à ñàìî êàçâà äàâàé äà ïðèåìàìå/ïðåäàâàìå... Ò.å. íå å êàçàíî ÷å äîëíîòî TCP ùå ãàðàíòèðà UDP-òî íàä íåãî, èëè ïî-òî÷íî íå âúâ âñè÷êè ñëó÷àè. Äà ðå÷åì ÷å ùå ìó ïîäðåæäà ïàêåòèòå â ïðàâèëíèÿ ðåä íåçàâèñèìî êàê ñà äîøëè ïðè TCP-òî... àêî TCP stall-íå è UDP-òî âåðîÿòíî ùå ãî óñåòè... ;-). Ò.å. ëèïñàòà íà äàäåíè features (think UDP) íå çíà÷è ÷å èìàø (íåîáõîäèìèòå) äðóãè features çà äà ãî êîìïåíñèðàø... Îò äðóãà ñòðàíà íàëè÷èåòî íà features (think TCP) íå çíà÷è ÷å òå íÿêîãà íÿìà äà òè ïîïðå÷àò çà íåùî ñè... Àáå áàÿ flame ìîæàì äà ñè ñïðåòíåì òóêà ... À SSH ìîæå è SOCKS (server) è ïîðòîâåòå íà îòäåëíèòå òóíåëè ñå ðàçëè÷àâàò äîñòà äîáðå ;-). Å êàêâî ñåãà äà ïðåêàðàì è íåãî íà UDP... àìè FTP over SSH sftp (115/tcp) Àáå ùîì å ïðåäâèäåí sftp 115/tcp è ñå ïîëçâà ìîùíî, à ñàìèÿ ssh èìà âúçìîæíîñò çà tunneling äîñòà äîáðà, çíà÷è èìà çàùî âÿðíî å, ÷å èìà è venus-se (2431/udp), codasrv-se (2433/udp) íî ïúê ìàé íå ñå ðàäâàò íà ãîëÿìà ïîïóëÿðíîñò èëè àç íåùî áúðêàì... -- Greets, fr33zb1 A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers). http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html
RE: lug-bg: Security Win2000 Terminal Client over internet
Opresnqvaneto na ekrana s VNC e mnogo bavno I drazneshto Pogledni I tuk www.citrix.com Ne e free obache.Inache e mnogo got I poddurja 128 bit encryption. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Marian Popov Sent: Tuesday, January 21, 2003 7:45 PM To: [EMAIL PROTECTED] Subject: Re: lug-bg: Security Win2000 Terminal Client over internet Ili tova http://www.tightvnc.com/ - Original Message - From: Peter An. Zyumbilev [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Tuesday, January 21, 2003 8:12 PM Subject: RE: lug-bg: Security Win2000 Terminal Client over internet az lichno ot tova po dobro reshenie ne vijdam: http://www.uk.research.att.com/vnc/index.html pri tova e bezplatno a stom sigurnostta e mnogo vajna vij tova: http://www.uk.research.att.com/vnc/sshvnc.html ako imash izlishni pari: http://www.symantec.com/pcanywhere/Consumer/features.html az lichno polzvam vtoroto v LAN, no spored VNC e mnogo po-dobro Pozdravi, BIVOL Peter Zyumbilev Web Developer Administrator BIVOL BULGARIA email: [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] web: http://www.bivol.net http://www.bivol.net tel.: +359 88 966940 -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Boris Jordanov Sent: Tuesday, January 21, 2003 12:57 PM To: [EMAIL PROTECTED] Subject: Re: lug-bg: Security Win2000 Terminal Client over internet -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On Tuesday 21 January 2003 12:23, Петър Марков wrote: Здравейте Налага ми се да администрирам един Wn2000 който се намира в чужбина и единственната комуникационна среда е Internet. Въпреки, че темата е интересна, това е въпрос за security mail list или поне за Windows related такъв. Варианти разни: 1. Някакъв вид VPN - мисля, че ако сложиш и настроиш на двете машини PGP и използваш възможностите на PGP-Net за да правиш IPSec тунел м/у двете машини си решаваш проблема и с аутентикацията, и със сигурния канал. 2. Друго VPN решение за Windows - не се сещам нещо конкретно но може да поразровиш мрежата. 3. Не съм сигурен, но може би Terminal services могат да се тунелират през SSH. На сървъра можеш да сложиш OpenSSH (щото е безплатно и относително лесно). Той си върви като сървис. И после тунелираш. Има малко бъзик по настройването на сървъра, но не е трудно, казваш му кои потребители могат да се логват (ето ти аутентикацията, при това със същата парола с която нормално юзъра се логва), после през тунела върви сесията и така... (пак повтарям - ако въобще е възможно, не съм го правил) 4. W2000+ май си поддържаха IPSec така, че може и някакъв native вариант да има, питай Windows разбирачи за тая работа :) - -- Take care Boris Jordanov (borj) [EMAIL PROTECTED] ICQ 10751645 PGP-key-fingerprint:-- CB23 8B52 5FBC F36A 1B61 F1ED 2831 E52D AAFF 7B08 - -- Public-key:--- http://borj.freeshell.org/borj.asc - -- To err is human... to really foul up requires the root password. -BEGIN PGP SIGNATURE- Version: GnuPG v1.0.7 (GNU/Linux) iD8DBQE+LSd5KDHlLar/ewgRAmmKAKCtuMqTz/JnFWZ/Uj2pk7BaznW+8wCfaGmc rSBxH5GakBs7BtJpRViMzAk= =HSv+ -END PGP SIGNATURE- A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers). http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers). http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers). http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers). http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html
Re: lug-bg: Security Win2000 Terminal Client over internet
Zdraveyte. BLAGODARIA mnogo na vsichki koito se otzovaha! I poneje, kakto vijdam i ot drugi postingi, spomenavaneto na Windows v tozi forum e v sastoianie da izvede ot ravnovesie dosta hora, neka da modificirame malko zadachata do slednia variant... (koito, predpolagam, shte zainteriguva vsichki Linux-specialisti:-) I taka... Imame kanal za danni koito triabva da se prekarat prez I-net no.. zakodirani...v realno vreme i dvuposochna vrazka... I neka da konkretizirame taka... SQL prilojenie koeto access-va SQL server prez i-net... Priemame che niama da pipame nito clienta nito servera Triabva da slojin ot dvete strani Linux-box-ove koito da podsiguriat kodiraneto na dannite. - Original Message - From: Konstantin Angelov [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Thursday, January 23, 2003 2:40 AM Subject: RE: lug-bg: Security Win2000 Terminal Client over internet Opresnqvaneto na ekrana s VNC e mnogo bavno I drazneshto Pogledni I tuk www.citrix.com Ne e free obache.Inache e mnogo got I poddurja 128 bit encryption. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Marian Popov Sent: Tuesday, January 21, 2003 7:45 PM To: [EMAIL PROTECTED] Subject: Re: lug-bg: Security Win2000 Terminal Client over internet Ili tova http://www.tightvnc.com/ - Original Message - From: Peter An. Zyumbilev [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Tuesday, January 21, 2003 8:12 PM Subject: RE: lug-bg: Security Win2000 Terminal Client over internet az lichno ot tova po dobro reshenie ne vijdam: http://www.uk.research.att.com/vnc/index.html pri tova e bezplatno a stom sigurnostta e mnogo vajna vij tova: http://www.uk.research.att.com/vnc/sshvnc.html ako imash izlishni pari: http://www.symantec.com/pcanywhere/Consumer/features.html az lichno polzvam vtoroto v LAN, no spored VNC e mnogo po-dobro Pozdravi, BIVOL Peter Zyumbilev Web Developer Administrator BIVOL BULGARIA email: [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] web: http://www.bivol.net http://www.bivol.net tel.: +359 88 966940 -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Boris Jordanov Sent: Tuesday, January 21, 2003 12:57 PM To: [EMAIL PROTECTED] Subject: Re: lug-bg: Security Win2000 Terminal Client over internet -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On Tuesday 21 January 2003 12:23, Петър Марков wrote: Здравейте Налага ми се да администрирам един Wn2000 който се намира в чужбина и единственната комуникационна среда е Internet. Въпреки, че темата е интересна, това е въпрос за security mail list или поне за Windows related такъв. Варианти разни: 1. Някакъв вид VPN - мисля, че ако сложиш и настроиш на двете машини PGP и използваш възможностите на PGP-Net за да правиш IPSec тунел м/у двете машини си решаваш проблема и с аутентикацията, и със сигурния канал. 2. Друго VPN решение за Windows - не се сещам нещо конкретно но може да поразровиш мрежата. 3. Не съм сигурен, но може би Terminal services могат да се тунелират през SSH. На сървъра можеш да сложиш OpenSSH (щото е безплатно и относително лесно). Той си върви като сървис. И после тунелираш. Има малко бъзик по настройването на сървъра, но не е трудно, казваш му кои потребители могат да се логват (ето ти аутентикацията, при това със същата парола с която нормално юзъра се логва), после през тунела върви сесията и така... (пак повтарям - ако въобще е възможно, не съм го правил) 4. W2000+ май си поддържаха IPSec така, че може и някакъв native вариант да има, питай Windows разбирачи за тая работа :) - -- Take care Boris Jordanov (borj) [EMAIL PROTECTED] ICQ 10751645 PGP-key-fingerprint:-- CB23 8B52 5FBC F36A 1B61 F1ED 2831 E52D AAFF 7B08 - -- Public-key:--- http://borj.freeshell.org/borj.asc - -- To err is human... to really foul up requires the root password. -BEGIN PGP SIGNATURE- Version: GnuPG v1.0.7 (GNU/Linux) iD8DBQE+LSd5KDHlLar/ewgRAmmKAKCtuMqTz/JnFWZ/Uj2pk7BaznW+8wCfaGmc rSBxH5GakBs7BtJpRViMzAk= =HSv+ -END PGP SIGNATURE- A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers). http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html
Re: lug-bg: Security Win2000 Terminal Client over internet
Naprawete si edin vpn connection . - Original Message - From: Ïåòúð Ìàðêîâ [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Thursday, January 23, 2003 8:38 AM Subject: Re: lug-bg: Security Win2000 Terminal Client over internet Zdraveyte. BLAGODARIA mnogo na vsichki koito se otzovaha! I poneje, kakto vijdam i ot drugi postingi, spomenavaneto na Windows v tozi forum e v sastoianie da izvede ot ravnovesie dosta hora, neka da modificirame malko zadachata do slednia variant... (koito, predpolagam, shte zainteriguva vsichki Linux-specialisti:-) I taka... Imame kanal za danni koito triabva da se prekarat prez I-net no.. zakodirani...v realno vreme i dvuposochna vrazka... I neka da konkretizirame taka... SQL prilojenie koeto access-va SQL server prez i-net... Priemame che niama da pipame nito clienta nito servera Triabva da slojin ot dvete strani Linux-box-ove koito da podsiguriat kodiraneto na dannite. - Original Message - From: Konstantin Angelov [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Thursday, January 23, 2003 2:40 AM Subject: RE: lug-bg: Security Win2000 Terminal Client over internet Opresnqvaneto na ekrana s VNC e mnogo bavno I drazneshto Pogledni I tuk www.citrix.com Ne e free obache.Inache e mnogo got I poddurja 128 bit encryption. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Marian Popov Sent: Tuesday, January 21, 2003 7:45 PM To: [EMAIL PROTECTED] Subject: Re: lug-bg: Security Win2000 Terminal Client over internet Ili tova http://www.tightvnc.com/ - Original Message - From: Peter An. Zyumbilev [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Tuesday, January 21, 2003 8:12 PM Subject: RE: lug-bg: Security Win2000 Terminal Client over internet az lichno ot tova po dobro reshenie ne vijdam: http://www.uk.research.att.com/vnc/index.html pri tova e bezplatno a stom sigurnostta e mnogo vajna vij tova: http://www.uk.research.att.com/vnc/sshvnc.html ako imash izlishni pari: http://www.symantec.com/pcanywhere/Consumer/features.html az lichno polzvam vtoroto v LAN, no spored VNC e mnogo po-dobro Pozdravi, BIVOL Peter Zyumbilev Web Developer Administrator BIVOL BULGARIA email: [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] web: http://www.bivol.net http://www.bivol.net tel.: +359 88 966940 -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Boris Jordanov Sent: Tuesday, January 21, 2003 12:57 PM To: [EMAIL PROTECTED] Subject: Re: lug-bg: Security Win2000 Terminal Client over internet -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On Tuesday 21 January 2003 12:23, ÐеÑÑÑ ÐаÑков wrote: ÐдÑавейÑе Ðалага ми Ñе да админиÑÑÑиÑам един Wn2000 койÑо Ñе намиÑа в ÑÑжбина и единÑÑвеннаÑа комÑникаÑионна ÑÑеда е Internet. ÐÑпÑеки, Ñе ÑемаÑа е инÑеÑеÑна, Ñова е вÑпÑÐ¾Ñ Ð·Ð° security mail list или поне за Windows related ÑакÑв. ÐаÑианÑи Ñазни: 1. ÐÑкакÑв вид VPN - миÑлÑ, Ñе ако ÑÐ»Ð¾Ð¶Ð¸Ñ Ð¸ наÑÑÑÐ¾Ð¸Ñ Ð½Ð° двеÑе маÑини PGP и Ð¸Ð·Ð¿Ð¾Ð»Ð·Ð²Ð°Ñ Ð²ÑзможноÑÑиÑе на PGP-Net за да пÑÐ°Ð²Ð¸Ñ IPSec ÑÑнел м/Ñ Ð´Ð²ÐµÑе маÑини Ñи ÑеÑÐ°Ð²Ð°Ñ Ð¿Ñоблема и Ñ Ð°ÑÑенÑикаÑиÑÑа, и ÑÑÑ ÑигÑÑÐ½Ð¸Ñ ÐºÐ°Ð½Ð°Ð». 2. ÐÑÑго VPN ÑеÑение за Windows - не Ñе ÑеÑам неÑо конкÑеÑно но може да поÑазÑÐ¾Ð²Ð¸Ñ Ð¼ÑежаÑа. 3. Ðе ÑÑм ÑигÑÑен, но може би Terminal services Ð¼Ð¾Ð³Ð°Ñ Ð´Ð° Ñе ÑÑнелиÑÐ°Ñ Ð¿Ñез SSH. Ðа ÑÑÑвÑÑа Ð¼Ð¾Ð¶ÐµÑ Ð´Ð° ÑÐ»Ð¾Ð¶Ð¸Ñ OpenSSH (ÑоÑо е безплаÑно и оÑноÑиÑелно леÑно). Той Ñи вÑÑви каÑо ÑÑÑвиÑ. РпоÑле ÑÑнелиÑаÑ. Ðма малко бÑзик по наÑÑÑойванеÑо на ÑÑÑвÑÑа, но не е ÑÑÑдно, ÐºÐ°Ð·Ð²Ð°Ñ Ð¼Ñ ÐºÐ¾Ð¸ поÑÑебиÑели Ð¼Ð¾Ð³Ð°Ñ Ð´Ð° Ñе Ð»Ð¾Ð³Ð²Ð°Ñ (еÑо Ñи аÑÑенÑикаÑиÑÑа, пÑи Ñова ÑÑÑ ÑÑÑаÑа паÑола Ñ ÐºÐ¾ÑÑо ноÑмално ÑзÑÑа Ñе логва), поÑле пÑез ÑÑнела вÑÑви ÑеÑиÑÑа и Ñака... (пак повÑаÑÑм - ако вÑобÑе е вÑзможно, не ÑÑм го пÑавил) 4. W2000+ май Ñи поддÑÑÐ¶Ð°Ñ Ð° IPSec Ñака, Ñе може и нÑкакÑв native
Re: lug-bg: Security Win2000 Terminal Client over internet
Ïåòúð Ìàðêîâ wrote: I poneje, kakto vijdam i ot drugi postingi, spomenavaneto na Windows v tozi forum e v sastoianie da izvede ot ravnovesie dosta hora... Ïðîáëåìúò íå áåøå â ñïîìåíàâàíåòî íà Óèíäîóç, à â ëèïñàòà íà ïðÿêà âðúçêà ñ Ëèíóêñ. Ëèíóêñ áåøå ñïîìåíàò ìåæäó äðóãîòî, à íå íåùî îò òèïà: Êàê äà ñè îðãàíèçèðàì ñèãóðíà êîìóíèêàöèÿ ÷ðåç Ëèíóêñ ìàðøðóòèçàòîðè/ðóòåðè? Ñúùî òàêà ñúì ñèãóðåí, ÷å Óèíäîóç ìîæå äà ïðàâè òàêàâà êîìóíèêàöèÿ ñúñ ñîáñòâåíè ñðåäñòâà (îñòàâàøå è äà íå ìîæåøå...). Íÿêîé ìàé ñïîìåíà IPsec, äðóã -- VPN. Îñòàâà äà ñå òúðñè â Èíòåðíåò èëè â êíèãè. Ïîçäðàâè -- Îãíÿí Êóëåâ [EMAIL PROTECTED], \Ïðîãðàìèñò\ A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers). http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html
lug-bg: Security Win2000 Terminal Client over internet
Çäðàâåéòå Íàëàãà ìè ñå äà àäìèíèñòðèðàì åäèí Wn2000 êîéòî ñå íàìèðà â ÷óæáèíà è åäèíñòâåííàòà êîìóíèêàöèîííà ñðåäà å Internet. Âúïðîñà å êàê (è äàëè âúîáùå ìîæå) äà ñå íàïðàâè òàêà, ÷å äà ñå ãàðàíòèðà ìàêñèìàëíî âúçìîæíà ñòåïåí íà ñèãóðíîñò ïðè ëîãâàíåòî è êîìóíèêàöèÿòà ìåæäó äâåòå Windows ìàøèíè (àç ïðèìåðíî ùå ïóñêàì Windows 2000 Terminal Client íà ìîÿòà Win98) Ìåæäó äâåòå winows ìàøèíè ìîæåì äà ñëîæèì íÿêàêâè Linux-box àêî å íåîáõîäèìî. Êàçàíî ïî äðóã íà÷èí - Ïúðâî òðÿáâà äà å ÿñíî ÷å òîçè êîéòî ñå îïèòâà äà ñå ëîãíå ñúì àç à íå íÿêîé äðóã. Âòîðî - ñàìîòî ëîãâàíå äà ñå ïîäñèãóðè - êîëêîòî å âúçìîæíî. Òðåòî - Êîìóíèêàöèÿòà äà ñå ïîäñèãóðè... äà íå ìîæå äà ñå ïðèõâàíå òðàôèêà... (ñ íÿêàêâî êîäèðàíå) Èäåè? Ïðåäëîæåíèÿ? ÁËÀÃÎÄÀÐÍÎÑÒÈ :-
Re: lug-bg: Security Win2000 Terminal Client over internet
Tui ne e li LINUX Users Group ? Inache slagash edin linux pri teb, edin tam i pravish SSH tunnel mejdu tiah. On Tue, 21 Jan 2003 12:23:27 +0200 Ïåòúð Ìàðêîâ [EMAIL PROTECTED] wrote: Çäðàâåéòå Íàëàãà ìè ñå äà àäìèíèñòðèðàì åäèí Wn2000 êîéòî ñå íàìèðà â ÷óæáèíà è åäèíñòâåííàòà êîìóíèêàöèîííà ñðåäà å Internet. Âúïðîñà å êàê (è äàëè âúîáùå ìîæå) äà ñå íàïðàâè òàêà, ÷å äà ñå ãàðàíòèðà ìàêñèìàëíî âúçìîæíà ñòåïåí íà ñèãóðíîñò ïðè ëîãâàíåòî è êîìóíèêàöèÿòà ìåæäó äâåòå Windows ìàøèíè (àç ïðèìåðíî ùå ïóñêàì Windows 2000 Terminal Client íà ìîÿòà Win98) Ìåæäó äâåòå winows ìàøèíè ìîæåì äà ñëîæèì íÿêàêâè Linux-box àêî å íåîáõîäèìî. Êàçàíî ïî äðóã íà÷èí - Ïúðâî òðÿáâà äà å ÿñíî ÷å òîçè êîéòî ñå îïèòâà äà ñå ëîãíå ñúì àç à íå íÿêîé äðóã. Âòîðî - ñàìîòî ëîãâàíå äà ñå ïîäñèãóðè - êîëêîòî å âúçìîæíî. Òðåòî - Êîìóíèêàöèÿòà äà ñå ïîäñèãóðè... äà íå ìîæå äà ñå ïðèõâàíå òðàôèêà... (ñ íÿêàêâî êîäèðàíå) Èäåè? Ïðåäëîæåíèÿ? ÁËÀÃÎÄÀÐÍÎÑÒÈ :- A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers). http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html
Re: lug-bg: Security Win2000 Terminal Client over internet
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On Tuesday 21 January 2003 12:23, Петър Марков wrote: Здравейте Налага ми се да администрирам един Wn2000 който се намира в чужбина и единственната комуникационна среда е Internet. Въпреки, че темата е интересна, това е въпрос за security mail list или поне за Windows related такъв. Варианти разни: 1. Някакъв вид VPN - мисля, че ако сложиш и настроиш на двете машини PGP и използваш възможностите на PGP-Net за да правиш IPSec тунел м/у двете машини си решаваш проблема и с аутентикацията, и със сигурния канал. 2. Друго VPN решение за Windows - не се сещам нещо конкретно но може да поразровиш мрежата. 3. Не съм сигурен, но може би Terminal services могат да се тунелират през SSH. На сървъра можеш да сложиш OpenSSH (щото е безплатно и относително лесно). Той си върви като сървис. И после тунелираш. Има малко бъзик по настройването на сървъра, но не е трудно, казваш му кои потребители могат да се логват (ето ти аутентикацията, при това със същата парола с която нормално юзъра се логва), после през тунела върви сесията и така... (пак повтарям - ако въобще е възможно, не съм го правил) 4. W2000+ май си поддържаха IPSec така, че може и някакъв native вариант да има, питай Windows разбирачи за тая работа :) - -- Take care Boris Jordanov (borj) [EMAIL PROTECTED] ICQ 10751645 PGP-key-fingerprint:-- CB23 8B52 5FBC F36A 1B61 F1ED 2831 E52D AAFF 7B08 - -- Public-key:--- http://borj.freeshell.org/borj.asc - -- To err is human... to really foul up requires the root password. -BEGIN PGP SIGNATURE- Version: GnuPG v1.0.7 (GNU/Linux) iD8DBQE+LSd5KDHlLar/ewgRAmmKAKCtuMqTz/JnFWZ/Uj2pk7BaznW+8wCfaGmc rSBxH5GakBs7BtJpRViMzAk= =HSv+ -END PGP SIGNATURE- A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers). http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html
RE: lug-bg: Security Win2000 Terminal Client over internet
az lichno ot tova po dobro reshenie ne vijdam: http://www.uk.research.att.com/vnc/index.html pri tova e bezplatno a stom sigurnostta e mnogo vajna vij tova: http://www.uk.research.att.com/vnc/sshvnc.html ako imash izlishni pari: http://www.symantec.com/pcanywhere/Consumer/features.html az lichno polzvam vtoroto v LAN, no spored VNC e mnogo po-dobro Pozdravi, BIVOL Peter Zyumbilev Web Developer Administrator BIVOL BULGARIA email: [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] web: http://www.bivol.net http://www.bivol.net tel.: +359 88 966940 -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Boris Jordanov Sent: Tuesday, January 21, 2003 12:57 PM To: [EMAIL PROTECTED] Subject: Re: lug-bg: Security Win2000 Terminal Client over internet -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On Tuesday 21 January 2003 12:23, Петър Марков wrote: Здравейте Налага ми се да администрирам един Wn2000 който се намира в чужбина и единственната комуникационна среда е Internet. Въпреки, че темата е интересна, това е въпрос за security mail list или поне за Windows related такъв. Варианти разни: 1. Някакъв вид VPN - мисля, че ако сложиш и настроиш на двете машини PGP и използваш възможностите на PGP-Net за да правиш IPSec тунел м/у двете машини си решаваш проблема и с аутентикацията, и със сигурния канал. 2. Друго VPN решение за Windows - не се сещам нещо конкретно но може да поразровиш мрежата. 3. Не съм сигурен, но може би Terminal services могат да се тунелират през SSH. На сървъра можеш да сложиш OpenSSH (щото е безплатно и относително лесно). Той си върви като сървис. И после тунелираш. Има малко бъзик по настройването на сървъра, но не е трудно, казваш му кои потребители могат да се логват (ето ти аутентикацията, при това със същата парола с която нормално юзъра се логва), после през тунела върви сесията и така... (пак повтарям - ако въобще е възможно, не съм го правил) 4. W2000+ май си поддържаха IPSec така, че може и някакъв native вариант да има, питай Windows разбирачи за тая работа :) - -- Take care Boris Jordanov (borj) [EMAIL PROTECTED] ICQ 10751645 PGP-key-fingerprint:-- CB23 8B52 5FBC F36A 1B61 F1ED 2831 E52D AAFF 7B08 - -- Public-key:--- http://borj.freeshell.org/borj.asc - -- To err is human... to really foul up requires the root password. -BEGIN PGP SIGNATURE- Version: GnuPG v1.0.7 (GNU/Linux) iD8DBQE+LSd5KDHlLar/ewgRAmmKAKCtuMqTz/JnFWZ/Uj2pk7BaznW+8wCfaGmc rSBxH5GakBs7BtJpRViMzAk= =HSv+ -END PGP SIGNATURE- A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers). http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers). http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html
Re: lug-bg: Security Win2000 Terminal Client over internet
Ili tova http://www.tightvnc.com/ - Original Message - From: Peter An. Zyumbilev [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Tuesday, January 21, 2003 8:12 PM Subject: RE: lug-bg: Security Win2000 Terminal Client over internet az lichno ot tova po dobro reshenie ne vijdam: http://www.uk.research.att.com/vnc/index.html pri tova e bezplatno a stom sigurnostta e mnogo vajna vij tova: http://www.uk.research.att.com/vnc/sshvnc.html ako imash izlishni pari: http://www.symantec.com/pcanywhere/Consumer/features.html az lichno polzvam vtoroto v LAN, no spored VNC e mnogo po-dobro Pozdravi, BIVOL Peter Zyumbilev Web Developer Administrator BIVOL BULGARIA email: [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] web: http://www.bivol.net http://www.bivol.net tel.: +359 88 966940 -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Boris Jordanov Sent: Tuesday, January 21, 2003 12:57 PM To: [EMAIL PROTECTED] Subject: Re: lug-bg: Security Win2000 Terminal Client over internet -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On Tuesday 21 January 2003 12:23, Петър Марков wrote: Здравейте Налага ми се да администрирам един Wn2000 който се намира в чужбина и единственната комуникационна среда е Internet. Въпреки, че темата е интересна, това е въпрос за security mail list или поне за Windows related такъв. Варианти разни: 1. Някакъв вид VPN - мисля, че ако сложиш и настроиш на двете машини PGP и използваш възможностите на PGP-Net за да правиш IPSec тунел м/у двете машини си решаваш проблема и с аутентикацията, и със сигурния канал. 2. Друго VPN решение за Windows - не се сещам нещо конкретно но може да поразровиш мрежата. 3. Не съм сигурен, но може би Terminal services могат да се тунелират през SSH. На сървъра можеш да сложиш OpenSSH (щото е безплатно и относително лесно). Той си върви като сървис. И после тунелираш. Има малко бъзик по настройването на сървъра, но не е трудно, казваш му кои потребители могат да се логват (ето ти аутентикацията, при това със същата парола с която нормално юзъра се логва), после през тунела върви сесията и така... (пак повтарям - ако въобще е възможно, не съм го правил) 4. W2000+ май си поддържаха IPSec така, че може и някакъв native вариант да има, питай Windows разбирачи за тая работа :) - -- Take care Boris Jordanov (borj) [EMAIL PROTECTED] ICQ 10751645 PGP-key-fingerprint:-- CB23 8B52 5FBC F36A 1B61 F1ED 2831 E52D AAFF 7B08 - -- Public-key:--- http://borj.freeshell.org/borj.asc - -- To err is human... to really foul up requires the root password. -BEGIN PGP SIGNATURE- Version: GnuPG v1.0.7 (GNU/Linux) iD8DBQE+LSd5KDHlLar/ewgRAmmKAKCtuMqTz/JnFWZ/Uj2pk7BaznW+8wCfaGmc rSBxH5GakBs7BtJpRViMzAk= =HSv+ -END PGP SIGNATURE- A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers). http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers). http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers). http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html
Re: lug-bg: Security=certified
Georgi Chorbadzhiyski wrote: C2 e sertificiran kato mashinata e bila bez vkliucheno floppy i mrezhova karta. Òîâà å åäíî îò èçèñêâàíèÿòà íà C2 (ìàé), òàêà ÷å ñè ïðàâåòå ñìåòêà äîêîëêî ñà ðåàëèñòè÷íè òèÿ ñåðòèôèêàòè :-) -- Îãíÿí Êóëåâ [EMAIL PROTECTED], \Ïðîãðàìèñò\ A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers). http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html
Re: lug-bg: Security=certified
George Danchev wrote: ami dokolkoto vidqh za sega samo NT4.0 WorkStation i Server sa audit-vani... (C2) pyk znaesh li mozhe i src code da e pokazvan ... ina4e naj-veroqtno C2 e sertificiran kato mashinata e bila bez vkliucheno floppy i mrezhova karta. -- Georgi Chorbadzhiyski http://georgi.unixsol.org/ http://nedyalkov.com/security/ A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers). http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html
Re: lug-bg: Security=certified
On 21 10 2002 21:19, Valentin Tzankov wrote: Horata koito pishat Orange Book predpolagam si vyrshat rabotata i edva li e lokumdijski vyrtelezhki, no informatzijata imah predvid 4e nqkoj hora 4etat ili gledat na tazi lista po edin na4in, a drugi po drug, i q polzvat kato kyrpa za iztrivane/izbyrsvane kakto mnogo to4no ti go opredeli (ta mi svetna na momenta;-). Neznam kak si vyrshat rabotata samite auditirashti ot organizaciqta, to nqma kak da znaesh lesno tova -- ne sym kazal 4e sa slu4ajni mom4eta, no edva li sa i posledna instanciq, a i te ne sa vinovni 4e ne vsi4ki seriozni vendors gi vzimat pod vnimanie i kakdidatstvat za audit pri tqh i syotvetno lipsvat ot listata... ta ottuk mogat da izlqzat mnogo izkrivqvaniq, i to ne zadylzhitelno da e po vina na auditirastite ... e takiva drebni podrobnosti ;-) A btw imashe i naistina seriozni primeri kato UNICOS... za koqto samo sym 4el po sites... to kyde sha vidish takova zhivotno, osven v nqkoj sci Lab ;-) v tjah e predimno za Managers ne e za Adminstrator-i. az pyk si misleh 4e i za ne-administratorite nestata sa qsni ... az naprimer sym just user, ne administriram naistina nisto (seriozno). Prosto neproumjavam, kak mogat da audit-irat WindowXP kato njamat koda mu? ami dokolkoto vidqh za sega samo NT4.0 WorkStation i Server sa audit-vani... (C2) pyk znaesh li mozhe i src code da e pokazvan ... ina4e naj-veroqtno slagat OS-a na stand-a, i mu prilagat nqkakva standartna shema ot uprazhneniq i hvatki bez da imat nikyf src code i tolko ... kvoto izdyrzhi izdyrzhi ... ina4e tolkova mnogo src code, kak se audit-ira mislish ;-), stava mnogo debelo ... samo otvorenite OS'es pridobivat avtomati4no tozi feature (t.e. takyf proces pri tqh vyrvi non-stop, te nali za tova sa open)... pyk neka da ima, i sigurno ima Managers koito si mislqt 4e stom src-to e open zna4i OS'sa e insecure... kak da ne im drypnesh pari4kite na takvizi mom4eta, to prosto e grehota da gi propusnesh ;-) Tova samo edin Manager moje da go prieme za vyzmozhno no ne tech person. e ponqkoga mozhe licata da syvpadat, znaesh li . ;-) P.S. az sym off ve4e, 4e stana bezinteresno, pyk i na zdrav off-topic go obyrnahme ... ;-). 10x za uto4neniqta. -- Greets, fr33zb1 [catching up with Sid (the boy next door who destroyed toys :-)] [reg your bg translation or grab one from http://www.bgit.net/?id=37892] A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers). http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html
RE: lug-bg: Security=certified
procheti dokladite i ste vidish ka ocenivata XP... tezi dokumenti sa super zastoto sa OFICIALNI. ne sam kazal che sam gi chel s obrazovatelna cel ili da is izbiram OS. prosto imat predstavitelna funkcia Peter Angelov Zyumbilev Web Developer Administrator email: [EMAIL PROTECTED] mailto:bivol;bivol.net web: http://www.bivol.net phone: +359 88 966940 UIN: 108984925 -Original Message- From: [EMAIL PROTECTED] [mailto:owner-lug-bg;linux-bulgaria.org]On Behalf Of Valentin Tzankov Sent: 21 ïËÔÏÍ×ÒÉ 2002 Ç. 21:19 To: [EMAIL PROTECTED] Subject: Re: lug-bg: Security=certified Horata koito pishat Orange Book predpolagam si vyrshat rabotata i edva li e lokumdijski vyrtelezhki, no informatzijata v tjah e predimno za Managers ne e za Adminstrator-i. Prosto neproumjavam, kak mogat da audit-irat WindowXP kato njamat koda mu? Tova samo edin Manager moje da go prieme za vyzmozhno no ne tech person. George Danchev wrote: On 21 10 2002 19:34, Valentin Tzankov wrote: Tezi list-i ne sa za hora kato teb ili nas, te sa za managery, v smisyl az kato bjah consultant v Merrill Lynch, shefovete ne ni pitaha nas kolko e zastiten application servera ni, a plastaha ludi pari na Gartner a te ot svoja strana pitaha nas. Prichinata za tova e mnogo prosta, ako njakoj hack-ne Servera, njama da sym vinoven az, njama da e vinoven toj ste sa vinovni Gartner. Systoto nesto e is tezi list-i, managerite koite ne razbirat gi obichat, zastoto im slujat za byrsalki. aaa togava se strahuvam 4e trqbva da se poizvinq malko...;-) prosto ne ot4etoh obstoqtelstvata, 4e ide re4 za izbyrsvane, otvryzvane i t.n. lokumdijski vyrtelezhki, az vse si mislq za strict technical stuff ... Ne moga da komentiram dokolko e precizen testa/audit-a im, no s nevyoryzhenoto oko na usr kato men, se vidi 4e lista naj-malkoto ne e pylen..., neznam ako vzeme nqkoj da ima audit-ira audit-a ko sha stane ;-), no ste vzema malko da pospra s tezi OS/FS software-ta 4e mi se pritypqva mirogleda, v smisyl zhitejskiq krygozor ;-) 10x for the fix. -- Greets, fr33zb1 [catching up with Sid (the boy next door who destroyed toys :-)] [reg your bg translation or grab one from http://www.bgit.net/?id=37892] == == A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers). http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html == == == == A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers). http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html == == A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers). http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html
Re: lug-bg: Security=certified
Horata koito pishat Orange Book predpolagam si vyrshat rabotata i edva li e lokumdijski vyrtelezhki, no informatzijata v tjah e predimno za Managers ne e za Adminstrator-i. Prosto neproumjavam, kak mogat da audit-irat WindowXP kato njamat koda mu? Tova samo edin Manager moje da go prieme za vyzmozhno no ne tech person. George Danchev wrote: On 21 10 2002 19:34, Valentin Tzankov wrote: Tezi list-i ne sa za hora kato teb ili nas, te sa za managery, v smisyl az kato bjah consultant v Merrill Lynch, shefovete ne ni pitaha nas kolko e zastiten application servera ni, a plastaha ludi pari na Gartner a te ot svoja strana pitaha nas. Prichinata za tova e mnogo prosta, ako njakoj hack-ne Servera, njama da sym vinoven az, njama da e vinoven toj ste sa vinovni Gartner. Systoto nesto e is tezi list-i, managerite koite ne razbirat gi obichat, zastoto im slujat za byrsalki. aaa togava se strahuvam 4e trqbva da se poizvinq malko...;-) prosto ne ot4etoh obstoqtelstvata, 4e ide re4 za izbyrsvane, otvryzvane i t.n. lokumdijski vyrtelezhki, az vse si mislq za strict technical stuff ... Ne moga da komentiram dokolko e precizen testa/audit-a im, no s nevyoryzhenoto oko na usr kato men, se vidi 4e lista naj-malkoto ne e pylen..., neznam ako vzeme nqkoj da ima audit-ira audit-a ko sha stane ;-), no ste vzema malko da pospra s tezi OS/FS software-ta 4e mi se pritypqva mirogleda, v smisyl zhitejskiq krygozor ;-) 10x for the fix. -- Greets, fr33zb1 [catching up with Sid (the boy next door who destroyed toys :-)] [reg your bg translation or grab one from http://www.bgit.net/?id=37892] A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers). http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers). http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html
Re: lug-bg: Security=certified
On 21 10 2002 19:34, Valentin Tzankov wrote: Tezi list-i ne sa za hora kato teb ili nas, te sa za managery, v smisyl az kato bjah consultant v Merrill Lynch, shefovete ne ni pitaha nas kolko e zastiten application servera ni, a plastaha ludi pari na Gartner a te ot svoja strana pitaha nas. Prichinata za tova e mnogo prosta, ako njakoj hack-ne Servera, njama da sym vinoven az, njama da e vinoven toj ste sa vinovni Gartner. Systoto nesto e is tezi list-i, managerite koite ne razbirat gi obichat, zastoto im slujat za byrsalki. aaa togava se strahuvam 4e trqbva da se poizvinq malko...;-) prosto ne ot4etoh obstoqtelstvata, 4e ide re4 za izbyrsvane, otvryzvane i t.n. lokumdijski vyrtelezhki, az vse si mislq za strict technical stuff ... Ne moga da komentiram dokolko e precizen testa/audit-a im, no s nevyoryzhenoto oko na usr kato men, se vidi 4e lista naj-malkoto ne e pylen..., neznam ako vzeme nqkoj da ima audit-ira audit-a ko sha stane ;-), no ste vzema malko da pospra s tezi OS/FS software-ta 4e mi se pritypqva mirogleda, v smisyl zhitejskiq krygozor ;-) 10x for the fix. -- Greets, fr33zb1 [catching up with Sid (the boy next door who destroyed toys :-)] [reg your bg translation or grab one from http://www.bgit.net/?id=37892] A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers). http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html
Re: lug-bg: Security=certified
Tezi list-i ne sa za hora kato teb ili nas, te sa za managery, v smisyl az kato bjah consultant v Merrill Lynch, shefovete ne ni pitaha nas kolko e zastiten application servera ni, a plastaha ludi pari na Gartner a te ot svoja strana pitaha nas. Prichinata za tova e mnogo prosta, ako njakoj hack-ne Servera, njama da sym vinoven az, njama da e vinoven toj ste sa vinovni Gartner. Systoto nesto e is tezi list-i, managerite koite ne razbirat gi obichat, zastoto im slujat za byrsalki. George Danchev wrote: On 21 10 2002 16:47, Valentin Tzankov wrote: Gloemite corporatzii si imat team-ove koito izvyrsvat tova, no vsichki te se syobrazjavat s National Computer Security Center http://www.radium.ncsc.mil, koito davat security rating kato na vseki 6 mesetza izdavat taka narechenata Orange Book. vsi4ko tova e mnogo hubavo, no ako 4ovek vzeme da si pravi nqkakvi Generalizations 4etejki tozi Evaluated Products List, mozhe da ostane dosta nedoinformiran. Naprimer, vyobste lipsvat (popravete me ako gresha) BSD/OS i Solaris (a .mil dokolkoto sum 4uval sa fenove bash na tezi products). Edva li proizvoditelite na tezi dva OS-a ne se imali vyzmozhnostta da se probat da se klasirat v nqkoj level ;-). I toku vizh vzeme nqkoj da izkazhe nqkoi slova greshnie - NCSC kaza 4e X e secure, a to vzeme 4e se okazhe 4e e v nqkoj dolen level (sigurno za stand-alone non-networked machine ;-), i sravneno s nesto koeto ne e v listata, kato BSD/OS naprimer, ste predizvikva golqm smqh v zalata (i izvyn neq;-). i az sym na princip-a na Teodor Georgiev, ne se trogvam ot golemi listi -- OS-a i admin4eto se vodqt za ry4i4ka, pyk kojto kak ste da gi evoluate, pyk OS-a ako pozvolqva da se pipa po-dylbo4ko i admin4eto znae kak da pipa, mozhe i vyobste da ne gi evaluate ;-) tova po princip razbira se, ina4e nqma losho da ima listi i spisyci ;-) -- Greets, fr33zb1 [catching up with Sid (the boy next door who destroyed toys :-)] [reg your bg translation or grab one from http://www.bgit.net/?id=37892] A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers). http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers). http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html
Re: lug-bg: Security=certified
On 21 10 2002 16:47, Valentin Tzankov wrote: Gloemite corporatzii si imat team-ove koito izvyrsvat tova, no vsichki te se syobrazjavat s National Computer Security Center http://www.radium.ncsc.mil, koito davat security rating kato na vseki 6 mesetza izdavat taka narechenata Orange Book. vsi4ko tova e mnogo hubavo, no ako 4ovek vzeme da si pravi nqkakvi Generalizations 4etejki tozi Evaluated Products List, mozhe da ostane dosta nedoinformiran. Naprimer, vyobste lipsvat (popravete me ako gresha) BSD/OS i Solaris (a .mil dokolkoto sum 4uval sa fenove bash na tezi products). Edva li proizvoditelite na tezi dva OS-a ne se imali vyzmozhnostta da se probat da se klasirat v nqkoj level ;-). I toku vizh vzeme nqkoj da izkazhe nqkoi slova greshnie - NCSC kaza 4e X e secure, a to vzeme 4e se okazhe 4e e v nqkoj dolen level (sigurno za stand-alone non-networked machine ;-), i sravneno s nesto koeto ne e v listata, kato BSD/OS naprimer, ste predizvikva golqm smqh v zalata (i izvyn neq;-). i az sym na princip-a na Teodor Georgiev, ne se trogvam ot golemi listi -- OS-a i admin4eto se vodqt za ry4i4ka, pyk kojto kak ste da gi evoluate, pyk OS-a ako pozvolqva da se pipa po-dylbo4ko i admin4eto znae kak da pipa, mozhe i vyobste da ne gi evaluate ;-) tova po princip razbira se, ina4e nqma losho da ima listi i spisyci ;-) -- Greets, fr33zb1 [catching up with Sid (the boy next door who destroyed toys :-)] [reg your bg translation or grab one from http://www.bgit.net/?id=37892] A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers). http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html
lug-bg: Security=certified
Zdraveite, parvo iskam da se izvinai za svoia nekomeptentnost am kakvo da se pravi...:) Znachi zbnam che razlichite OS minvat nikkavi proverkiza sigurnost i poluchvat sertifikati. Znam che NT-to beshe zle s tova,a HP-UX beshe super. Nikoi znae li koi sa ti instituti i kade moga da nameria malko oficialna info za tova. Nesto ne moga da si formuliramn kkato tribva vaprosa v Google. Blagodaria vi predavtitelno. Peter Zyumbilev(BIVOL) - http://mail.e-card.bg A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers). http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html
Re: lug-bg: Security=certified
takiva sertifikati triabva da se davat v packet OS + admin, kakto se davat na kuche i stopanin/gledach/dresior. - Original Message - From: BIVOL ONLINE [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Saturday, October 19, 2002 1:51 PM Subject: lug-bg: Security=certified Zdraveite, parvo iskam da se izvinai za svoia nekomeptentnost am kakvo da se pravi...:) Znachi zbnam che razlichite OS minvat nikkavi proverkiza sigurnost i poluchvat sertifikati. Znam che NT-to beshe zle s tova,a HP-UX beshe super. Nikoi znae li koi sa ti instituti i kade moga da nameria malko oficialna info za tova. Nesto ne moga da si formuliramn kkato tribva vaprosa v Google. Blagodaria vi predavtitelno. Peter Zyumbilev(BIVOL) - http://mail.e-card.bg A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers). http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers). http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html
Re: lug-bg: Security=certified
On Sat, 19 Oct 2002 13:51:45 +0300 BIVOL ONLINE [EMAIL PROTECTED] wrote: Zdraveite, parvo iskam da se izvinai za svoia nekomeptentnost am kakvo da se pravi...:) Znachi zbnam che razlichite OS minvat nikkavi proverkiza sigurnost i poluchvat sertifikati. Znam che NT-to beshe zle s tova,a HP-UX beshe super. Nikoi znae li koi sa ti instituti i kade moga da nameria malko oficialna info za tova. Nesto ne moga da si formuliramn kkato tribva vaprosa v Google. Blagodaria vi predavtitelno. Àç ëè÷íî íå ñúì ÷óâàë çà ïîäîáíî íåùî, íî ìîæå áè www.cert.org ùå òè áúäå îò ïîìîù. msg12901/pgp0.pgp Description: PGP signature
lug-bg: security problem
Zdraveite imam problem koto ne moga da razbera za6to stava taka pri uslovie vsichko e rabotilo do sega. Antivirusnata mi za6tita se dani i propuska maila ... pri uslovie che otkriva virusa ... Ako niakoi ima ideia kakva e prichinata .. She sam mu blagodaren. -rw-r--r--1 root root87130 Oct 7 11:06 Mail_8_.exe -rw-r--r--1 root root 357 Oct 7 11:06 Mail_8_.htm drwxr-xr-x2 root root 1024 Oct 7 11:06 SFX /var/tmp/scanmails28514/unpacked/SFX: total 2 drwxr-xr-x2 root root 1024 Oct 7 11:06 . drwxr-xr-x3 root root 1024 Oct 7 11:06 .. Useful life of SWEEP has been exceeded Virus 'W32/Klez-G' found in file /var/tmp/scanmails28514/unpacked/Mail_8_.exe H+BEDV AntiVir scanstatus0 is: 0 Mcafee scanstatus1 is: 0 Dr. Solomon (old) scanstatus2 is: 0 Dr. Solomon (new) scanstatus3 is: 0 Sophos Sweep scanstatus4 is: 3 NAI Virus Scan 4.x scanstatus5 is: 0 KasperskyLab AVP scanstatus6 is: 0 KasperskyLab AVPDaemonClient scantatus7 is: 0 F-Secure Antivirus scanstatus8 is: 0 Trend Micro FileScanner scanstatus9 is: 0 CyberSoft vfind scanstatus10 is: 0 CAI InoculateIT (inocucmd) scanstatus11 is: 0 No virus found - good - http://www.pari.bg/abonamenti - Ñòàâà âúïðîñ çà ÏÀÐÈ. Çà ìíîãî ÏÀÐÈ. 365 äíè â ãîäèíàòà. A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers). http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html
Re: lug-bg: security problem
En réponse à Niki Nick [EMAIL PROTECTED]:
Zdraveite imam problem koto ne moga da razbera za6to stava taka
pri uslovie vsichko e rabotilo do sega. Antivirusnata mi za6tita se
dani i propuska maila ... pri uslovie che otkriva virusa ... Ako niakoi
ima ideia kakva e prichinata .. She sam mu blagodaren.
-rw-r--r--1 root root87130 Oct 7 11:06 Mail_8_.exe
-rw-r--r--1 root root 357 Oct 7 11:06 Mail_8_.htm
drwxr-xr-x2 root root 1024 Oct 7 11:06 SFX
/var/tmp/scanmails28514/unpacked/SFX:
total 2
drwxr-xr-x2 root root 1024 Oct 7 11:06 .
drwxr-xr-x3 root root 1024 Oct 7 11:06 ..
Useful life of SWEEP has been exceeded
Virus 'W32/Klez-G' found in file
/var/tmp/scanmails28514/unpacked/Mail_8_.exe
H+BEDV AntiVir scanstatus0 is: 0
Mcafee scanstatus1 is: 0
Dr. Solomon (old) scanstatus2 is: 0
Dr. Solomon (new) scanstatus3 is: 0
Sophos Sweep scanstatus4 is: 3
NAI Virus Scan 4.x scanstatus5 is: 0
KasperskyLab AVP scanstatus6 is: 0
KasperskyLab AVPDaemonClient scantatus7 is: 0
F-Secure Antivirus scanstatus8 is: 0
Trend Micro FileScanner scanstatus9 is: 0
CyberSoft vfind scanstatus10 is: 0
CAI InoculateIT (inocucmd) scanstatus11 is: 0
Ne znam kak tochno gi chistish, no ochevidno preglejdash fajlovete s niakolko
antivirusni programi. Spored mene problema moje da idva ottam, che samo Sophos
Sweep hvashta virusa, no pyk na nego izglejda mu e iztekyl perioda, prez kojto
mojesh da go polzvash... ('Useful life of SWEEP has been exceeded')
rgds,
Andrei
A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers).
http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora
To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html
lug-bg: security problem
Plzvam amavis.0.2.1 i sophos i dosega ne sam imal podoben problem a saob6tenieto za sweep i dosega si go pokazva6e no ne imalo problems. Sa6tite sa bili nastroikite i predi ne sam gi promenial i predi si e spiral virusite bez problem... dori tochno klez_g scanmails (0.2.1) called -f [EMAIL PROTECTED] -Y -a -d nikig FROM: TO: Contents of /var/tmp/scanmails28514/unpacked /var/tmp/scanmails28514/unpacked: total 94 drwxr-xr-x3 root root 1024 Oct 7 11:06 . drwx--3 root root 1024 Oct 7 11:06 .. -rw-r--r--1 root root 319 Oct 7 11:06 1033978014.28538-0.netgate.csoft.bg -rw-r--r--1 root root 1056 Oct 7 11:06 1033978014.28538-1.netgate.csoft.bg -rw-r--r--1 root root87130 Oct 7 11:06 Mail_8_.exe -rw-r--r--1 root root 357 Oct 7 11:06 Mail_8_.htm drwxr-xr-x2 root root 1024 Oct 7 11:06 SFX /var/tmp/scanmails28514/unpacked/SFX: total 2 drwxr-xr-x2 root root 1024 Oct 7 11:06 . drwxr-xr-x3 root root 1024 Oct 7 11:06 .. Useful life of SWEEP has been exceeded Virus 'W32/Klez-G' found in file /var/tmp/scanmails28514/unpacked/Mail_8_.exe H+BEDV AntiVir scanstatus0 is: 0 Mcafee scanstatus1 is: 0 Dr. Solomon (old) scanstatus2 is: 0 Dr. Solomon (new) scanstatus3 is: 0 Sophos Sweep scanstatus4 is: 3 NAI Virus Scan 4.x scanstatus5 is: 0 KasperskyLab AVP scanstatus6 is: 0 KasperskyLab AVPDaemonClient scantatus7 is: 0 F-Secure Antivirus scanstatus8 is: 0 Trend Micro FileScanner scanstatus9 is: 0 CyberSoft vfind scanstatus10 is: 0 CAI InoculateIT (inocucmd) scanstatus11 is: 0 No virus found - good - http://www.pari.bg/abonamenti - Ñòàâà âúïðîñ çà ÏÀÐÈ. Çà ìíîãî ÏÀÐÈ. 365 äíè â ãîäèíàòà. A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers). http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html
RE: lug-bg: security problem
-Original Message- From: Niki Nick [mailto:[EMAIL PROTECTED]] Sent: Monday, October 07, 2002 2:52 PM To: [EMAIL PROTECTED] Subject: lug-bg: security problem Plzvam amavis.0.2.1 i sophos i dosega ne sam imal podoben problem a saob6tenieto za sweep i dosega si go pokazva6e no ne imalo problems. Sa6tite sa bili nastroikite i predi ne sam gi promenial i predi si e spiral virusite bez problem... dori tochno klez_g scanmails (0.2.1) called -f [EMAIL PROTECTED] -Y -a -d nikig FROM: TO: Contents of /var/tmp/scanmails28514/unpacked /var/tmp/scanmails28514/unpacked: total 94 drwxr-xr-x3 root root 1024 Oct 7 11:06 . drwx--3 root root 1024 Oct 7 11:06 .. -rw-r--r--1 root root 319 Oct 7 11:06 1033978014.28538-0.netgate.csoft.bg -rw-r--r--1 root root 1056 Oct 7 11:06 1033978014.28538-1.netgate.csoft.bg -rw-r--r--1 root root87130 Oct 7 11:06 Mail_8_.exe -rw-r--r--1 root root 357 Oct 7 11:06 Mail_8_.htm drwxr-xr-x2 root root 1024 Oct 7 11:06 SFX /var/tmp/scanmails28514/unpacked/SFX: total 2 drwxr-xr-x2 root root 1024 Oct 7 11:06 . drwxr-xr-x3 root root 1024 Oct 7 11:06 .. Useful life of SWEEP has been exceeded Virus 'W32/Klez-G' found in file /var/tmp/scanmails28514/unpacked/Mail_8_.exe Pogledni da ne si obnowqwal engine-a na virus skenerite Ako polzwash script kojto wika antiwirusnite I obrabotwa otgoworite move da ne ochakwa tochno tozi wid na texta. Pone takyw problem imashe sys mailscanner-a + f-prot v3.12a. Ot f-prot smeniha stringa kojto wryshta I mailscanner scripta ne se useshtashe... Pozdrawi, Anton Todorov A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers). http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html
lug-bg: Security
Samo kato informacia: na tozi address: http://www.tlsecurity.net ima mnogo interesni neshta za sigurnostta v LINUX i dr. OS. Vesselin === A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers) http://www.linux-bulgaria.org/ Hosted by Internet Group Ltd. - Stara Zagora
lug-bg: [SECURITY-BASICS] TCP Hijacking -newbie- (fwd)
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 eto wi oshte edna interesna tema :) - -===- Regards,AngelFire Stanislav Lechev[EMAIL PROTECTED] PGP Key: http://firedust.vega.bg/pgp/StanislavLechev.asc - -===- - -- Forwarded message -- Date: Thu, 12 Apr 2001 09:09:23 -0700 From: "Savkovic, David (EDS)" [EMAIL PROTECTED] To: [EMAIL PROTECTED] Subject: [SECURITY-BASICS] TCP Hijacking -newbie- Here is the scenario: A business partner of mine and I were transferring some documents last night. We opened a password protected net bios session for a few minutes. During the transfer, my firewall(Black Ice) detected a TCP data changed /hijacking attempt. Here is the link to their ADVICE section: http://advice.networkice.com/advice/intrusions/2000320/default.htm I have been reading up on this, but I cannot find detailed information on exactly what happened. I would like an exact description of how something like this could be accomplished. We are both using Windows ME and on a cable ISP. Obviously, we killed the session and will be using a VPN next time with Win 2K and encrypting the docs. So much for shortcuts... Thanks in advance for your help. Security Newbster, David -BEGIN PGP SIGNATURE- Version: GnuPG v1.0.4 (GNU/Linux) Comment: Made with pgp4pine 1.75-6 iD8DBQE61sI48RPXBhiMqewRAs/PAJ4p0ZXVG8A8+fHt3vwF0Suw+UiuXwCfdurl dpQmDVCniC2a1+lOrgXsHZY= =lv5M -END PGP SIGNATURE- === A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers) http://www.linux-bulgaria.org/ Hosted by Internet Group Ltd. - Stara Zagora
