Re: [newbie] InteractiveBastille error messages.
On Wednesday 28 November 2001 05:27 pm, you wrote: > On Thu, 2001-11-29 at 15:06, Paul Rodríguez wrote: > > I had this trouble some time ago as well (can't remember what version of > > Bastille, and iptables I was running). I any case, I was advised, that > > to get rid of that message, i can get rid of linuxconf from the list of > > services that Bastille audits. I don't know much about the issue, and > > can't find the message in the archives. But I think the point was, > > unless you are concerned with someone with physical access to the system > > making changes via linuxconf, you don't need linuxconf auditing. > > > > -Paul Rodríguez > > Do you think the full security configuration I chose was applied, or > does Bastille abort when it strikes the 'linuxconf' trouble ? Do I need > to run InteractiveBastille again ? An easy way to confirm bastille is doing its job is to go to www.grc.com, then to the shields up section, and have it probe your ports. it doesn't test all ports, but if all the ports return as "closed" rather than "stealth", bastille isn't up. if they don't report as "stealth" run as root /etc/rc.d/init.d/bastille-firewall start Although the linuxconf error does not cause bastille to abort. I get that error as well, I just ignore it. Matt _ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
Re: [newbie] InteractiveBastille error messages.
On Thu, 2001-11-29 at 15:06, Paul Rodríguez wrote: > I had this trouble some time ago as well (can't remember what version of > Bastille, and iptables I was running). I any case, I was advised, that > to get rid of that message, i can get rid of linuxconf from the list of > services that Bastille audits. I don't know much about the issue, and > can't find the message in the archives. But I think the point was, > unless you are concerned with someone with physical access to the system > making changes via linuxconf, you don't need linuxconf auditing. > > -Paul Rodríguez Do you think the full security configuration I chose was applied, or does Bastille abort when it strikes the 'linuxconf' trouble ? Do I need to run InteractiveBastille again ? Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
Re: [newbie] InteractiveBastille error messages.
I had this trouble some time ago as well (can't remember what version of Bastille, and iptables I was running). I any case, I was advised, that to get rid of that message, i can get rid of linuxconf from the list of services that Bastille audits. I don't know much about the issue, and can't find the message in the archives. But I think the point was, unless you are concerned with someone with physical access to the system making changes via linuxconf, you don't need linuxconf auditing. -Paul Rodríguez On Tue, 2001-11-27 at 15:47, Charles Darcy wrote: > On Wed, 2001-11-28 at 16:02, Paul Rodríguez wrote: > > Is ipchains installed? > > > > Ok, I installed ipchains, which fixed the first problem, but > Bastille now complains: > > ... > about to run through config file. > /sbin/ipchains: invalid port/service 'linuxconf' specified. > > > I have linuxconf installed, if that's what is being referred to, but > otherwise the message is a mystery to me. > > > > =_1006933768-1851-5465 > Want to buy your Pack or Services from MandrakeSoft? > Go to http://www.mandrakestore.com _ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
Re: [newbie] InteractiveBastille error messages.
On Wed, 2001-11-28 at 17:33, Paul Rodríguez wrote: > Whoa, sorry, I was a bit tired. I actually meant iptables, I read your > message as iptables, not chains. You should check to make sure iptables > is installed. > I've now installed iptables (as well as ipchains). Bastille now complains: about to run through config file ... iptables v1.2.4: invalid TCP port/service 'linuxconf' specified. ... which is similar to the second problem I had with ipchains mentioned in a prior post. Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
Re: [newbie] InteractiveBastille error messages.
On Wed, 2001-11-28 at 16:02, Paul Rodríguez wrote: > Is ipchains installed? > Ok, I installed ipchains, which fixed the first problem, but Bastille now complains: ... about to run through config file. /sbin/ipchains: invalid port/service 'linuxconf' specified. I have linuxconf installed, if that's what is being referred to, but otherwise the message is a mystery to me. Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
Re: [newbie] InteractiveBastille error messages.
Whoa, sorry, I was a bit tired. I actually meant iptables, I read your message as iptables, not chains. You should check to make sure iptables is installed. Thanks for catching this. -Paul Rodríguez On Tue, 2001-11-27 at 14:57, Charles Darcy wrote: > On Wed, 2001-11-28 at 16:02, Paul Rodríguez wrote: > > Is ipchains installed? > > > > You can check in rpmdrake, or try "rpm -q ipchains" > > > > The ipchains rpm package html description mentions ... > > "Kernel 2.4 is also supported, but if you have kernel 2.4, you are > highly recommended to use the netfilter system instead." > > ... so I wasn't sure if I should install it. > > > I'll install ipchains and try Bastille again. > > > Thanks for your help. > > > regards, > > Charlie. > > > > > > > > > > On Tue, 2001-11-27 at 22:32, Charles Darcy wrote: > > > Hi, > > > > > > After answering all of the questions in InteractiveBastille (Tk > > > interface), and applying the changes, the Tk window closes normally, but > > > the terminal in which I started InteractiveBastille displays the > > > following: > > > > > > About to run through config file ... > > > /sbin/bastille-ipchains: /sbin/ipchains: No such file or directory. > > > /sbin/bastille-ipchains: /sbin/ipchains: No such file or directory. > > > /sbin/bastille-ipchains: /sbin/ipchains: No such file or directory. > > > ... > > > (repeated 100 or so times) > > > > > > > > > Are these messages normal for LM8.1 ? > > > > > > > > > Thanks for any help, > > > > > > > > > regards, > > > > > > Charlie. > > > > > > > > > > > > > > > =_1006871603-1851-5187 > > > Want to buy your Pack or Services from MandrakeSoft? > > > Go to http://www.mandrakestore.com > > > > > > > > _ > > Do You Yahoo!? > > Get your free @yahoo.com address at http://mail.yahoo.com > > > > > > > > =_1006927790-1851-5442 > > Want to buy your Pack or Services from MandrakeSoft? > > Go to http://www.mandrakestore.com > > > > > =_1006930749-1851-5449 > Want to buy your Pack or Services from MandrakeSoft? > Go to http://www.mandrakestore.com _ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
[newbie] InteractiveBastille error messages.
Hi, After answering all of the questions in InteractiveBastille (Tk interface), and applying the changes, the Tk window closes normally, but the terminal in which I started InteractiveBastille displays the following: About to run through config file ... /sbin/bastille-ipchains: /sbin/ipchains: No such file or directory. /sbin/bastille-ipchains: /sbin/ipchains: No such file or directory. /sbin/bastille-ipchains: /sbin/ipchains: No such file or directory. ... (repeated 100 or so times) Are these messages normal for LM8.1 ? Thanks for any help, regards, Charlie. Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
