Re: Dead Firewall!
farli wrote: I have a firewall computer that is dying a slow death! I need someone to upgrade the firewall software! I would try it myself except that the firewall box has no cd drive. Installing something like IPCop (I have a copy of IPCop v1.4.10) ona box without a cd drive is not something I am able to do alone. Anyone willing to assist? I am located near 19th Ave and Glendale. If you think you can get me back up and running with full internet access through this cdless computer, please contact me off the list. TIA Jim What time do you figure on arriving at the installfest? I'm planning on being there w/ spare computer etc, but probably will not be able to stay the entire period. -- -Eric 'shubes' --- PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us To subscribe, unsubscribe, or to change your mail settings: http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
I'm so excited!
And I just can't hide it. :) Well, I knew there was a way to make it so that Outlook would send mail using gmail but I was to lazy to figure out how to do it. Without asking anyone (except google) I got it to work! -- :-)~MIKE~(-: --- PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us To subscribe, unsubscribe, or to change your mail settings: http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
Re: I'm so excited!
I know I got it to work right because the mail I send from outlook is going to the gmail sent box. Now I don't have to finagle things when I click on an email link and the web page opens an Outlook mail. On Sat, Jan 31, 2009 at 10:55 AM, bmike1 bmi...@gmail.com wrote: And I just can't hide it. :) Well, I knew there was a way to make it so that Outlook would send mail using gmail but I was to lazy to figure out how to do it. Without asking anyone (except google) I got it to work! -- :-)~MIKE~(-: -- :-)~MIKE~(-: --- PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us To subscribe, unsubscribe, or to change your mail settings: http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
Re: I'm so excited!
I commend your efforts but I guess I have to ask..why? LOL! I am online, writing to you from g-mail, and it works all by itself my man. Please understand, I am not making fun of you, I am just having some fun, I got g-mail to work with Thunderbird a while back and it spent two weeks downloading all 2+ gigs of my mail offline too. Would alomost freeze my computer when I started it up. ;-) Scott On Sat, Jan 31, 2009 at 9:00 AM, bmike1 bmi...@gmail.com wrote: I know I got it to work right because the mail I send from outlook is going to the gmail sent box. Now I don't have to finagle things when I click on an email link and the web page opens an Outlook mail. On Sat, Jan 31, 2009 at 10:55 AM, bmike1 bmi...@gmail.com wrote: And I just can't hide it. :) Well, I knew there was a way to make it so that Outlook would send mail using gmail but I was to lazy to figure out how to do it. Without asking anyone (except google) I got it to work! -- :-)~MIKE~(-: -- :-)~MIKE~(-: --- PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us To subscribe, unsubscribe, or to change your mail settings: http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss -- Scott Ruecker, Editor-in-Chief LXer Linux News The world doesn't need saving. But the word does, and copy editing is what fights the good fight. --- PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us To subscribe, unsubscribe, or to change your mail settings: http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
Re: Dead Firewall!
Not sure I can make it today :( Seems that my wife has some issues at her store to deal with. Dont wait for me if you have things to do. I know I can always find any help I need on this list. Jim Eric Shubert wrote: farli wrote: I have a firewall computer that is dying a slow death! I need someone to upgrade the firewall software! I would try it myself except that the firewall box has no cd drive. Installing something like IPCop (I have a copy of IPCop v1.4.10) ona box without a cd drive is not something I am able to do alone. Anyone willing to assist? I am located near 19th Ave and Glendale. If you think you can get me back up and running with full internet access through this cdless computer, please contact me off the list. TIA Jim What time do you figure on arriving at the installfest? I'm planning on being there w/ spare computer etc, but probably will not be able to stay the entire period. --- PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us To subscribe, unsubscribe, or to change your mail settings: http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
Zenwalk Curiousities
snip... Back on list, anyone use Zenwalk? I hear it's nice, thinking about it for my next distro. I tried it, the 5.4 beta and didn't stick with it. It wouldn't acknowledge my wireless Intel 4965. It looked good, but I found Xubuntu to be more intuitive for me IMO as a desktop. As far as desktops go I either get it or I don't. If doing what I want to do is too convoluted then I'm gone. I'm only talking about desktops here... --- PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us To subscribe, unsubscribe, or to change your mail settings: http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
Re: I'm so excited!
It's like somebody posting hey, wowee, I managed to call Cthulu and yay, he ate my soul! :) --- PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us To subscribe, unsubscribe, or to change your mail settings: http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
Re: I'm so excited!
Your absolutely right Stephen, all is good in poking a little fun, and I love the Cthulu reference Jim.. I got Outlook to work with Cthulu!, It was awesome!..uh oh On Sat, Jan 31, 2009 at 3:13 PM, Jim March 1.jim.ma...@gmail.com wrote: It's like somebody posting hey, wowee, I managed to call Cthulu and yay, he ate my soul! :) --- PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us To subscribe, unsubscribe, or to change your mail settings: http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss -- Scott Ruecker, Editor-in-Chief LXer Linux News The world doesn't need saving. But the word does, and copy editing is what fights the good fight. --- PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us To subscribe, unsubscribe, or to change your mail settings: http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
Re: I'm so excited!
For the record: I've got GMail working perfectly with Thunderbird 2.x in Ubuntu :). --- PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us To subscribe, unsubscribe, or to change your mail settings: http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
Re: I'm so excited!
Pause topic I would like to express my distaste about the opening line in the original post as that stupid song is now stuck in my head Resume topic On 1/31/09, Stephen cryptwo...@gmail.com wrote: We are a list of geeks and you need to ask why? sometimes just being able to do something is the reason for doing it :-) *also poking fun* on a more serious note some people have web access restricted but not the email ports lost of reasons why... not all of use like some of the features of gmail. but yet they like something about it. On Sat, Jan 31, 2009 at 9:38 AM, Sharkscott sharksc...@gmail.com wrote: I commend your efforts but I guess I have to ask..why? LOL! I am online, writing to you from g-mail, and it works all by itself my man. Please understand, I am not making fun of you, I am just having some fun, I got g-mail to work with Thunderbird a while back and it spent two weeks downloading all 2+ gigs of my mail offline too. Would alomost freeze my computer when I started it up. ;-) Scott On Sat, Jan 31, 2009 at 9:00 AM, bmike1 bmi...@gmail.com wrote: I know I got it to work right because the mail I send from outlook is going to the gmail sent box. Now I don't have to finagle things when I click on an email link and the web page opens an Outlook mail. On Sat, Jan 31, 2009 at 10:55 AM, bmike1 bmi...@gmail.com wrote: And I just can't hide it. :) Well, I knew there was a way to make it so that Outlook would send mail using gmail but I was to lazy to figure out how to do it. Without asking anyone (except google) I got it to work! -- :-)~MIKE~(-: -- :-)~MIKE~(-: --- PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us To subscribe, unsubscribe, or to change your mail settings: http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss -- Scott Ruecker, Editor-in-Chief LXer Linux News The world doesn't need saving. But the word does, and copy editing is what fights the good fight. --- PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us To subscribe, unsubscribe, or to change your mail settings: http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss -- A mouse trap, placed on top of your alarm clock, will prevent you from rolling over and going back to sleep after you hit the snooze button. Stephen --- PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us To subscribe, unsubscribe, or to change your mail settings: http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss -- Sent from my mobile device James Finstrom Rhino Equipment Corp. http://rhinoequipment.com ~ http://postug.com Phone: 1-877-RHINO-T1 ~ FAX: +1 (480) 961-1826 Twitter: http://twitter.com/rhinoequipment IP: gu...@asterisk.rhinoequipment.com --- PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us To subscribe, unsubscribe, or to change your mail settings: http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
Re: I'm so excited!
I so excited, I just can't hide it! On 1/31/09, James Finstrom jfinst...@rhinoequipment.com wrote: Pause topic I would like to express my distaste about the opening line in the original post as that stupid song is now stuck in my head Resume topic On 1/31/09, Stephen cryptwo...@gmail.com wrote: We are a list of geeks and you need to ask why? sometimes just being able to do something is the reason for doing it :-) *also poking fun* on a more serious note some people have web access restricted but not the email ports lost of reasons why... not all of use like some of the features of gmail. but yet they like something about it. On Sat, Jan 31, 2009 at 9:38 AM, Sharkscott sharksc...@gmail.com wrote: I commend your efforts but I guess I have to ask..why? LOL! I am online, writing to you from g-mail, and it works all by itself my man. Please understand, I am not making fun of you, I am just having some fun, I got g-mail to work with Thunderbird a while back and it spent two weeks downloading all 2+ gigs of my mail offline too. Would alomost freeze my computer when I started it up. ;-) Scott On Sat, Jan 31, 2009 at 9:00 AM, bmike1 bmi...@gmail.com wrote: I know I got it to work right because the mail I send from outlook is going to the gmail sent box. Now I don't have to finagle things when I click on an email link and the web page opens an Outlook mail. On Sat, Jan 31, 2009 at 10:55 AM, bmike1 bmi...@gmail.com wrote: And I just can't hide it. :) Well, I knew there was a way to make it so that Outlook would send mail using gmail but I was to lazy to figure out how to do it. Without asking anyone (except google) I got it to work! -- :-)~MIKE~(-: -- :-)~MIKE~(-: --- PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us To subscribe, unsubscribe, or to change your mail settings: http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss -- Scott Ruecker, Editor-in-Chief LXer Linux News The world doesn't need saving. But the word does, and copy editing is what fights the good fight. --- PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us To subscribe, unsubscribe, or to change your mail settings: http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss -- A mouse trap, placed on top of your alarm clock, will prevent you from rolling over and going back to sleep after you hit the snooze button. Stephen --- PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us To subscribe, unsubscribe, or to change your mail settings: http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss -- Sent from my mobile device James Finstrom Rhino Equipment Corp. http://rhinoequipment.com ~ http://postug.com Phone: 1-877-RHINO-T1 ~ FAX: +1 (480) 961-1826 Twitter: http://twitter.com/rhinoequipment IP: gu...@asterisk.rhinoequipment.com --- PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us To subscribe, unsubscribe, or to change your mail settings: http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss -- Sent from my mobile device A mouse trap, placed on top of your alarm clock, will prevent you from rolling over and going back to sleep after you hit the snooze button. Stephen --- PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us To subscribe, unsubscribe, or to change your mail settings: http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
Re: Zenwalk Curiousities
On Sat, Jan 31, 2009 at 1:58 PM, leegold leeg...@fastmail.fm wrote: snip... Back on list, anyone use Zenwalk? I hear it's nice, thinking about it for my next distro. I tried it, the 5.4 beta and didn't stick with it. It wouldn't acknowledge my wireless Intel 4965. It looked good, but I found Xubuntu to be more intuitive for me IMO as a desktop. As far as desktops go I either get it or I don't. If doing what I want to do is too convoluted then I'm gone. I'm only talking about desktops here... --- I use Zenwalk on systems that have less than a Ghz in processor power* - works great, very efficient. Zenwalk/Slackware works for me because I like OpenBSD and the configuration of Slackware based systems is very similar(CLI). Zenwalk has a good collection of apps in it's repo, not huge, but well selected. I recommend Zenwalk for systems you want to have a light touch on the hardware - I believe it is still configured to install onto 486 architectures - well it might require a Pentium these days... When giving away computers I tend to load Zenwalk - simple functional without all the maintenance of giving Fedora to someone just figuring out GNU/Linux. *when not using OpenBSD Ed --- PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us To subscribe, unsubscribe, or to change your mail settings: http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
Re: I'm so excited!
I'm about to lose control and I think I like it YEAH!..wear are my leotards..uhh did I just say that? Doh! On Sat, Jan 31, 2009 at 7:20 PM, Stephen cryptwo...@gmail.com wrote: I so excited, I just can't hide it! On 1/31/09, James Finstrom jfinst...@rhinoequipment.com wrote: Pause topic I would like to express my distaste about the opening line in the original post as that stupid song is now stuck in my head Resume topic On 1/31/09, Stephen cryptwo...@gmail.com wrote: We are a list of geeks and you need to ask why? sometimes just being able to do something is the reason for doing it :-) *also poking fun* on a more serious note some people have web access restricted but not the email ports lost of reasons why... not all of use like some of the features of gmail. but yet they like something about it. On Sat, Jan 31, 2009 at 9:38 AM, Sharkscott sharksc...@gmail.com wrote: I commend your efforts but I guess I have to ask..why? LOL! I am online, writing to you from g-mail, and it works all by itself my man. Please understand, I am not making fun of you, I am just having some fun, I got g-mail to work with Thunderbird a while back and it spent two weeks downloading all 2+ gigs of my mail offline too. Would alomost freeze my computer when I started it up. ;-) Scott On Sat, Jan 31, 2009 at 9:00 AM, bmike1 bmi...@gmail.com wrote: I know I got it to work right because the mail I send from outlook is going to the gmail sent box. Now I don't have to finagle things when I click on an email link and the web page opens an Outlook mail. On Sat, Jan 31, 2009 at 10:55 AM, bmike1 bmi...@gmail.com wrote: And I just can't hide it. :) Well, I knew there was a way to make it so that Outlook would send mail using gmail but I was to lazy to figure out how to do it. Without asking anyone (except google) I got it to work! -- :-)~MIKE~(-: -- :-)~MIKE~(-: --- PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us To subscribe, unsubscribe, or to change your mail settings: http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss -- Scott Ruecker, Editor-in-Chief LXer Linux News The world doesn't need saving. But the word does, and copy editing is what fights the good fight. --- PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us To subscribe, unsubscribe, or to change your mail settings: http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss -- A mouse trap, placed on top of your alarm clock, will prevent you from rolling over and going back to sleep after you hit the snooze button. Stephen --- PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us To subscribe, unsubscribe, or to change your mail settings: http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss -- Sent from my mobile device James Finstrom Rhino Equipment Corp. http://rhinoequipment.com ~ http://postug.com Phone: 1-877-RHINO-T1 ~ FAX: +1 (480) 961-1826 Twitter: http://twitter.com/rhinoequipment IP: gu...@asterisk.rhinoequipment.com --- PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us To subscribe, unsubscribe, or to change your mail settings: http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss -- Sent from my mobile device A mouse trap, placed on top of your alarm clock, will prevent you from rolling over and going back to sleep after you hit the snooze button. Stephen --- PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us To subscribe, unsubscribe, or to change your mail settings: http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss -- Scott Ruecker, Editor-in-Chief LXer Linux News The world doesn't need saving. But the word does, and copy editing is what fights the good fight. --- PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us To subscribe, unsubscribe, or to change your mail settings: http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
HackFest Series: DSL Router Exploits, Stack/Email/UPnP WRT
Most home based routers can be easily exploited in a variety of ways. This is a list of a great many historic security exploits: http://attrition.org/security/advisory/ ...but it's probably going to work best to just google your router version. Even the open-wrt and dd-wrt 3rd party firmware versions will overflow a buffer and allow special features including standard SSL and SSH exploits for any port open including failing to protect http/XML sources from an external attack under a distributed attack. Many owners of Netgear and Linksys like running their own shell based routers, since they can more easily setup special features especially P2P passthrough, VPNs and easy tunnels via command line, and ssh easily through. However, it's a fallacy that they are more secure or faster. They do not compete with the IPS features of packet inspection features and Layer 2 switching available in some of the newer multi-processor business router models. But if you really need a secure network, a Cisco ASA is recommended (but be sure to know the IOS and firmware version exploits also!) For more information on fun that can be had via WRT firmware see: http://openwrt.org http://www.dd-wrt.com/dd-wrtv3/index.php It's fairly easy in 15 minutes to determine if your router is on the equipment compat list via google. WRT is not recommended unless you can manipulate files and understand command line systems. Belkin/Netgear/LinkSys have an extensive list of known exploits - it's best to check what is broken on your firmware via Google. It's a good idea to check for WRT'able versions - for instance the Cisco older teeny routers with the ARM processor had too small of memory to really be WRT-d, therefore this is a good choice - I bought one at a garage sale for $1.00 (and I add it as a second level of NAT complexity to my network for various reasons). Excerpted from http://attrition.org/security/advisory/core/core-2002-10-05.linksys (full list of the same old exploits around for some time described): Workarounds* - Disable Remote Management if it's enabled. This will restrict the exploitability of the bugs to the local network, or require a little smarter attack, for example, an email with an embedded Img tag may, upon reading, enable Remote Management, giving the attacker full control of the appliance across the internet, especially if your admin username is Admin and your password saved in your cache. For example: Img Src=http://192.168.1.1/Gozila.cgi?setPasswd=holaRemoteManagement=1.xml=1 - Remote Management port can be changed. This will not make the attack impossible at all, but will somehow make it a little tougher for an attacker, probably giving you some more time to detect her. Authentication Bypassing vulnerabilities: ~~ ~ ~~~ This vulnerability was independently discovered and reported to Linksys by at least two other persons. Seth Bromberger posted a report to bugtraq about this vulnerability (see [2]). It was partially fixed in firmware v1.43.3, but it's still possible to exploit it, keep on reading. As part of the UPnP implementation [1], the Linksys family of products multicast their features as part of UPnP's Discovery step. For this UDP packets are sent from port 1901 to multicast address 239.255.255.250 port 1900. The following are two examples of such packets' data. NOTIFY * HTTP/1.1 HOST:239.255.255.250:1900 Cache-Control:max-age=120 Location:http://192.168.1.1:5678/rootDesc.xml NT:uuid:upnp-InternetGatewayDevice-1_0-0090a277 NTS:ssdp:alive Server:NT/5.0 UPnP/1.0 USN:uuid:upnp-InternetGatewayDevice-1_0-0090a277 NOTIFY * HTTP/1.1 HOST:239.255.255.250:1900 Cache-Control:max-age=120 Location:http://192.168.1.1:5678/rootDesc.xml NT:urn:schemas-upnp-org:device:InternetGatewayDevice:1 NTS:ssdp:alive Server:NT/5.0 UPnP/1.0 USN:uuid:upnp-InternetGatewayDevice-1_0-0090a277::urn:schemas-upnp-org:device:InternetGatewayDevice:1 In response to these packets, an UPnP control point will retrieve a description from the URL supplied in the NOTIFY packet, using the HTTP protocol. In our case this URL is http://192.168.1.1:5678/rootDesc.xml, and no authentication is needed to access it (you can test this using the browser of your choice). In order to answer requests to port 5678 and to serve remote administration pages on port 80, Linksys' products use the same embedded HTTP server application. The HTTP server will check the requested URL for the substring .xml, if this substring is present, all the authentication verification code will be just skipped, lets see the following ARM assembly fragment, extracted from a firmware image: 01797E LDR R0, =HTTPRequest 017980 STR R7, [R0,#HttpRequest.buffer] 017982 LDR R0, =HTTPRequest 017984 LDRH R0, [R0,#HttpRequest.method_length] 017986 ADD R0, R0, R7 017988 ADD R0, #1 01798A LDR R1, =HTTPRequest 01798C STR R0, [R1,#HttpRequest.path] 01798E ADD R0, R7, #0 017990 ADR
