Re: SNMP scanner?

2016-07-30 Thread Jon Brinkmann 
I'm not clear on what you mean by "scanner".  Do you want to scan multiple
computers for the SNMP service?  Do you want to scan for available MIBs on
one or more computers?

On Sat, Jul 30, 2016 at 03:06:48PM -0700, ToddAndMargo wrote:
> >
> >ToddAndMargo wrote on 7/29/16 8:06 PM:
> >>On 07/29/2016 05:21 PM, Eero Volotinen wrote:
> >>>
> >>>Openvas, nmap and so on
> >>>
> >>>
> >>>30.7.2016 2.15 ap. "ToddAndMargo"  >>>> kirjoitti:
> >>>
> >>>Can anyone recommend an SNMP scanner?
> >>>
> >>
> >>
> >>Hi Eero,
> >>
> >>I am trying to figure out how to do a "network discovery" with
> >>snmp and nmap.  I haven't figured it out yet.  Have you done
> >>this before?
> >>
> >>Openvas  looks very promising.  Wish it wasn't set up
> >>as a virtual machine.  Makes it a bit interesting to install
> >>on a flash drive.  I do know how to convert ova's to
> >>qemu-kvm, but still ...
> >>
> >>Thank you for helping me with this!
> >>-T
> >>
> >>--
> >>~~
> >>Computers are like air conditioners.
> >>They malfunction when you open windows
> >>~~
> >>
> >
> >
>
>
> On 07/30/2016 06:37 AM, P. Larry Nelson wrote:
> >I use fing.  Wonderful tool!
> >
> >https://www.fingbox.com/download
> >
> >https://www.fingbox.com/help?c=command-line_tool&a=network_discovery
> >
> >- Larry
>
> Hi Larry,
>
> # yum localinstall overlook-fing-3.0.rpm
> ...
> Transaction check error:
>   file /usr/bin from install of fing-3.0-1.x86_64 conflicts with file from
> package filesystem-3.2-20.el7.x86_64
> Poop!
>
> How is fing at finding things on the same interface that
> have different networks?
>
> And, how is it for finding things without and IP address?
>
> Thank you for  helping me with this!
> -T
>
>
>
> --
> ~~
> Computers are like air conditioners.
> They malfunction when you open windows
> ~~

Re: SNMP scanner?

2016-07-30 Thread Jon Brinkmann 
Does 'nmap -sX ' fit the bill, e.g.
'nmap -sX 192.168.1.1-255'?

On Sat, Jul 30, 2016 at 06:29:24PM -0700, Bruce Ferrell wrote:
> fing is certainly an interesting tool and useful.  It found a minor misconfig 
> on my network.
>
> it *seems* nmap will do what fing does though with:
>
> nmap -sn 
>
> Am I the only one concerned about what appears to be a closed source utility 
> that duplicates well audited utilities on their network that comes from 
> outside the US (whois
> fingbox.com tells me that)?
>
> The fact that is cross platform is sort of nice, but my spidey sense is still 
> tingling. Probably nothing, but...
>
>
>
> On 07/30/2016 06:37 AM, P. Larry Nelson wrote:
> > I use fing.  Wonderful tool!
> >
> > https://www.fingbox.com/download
> >
> > https://www.fingbox.com/help?c=command-line_tool&a=network_discovery
> >
> > - Larry
> >
> >
> > ToddAndMargo wrote on 7/29/16 8:06 PM:
> >> On 07/29/2016 05:21 PM, Eero Volotinen wrote:
> >>>
> >>> Openvas, nmap and so on
> >>>
> >>>
> >>> 30.7.2016 2.15 ap. "ToddAndMargo"  >>> > kirjoitti:
> >>>
> >>> Can anyone recommend an SNMP scanner?
> >>>
> >>
> >>
> >> Hi Eero,
> >>
> >> I am trying to figure out how to do a "network discovery" with
> >> snmp and nmap.  I haven't figured it out yet.  Have you done
> >> this before?
> >>
> >> Openvas  looks very promising.  Wish it wasn't set up
> >> as a virtual machine.  Makes it a bit interesting to install
> >> on a flash drive.  I do know how to convert ova's to
> >> qemu-kvm, but still ...
> >>
> >> Thank you for helping me with this!
> >> -T
> >>
> >> --
> >> ~~
> >> Computers are like air conditioners.
> >> They malfunction when you open windows
> >> ~~
> >>
> >
> >

Multiple Vulnerabilities in PHP Could Allow for Arbitrary Code Execution

2018-04-27 Thread Jon Brinkmann 
See 
https://www.cisecurity.org/advisory/multiple-vulnerabilities-in-php-could-allow-for-arbitrary-code-execution_2018-046/

This is the second warning in as many months.  The current version of PHP
distributed with SL 7.4 is "PHP 5.4.16 (cli) (built: Mar  7 2018 12:48:25)"
which is vulnerable.  Are there plans to distribute version 5.6.36 or
newer anytime soon?

Jon

Re: kicked off the list via Office 365?

2018-11-27 Thread Jon Brinkmann 
Yes, me too.  After more than a decade of subscribership with no problems!
I think FNAL's "filter" is way too sensitive:  it cited bounced messages due to
FNAL errors from three months ago as part of the reason for the unsubscription!
The period should be no more than a week and it should ignore errors caused
by the FNAL servers.

On Tue, Nov 27, 2018 at 01:02:50AM -0800, Akemi Yagi wrote:
> On Fri, Nov 16, 2018 at 10:43 AM Bonnie King  wrote:
> >
> > Hello,
> >
> > Some users were erroneously unsubscribed from the list due to an issue
> > between the listserv and Fermilab's email provider. The subscriber list
> > has been restored. Sorry for the inconvenience.
> > --
> > Bonnie King
>
> The problem is back?  I just received the "Your removal from the
> SCIENTIFIC-LINUX-USERS list" message. I then joined the list and am
> now sending this mail.
>
> Akemi