Re: Unclassified Disk Sanitizers

2002-02-28 Thread Jared C. Lovell 


C'mon kids, why waste money just to destroy data?  It's easier than all
that  Drop disk in question in a free unix box, then:

dd if=/dev/urandom of=/dev/daWhateverdisk 

If you're really paranoid, put it in a while true, run it all night  It
takes longer than a blowtourch but get the drive just as hot and
delicious without the open flame 

- Jared Lovell

On Thu, 21 Feb 2002, Sadler, Connie J wrote:

 
 Does anyone have recommendations for freeware or shareware that effectively
 erases disks for unclassified but sensitive information? This would be used
 for all machines retired to school programs, etc We need one for Windows
 and one for UNIX, if one tool can't clean both types of disks Anybody have
 experience with this?
 
 Thank you!
 
 Connie

Re: sftp server

2002-02-02 Thread Jared C. Lovell 


Set the user's shell to something that's not a shell.  Some systems have a
/sbin/nologin, or you can use /bin/false or something equally harmless.  
It's proabably gotta exist in your system's list of valid shells
(/etc/shells).

hope that helps.  

- Jared Lovell

On Thu, 31 Jan 2002, Geeking Out wrote:

 Greetings,
 
 I have someone with which I wish to automate file
 transfers. I wish to do this securely.
 I thought that running ssh on the box with key
 exchanges would do this just fine since i can then use
 sftp. However, if I install ssh on the box, and I give
 the client access, they can also log into the box and
 get a shell.
 Is there a way in which I can limit them to sftp only?
 
 Thank you in advance!
 
 __
 Do You Yahoo!?
 Great stuff seeking new owners in Yahoo! Auctions! 
 http://auctions.yahoo.com

Re: Ftp box - questionable

2002-01-19 Thread Jared C. Lovell 


Yeah, it probably means that someone has anonymous ftp running for no good
reason  Consider not allowing anonymous connections, you'll see the
number of failed (occasionally, sucessful) attempts to d/l sensitive
files drop considerably.  Better yet, don't run ftpd at all

- Jared

On Thu, 17 Jan 2002, Dr Bado wrote:

 Can someone decipher this??
 
 
 
 Jan 8 09:47:46 ftp ftpd[17283]: [ID 575915 daemon.notice] ftp of
 ACB026FC.ipt.aol.com
 [172.176.38.252] tried to download /exdsk/ftp/etc/passwd
 
 Jan 9 12:16:00 ftp ftpd[18122]: [ID 575915 daemon.notice] ftp of
 sandbox.fis.adp.com
 [38.218.181.113] tried to download /exdsk/ftp/incoming/.tmp

Re: Secure network-filesystems

2002-01-15 Thread Jared C. Lovell 


NFS over SSH tunnels works for me Not extremely fast, but encrypted
traffic rarely is.  Since SSH is free or nearly free, it's worth a shot
before using anything expensive and/or restricted to a single OS.  NFS and
SSH is a winning combo if your environment is mixed (alll mojor UNIXes,
NT/2000), and adds the benefit of proper authentication.

Hope this helps.

- Jared Lovell



On Fri, 11 Jan 2002, Philippe Seidel wrote:

 Hello,
 
 I just want to set up a central file server offering both public
 shares and private stuff (home directories and stuff like this) on an
 OpenBSD box.
 Everything well, until I realized that both samba and NFS will pass
 everything unencrypted through the network.
 
 Now my question:
 Are there any free (speech or beer) network-filesystems offering both
 optional encryption (for the public shares it just gives
 away computing time) as well as also optional secure (kerberos?) user
 authentication available both for *nixes (meanpart Linux) *and*
 Windows 9x? Eventually two different systems, one for the *nixes and
 one for the windows-machines.
 
 Someone in this list just mentioned NFS+, but I didn't find anything
 at a short google search.
 What about an encrypted SMB share?
 Or this mysterious thing I saw in the Linux kernel... Coda?
 
 Thanks in advance,
 Philippe

Re: TCP ports

2001-12-20 Thread Jared C. Lovell 


The official source:

http://www.iana.org/assignments/port-numbers

To learn about CIFS and SMB, check out

http://ubiqx.org/cifs/

http://www.samba.org/cifs/docs/what-is-smb.html

hope that helps. 

- Jared Lovell


On Wed, 19 Dec 2001, [iso-8859-1] sathish gowda wrote:

 Hi everybody where can I get some useful tutors about
 the different TCP ports and detail working description
 For example I need to know about 137 and 139 ports
 
 Thanks
 Sathish Gowda
 
 
 
 =
 Champions Are Not Those Who Never Fail But Are Those Who Never Quit
 
 __
 Do You Yahoo!?
 Everything you'll ever need on one web page
 from News and Sport to Email and Music Charts
 http://uk.my.yahoo.com

Re: Which Proxy Server...

2001-12-16 Thread Jared C. Lovell 


Apache (www.apache.org) w/ mod_proxy works fine for http.  Apache builds
under most anything.  For the others, I'm not sure you want a proxy server
so much as a NAT service.  I've never heard of a telnet proxy, since
it's interactive (ie, not stateless file serving like http).

Hope that helps.  

- Jared Lovell


On Fri, 14 Dec 2001 [EMAIL PROTECTED] wrote:

 Dear users,
   I am planning to upgrade my Proxy Server. It runs on IBM AIX(Unix Like)
 operating system. I tried to search Proxy Server for Unix on Internet.
 But the results were not much and also their performances were unknown.
 Can you help me out to select a suitable one proxying the following
 services, at least:
 1. HTTP,FTP,news
 2. Telnet
 3. Streaming Video/Audio Service
 4. Messanger Service
 
 I need the Proxy Server to run on Unix like Operating System only.
 
 Rakesh
 ==
 
 
 -