Re: [SLUG] Request/issue trackers - options?
On 6/6/05, Matt Moor <[EMAIL PROTECTED]> wrote: > We use Request Tracker for helpdesk ticketing in here, and it rocks. > We've got ~20k requests/issues in it, across 4 queues, and from other > sites I've seen, this is small. We were racking up around 1000 tickets/week across about 12 queues at my last job :) > > We handle errors, requests for new services and tracking general issues. > The only comment I'd make is that I don't think it'll allow you to > classify a request into a category like other bug tracking / issue > tracking software might. It seems more aimed towards helpdesk use than > anything else. It's very extensible, being open source and all.. I'm not sure how much of the features we used were stock and how much were custom in-house stuff, but there was definitely a system for add "custom fields" that I'm fairly certain is stock in the latest version or two. We used this to assign categorys - a ticket in the "support" queue could be labelled as being "hosting" or "email" or "password in one field, with another field for type of service - "managed router" "managed gatweay" "managed server" etc. I'll second the "Rocks" comment although as always, it depends on your precise needs.. -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] Request/issue trackers - options?
We use Request Tracker for helpdesk ticketing in here, and it rocks. We've got ~20k requests/issues in it, across 4 queues, and from other sites I've seen, this is small. We handle errors, requests for new services and tracking general issues. The only comment I'd make is that I don't think it'll allow you to classify a request into a category like other bug tracking / issue tracking software might. It seems more aimed towards helpdesk use than anything else. You might also want to look at deb-bugs (The debian bug tracking system). Cheers, Matt [EMAIL PROTECTED] wrote: Just a general question for the list. We've got the mediawiki going for general feature whiteboarding but it really doesn't cut it as an issue/bug database. I was wondering what other people are using to manage bug lists and issues /feature requests? The ones I've heard of include: Request Tracker IssueZilla BugZilla confluence (not sure if open source?) Any perferences and/or war stories most appreciated. ATB Stu -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] Request/issue trackers - options?
[EMAIL PROTECTED] wrote: Request Tracker we have used it for ages. it works pretty well. does its job of making sure stuff gets done. doesn't really care about 'customers' - ie it has no room for details about who an issue is happeining too, its just a issue, that needs attention. good stuff tho. dave -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] java security in Linux
this is what I would like to be clear about Apart from spamfilters, is reliance on JVM design enough? (apart from continually reminding the users) So, as others have pointed out, JavaScript in browsers and email has nothing to do with the Java programming language and JVM. But, to answer the general question on the JVM: The JVM, and particularly the applet component of it, which is the only piece of software accessible from your browser, is a very mature piece of software. It's been around for ~10 years on solaris/windows, and at least 5 on linux. Given the relatively open nature of the design, you'd expect any glaring security flaws to be identified and fixed in subsequent versions (as they were with MS' JVM). It's also worth noting that even if an applet were to escape out of a sandbox, and try to do something naughty, it would be trapped by UNIX permissions, unless you were silly enough to do something like run the offending applet as root. A basic introduction to the JVM security model is here: http://www.javaworld.com/javaworld/jw-08-1997/jw-08-hood.html Cheers, Matt Moor -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] java security in Linux
Marek Wawrzyczny wrote: Hmmm, let's put it this way, should be enough. But is anyone going to guarantee that at some point, some version of Sun's or someone else's JVM won't have a security flaw? Even then, on Linux, the exploit would have to run with su privileges to gain access to any important system files... no I don't think there is anything to fear about. Sun's and Java's reputation relies on the JVM model being secure. Ok, point taken. However, when logging into Commbank-Netbank, the java-vm is not running as su, and is running with the user's name who started the browser that accessed the web site that ran the script. Which is typically my user name. I notice after logging out of Comm Netbank java-vm is still a process even after closing the window (via top). Could java-vm be inspected? ie by another javascript, byte by byte which could lead to an exploit? Maybe its set up incorrectly in my box? To be sure, I shut down the browser, which kills the java-vm. Is this been overly paranoid? -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
[SLUG] Request/issue trackers - options?
Just a general question for the list. We've got the mediawiki going for general feature whiteboarding but it really doesn't cut it as an issue/bug database. I was wondering what other people are using to manage bug lists and issues /feature requests? The ones I've heard of include: Request Tracker IssueZilla BugZilla confluence (not sure if open source?) Any perferences and/or war stories most appreciated. ATB Stu -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] java security in Linux
On Mon, 6 Jun 2005 12:36, Russell Davie wrote: > Marek Wawrzyczny wrote: > > On Mon, 6 Jun 2005 11:30, Russell Davie wrote: > >>Hi > >>Please give your advice on security of Java in Linux. > >> > >>scenario: > >>I have just received a email from ANZ bank (which I don't bank with, so > >> its likely to be phishing) that is linked to a bunch of Java scripts. > >> This is shown in Mozilla-Thunderbird when I move the cursor over the > >> link. > > > > I got one too... but, there are no links to Java applets, do you mean > > javascript? Javascript is different and unrelated to Java. > > ok, yes > the line is to javascripts > > > Those phishing emails come up often, but seems that they're targeting > > aussie banks again. These emails seems to flare up every now and then. In > > most cases they take you to a fake site that exploits (usually an IE) bug > > that allows the author to obscure the real origin of the site. > > I have firefox running spoofstick, and this says the origin of the page. > > They then ask you for > > > personal information. Since the bank will never do that, delete the email > > straightaway. > > other users on this machine may not be so careful. > > > I have come across one site that had a Java applet that would try and > > overwrite a Windows DLL (the applet never ran), but typically they are > > not that sophisticated. The Security Manager should prevent that from > > happening anyway. Applets should run inside a sandbox and, by design, the > > JVM does not allow them to overwrite file outside the user directory (I > > believe). > > this is what I would like to be clear about > Apart from spamfilters, is reliance on JVM design enough? (apart from > continually reminding the users) Hmmm, let's put it this way, should be enough. But is anyone going to guarantee that at some point, some version of Sun's or someone else's JVM won't have a security flaw? Even then, on Linux, the exploit would have to run with su privileges to gain access to any important system files... no I don't think there is anything to fear about. Sun's and Java's reputation relies on the JVM model being secure. -- --- Marek Wawrzyczny - "Terrorism is the war of the poor, and, war is terrorism of the rich." - Peter Ustinov - - Send instant messages to your online friends http://au.messenger.yahoo.com -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
[SLUG] Computerbank activity ramps up
Just from a personal perspective I thought last weekend at Computerbank at Casula went rather well. At this stage we've gotten through dismantling over 60 of the 200 computers with dangerous motherboards (some catch fire) into parts consisting of power supplies for re-sale, metal cases for recycling, motherboards for recycling, plastic for possible recycling, loads of re-usable RAM, CPU's, HDD, IO cards and screws. Not bad for 4 people on Saturday and 7 on Sunday. Over the next 2 months or so we've got commitment to be open every weekend on both days (not 100% about the long weekend), it's right near Casula station and it's also a great spot for a picnic with a view of the river and room for BBQ's etc. I would suggest people bring a packed lunch otherwise the only shop about is the Cheesecake shop where they have a few meat pies & sandwiches. -- -- Grant Parnell - senior consultant EverythingLinux services - the consultant's backup & tech support. Web: http://www.everythinglinux.com.au/support.php We're also busybits.com.au and linuxhelp.com.au and elx.com.au. Phone 02 8756 3522 to book service or discuss your needs. ELX or its employees participate in the following:- OSIA (Open Source Industry Australia) - http://www.osia.net.au AUUG (Australian Unix Users Group) - http://www.auug.org.au SLUG (Sydney Linux Users Group) - http://www.slug.org.au LA (Linux Australia) - http://www.linux.org.au -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] java security in Linux
Marek Wawrzyczny wrote: On Mon, 6 Jun 2005 11:30, Russell Davie wrote: Hi Please give your advice on security of Java in Linux. scenario: I have just received a email from ANZ bank (which I don't bank with, so its likely to be phishing) that is linked to a bunch of Java scripts. This is shown in Mozilla-Thunderbird when I move the cursor over the link. I got one too... but, there are no links to Java applets, do you mean javascript? Javascript is different and unrelated to Java. ok, yes the line is to javascripts Those phishing emails come up often, but seems that they're targeting aussie banks again. These emails seems to flare up every now and then. In most cases they take you to a fake site that exploits (usually an IE) bug that allows the author to obscure the real origin of the site. I have firefox running spoofstick, and this says the origin of the page. They then ask you for personal information. Since the bank will never do that, delete the email straightaway. other users on this machine may not be so careful. I have come across one site that had a Java applet that would try and overwrite a Windows DLL (the applet never ran), but typically they are not that sophisticated. The Security Manager should prevent that from happening anyway. Applets should run inside a sandbox and, by design, the JVM does not allow them to overwrite file outside the user directory (I believe). this is what I would like to be clear about Apart from spamfilters, is reliance on JVM design enough? (apart from continually reminding the users) <...> regards Russell -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] java security in Linux
On Mon, 6 Jun 2005 11:30, Russell Davie wrote: > Hi > Please give your advice on security of Java in Linux. > > scenario: > I have just received a email from ANZ bank (which I don't bank with, so its > likely to be phishing) that is linked to a bunch of Java scripts. This is > shown in Mozilla-Thunderbird when I move the cursor over the link. I got one too... but, there are no links to Java applets, do you mean javascript? Javascript is different and unrelated to Java. Those phishing emails come up often, but seems that they're targeting aussie banks again. These emails seems to flare up every now and then. In most cases they take you to a fake site that exploits (usually an IE) bug that allows the author to obscure the real origin of the site. They then ask you for personal information. Since the bank will never do that, delete the email straightaway. I have come across one site that had a Java applet that would try and overwrite a Windows DLL (the applet never ran), but typically they are not that sophisticated. The Security Manager should prevent that from happening anyway. Applets should run inside a sandbox and, by design, the JVM does not allow them to overwrite file outside the user directory (I believe). <...> > > regards > > Russell -- --- Marek Wawrzyczny - "Terrorism is the war of the poor, and, war is terrorism of the rich." - Peter Ustinov - - Send instant messages to your online friends http://au.messenger.yahoo.com -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
[SLUG] java security in Linux
Hi Please give your advice on security of Java in Linux. scenario: I have just received a email from ANZ bank (which I don't bank with, so its likely to be phishing) that is linked to a bunch of Java scripts. This is shown in Mozilla-Thunderbird when I move the cursor over the link. As a user has permission to run Java, can opening this link and running the Java script be a potential security risk? What can be done about this to prevent this from happening if an email leaks through the spam filters? Java permissions on this machine: :~$ ls -la /usr/lib/j2sdk1.5-sun/bin/java -rwxr-xr-x 1 root root 64492 2005-04-13 20:55 /usr/lib/j2sdk1.5-sun/bin/java Linux athlonbox 2.6.6 #1 Sun May 8 12:44:37 EST 2005 i686 GNU/Linux Debian/unstable regards Russell -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
RE: [SLUG] Bogus CommBank alert warning
> > Thanks, hundreds of people are, but what does that have to do with > > Linux > > > For your benefit: > --snip-- > > Better? Nice attempt. Really. :) :) > Therefore, as a member of said community (slug), I decided to > advise other community members to beware of this new attack > especially as it is the first one I've seen that relates to a > major Australian bank (perhaps I'm wrong there. If so I stand > corrected.). Sorry, I did overreact before the Monday coffee. However, phishing emails are rife and well known these days, even with Australian banks, and I still think the post would have been more appropriate on -chat. I hope we can agree to disagree on that and move on. > This email is not unlike other community-based informative > emails on the SLUG list relating to attacks of various sorts > and how to cope with them. > There is extensive discussion on such and I would have > thought that my email was a fairly inoffensive addition to that Kbase. Fair enough, I was venting and shouldn't have directed it at you specifically, I do apologise for that. I don't like having to filter more and more O/T noise out of the signal, and my effort to address it in another way didn't hit the mark. Thanks for CCing back to the list, so I get to explain myself publically. I'll be more careful of where I send private correspondence in future. Cheers, - Rog -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
RE: [SLUG] Bogus CommBank alert warning
> Thanks, hundreds of people are, but what does that have to do with > Linux For your benefit: I was running my Gentoo Linux laptop this AM (gotta fix that framebuffer problem) when I notice in Evolution (a Ximian/Novell/whateverrr project), that netbank were sending a security advisory. Netbank is as you know, written in Java and runs on a bunch of Solaris boxes (sorry not relevant to Linux!). Anyways, thanks to the ability to copy link location, I fired up firefox and pasted the 'click' link into the browser. Lo and hold, http://ns.hubi.or.kr:443/ came up. Hmm.. I said to myself, thats an odd place for netbank to be receiving security advisories. I wonder if they run Linux? Where is that copy of Nessus, time to find out Better? I am part of the slug community. I did not want someone from that community to be a victim by this attack. (Unlikely though that it might seem, not everyone on this list is guru status.) Unlike viruses which are not successful in attacking Linux users, phishing attacks can actually hurt financially. Therefore, as a member of said community (slug), I decided to advise other community members to beware of this new attack especially as it is the first one I've seen that relates to a major Australian bank (perhaps I'm wrong there. If so I stand corrected.). This email is not unlike other community-based informative emails on the SLUG list relating to attacks of various sorts and how to cope with them. There is extensive discussion on such and I would have thought that my email was a fairly inoffensive addition to that Kbase. Stuart Guthrie >> Someone is phishing... > > Thanks, hundreds of people are, but what does that have to do with > Linux > > I think everyone would appreciate if you could send your junk mail to > slug-chat. > > Thanks. > >> >> FYI: I got an email proporting to be from Netbank today. >> Wanting me to re-enter my details. Looked all official etc. >> >> The click link was to http://ns.hubi.or.kr:443/ >> >> Which I guess is not an official Commbank/Netbank site. >> >> This is the first time I've seen a commbank one. >> >> First of many probably. >> >> ATB >> >> >> Stu >> >> -- >> SLUG - Sydney Linux User's Group Mailing List - >> http://slug.org.au/ Subscription info and FAQs: >> http://slug.org.au/faq/mailinglists.html >> >> > > -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
[SLUG] Bogus CommBank alert warning
Someone is phishing... FYI: I got an email proporting to be from Netbank today. Wanting me to re-enter my details. Looked all official etc. The click link was to http://ns.hubi.or.kr:443/ Which I guess is not an official Commbank/Netbank site. This is the first time I've seen a commbank one. First of many probably. ATB Stu -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
RE: [SLUG] stealthed ports
Kazik,
As Chris said try nmapping from outside. (If you think you are ready
publish, your IP name/address here and some of us will probably try and
hit you. Of course if your on the net already you have probably been
scanned many time already ;-)
A scanner detecting a port as in stealth simply means that it never got
a response on that port. (As opposed to open which means it received an
ACK and closed which means it got a RST). Of course if your link (or
sygate's) was congested when the scan was run it could be the scanner
didn't get a response in time and moved on to the next port.
If you turn up the logging level on your iptables firewall you can of
course see the incoming hits and verify that your firewall at least is
logging that it is doing what it is supposed to.
Martin
Martin Visser, CISSP
Network and Security Consultant
Consulting & Integration
Technology Solutions Group - HP Services
410 Concord Road
Rhodes NSW 2138
Australia
Mobile: +61-411-254-513
Fax: +61-2-9022-1800
E-mail: martin.visserAThp.com
This email (including any attachments) is intended only for the use of
the individual or entity named above and may contain information that is
confidential, proprietary or privileged. If you are not the intended
recipient, please notify HP immediately by return email and then delete
the email, destroy any printed copy and do not disclose or use the
information in it.
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On
Behalf Of Chris Deigan
Sent: Sunday, 5 June 2005 11:18 PM
To: slug@slug.org.au
Subject: Re: [SLUG] stealthed ports
quote("Kazik Malenczak");
>open grc says 113 is open and sygate says all ports are stealthed.
>Could someone tell me what is the best place to get a reliable scan
>done and why i get such widely varying results.
Run nmap from a remote box.
No idea about those sites though.
-Chris.
--
SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/
Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
--
SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/
Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] stealthed ports
quote("Kazik Malenczak");
>open grc says 113 is open and sygate says all ports are stealthed. Could
>someone tell me what is the best place to get a reliable scan done and why i
>get such widely varying results.
Run nmap from a remote box.
No idea about those sites though.
-Chris.
--
SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/
Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] Remote Dual Boot Help Pls.
On Sun, 2005-06-05 at 19:38 +1000, Bill wrote: > > Is it possible to have linux load as the default OS, which will give me > access to the PC via TightVNC, and thereby reboot into XP ( or vice versa)? Hi Bill, I think you can do this. Set Linux as the default (using the default= setting in grub.conf), so you can always get to the grub configuration. I believe there has been a "--once" patch applied to some versions of grub - try googling for this. The "--once" option may allow you to boot into linux, instruct grub to reboot into XP, reboot, then know you can get back to linux again, as grub will revert to the default O/S. Alternatively, you could keep your /boot partition on a filesystem type that both Linux and XP can write to (like Fat32) and just modify the default value in the grub config from either O/S. Cheers, Ben Ben Stringer = [EMAIL PROTECTED] == -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
[SLUG] stealthed ports
i have a smoothwall box that i have run a number of online scanners against. These include symantecs security scanner, grc.com and sygate.com. I seem to get differing results from all 3 ie symantec tells me port 80 is open grc says 113 is open and sygate says all ports are stealthed. Could someone tell me what is the best place to get a reliable scan done and why i get such widely varying results. -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
[SLUG] Remote Dual Boot Help Pls.
I have got my home network running to the degree where all 4 machines can see each other and I can access them all from each other via Tightvnc and java-vnc in a browser (File/Print server excluded - it is accessed via WebMin). Although networked, they are currently connected to a KVM switch while I finish setting them up. The Server runs ClarkConnect (Home version), 1 PC runs SimplyMepis/Debian, and 2 PCs dual boot SimplyMepis/Debian and Win XP Pro. What I would like to be able to do is to remotely choose the OS to boot in each of the 2 dual boot PCs, 1 in particular that I have set up as a multimedia center in so far as it has a DVB-T HDTV card which runs under XP but I haven't as yet made work under linux. Each OS is on a separate hard disk. I guess that I can boot the 2 dual boot PCs from a boot floppy or CD ( 1 disk for each of the OS's) and that is fine while all of the PCs are in the same room as at present, but isn't so convenient when they are relocated throughout the house (which is cabled). Is it possible to have linux load as the default OS, which will give me access to the PC via TightVNC, and thereby reboot into XP ( or vice versa)? Obviously an OS must boot before I can access the PC via TightVNC. Is there anyway I can remotely access the GRUB menu, perhaps by booting a minimal LiveCD including Grub set up for the individual machine and then reboot from there? The PCs have Wake On Lan which I have not used as yet. Suggestions/ guidance in the right direction/ URLs all appreciated. Bill -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
