After I have upgraded my zone alarm, I see this problem.
Whenever I start a bash shell, the zone alarm pops up an alert to say
bash.exe is trying access the DNS. This happens to commands like
hostname, uname.
I guessed this is not a Cygwin problem. The same thing happens to
windows native
On Mon, 2003-03-03 at 23:59, Randall R Schulz wrote:
Geoffrey,
=20
Exactly what sneaky data can get sent in a DNS request?
[...]
Actually, plenty. Historically, Bind has been easily hacked. Although
it's been a while since a good vulnerablity was found in Bind, that
doesn't mean there's not
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf
Of Randall R Schulz
Geoffrey,
Exactly what sneaky data can get sent in a DNS request?
Oops. I mean what data can be sneakily sent via a DNS request.
Oops. I mean what data can sneakily be sent via a DNS request.
Apart from what
John,
I get it.
Well, on my system, running Norton Personal Firewall, each distinct
programm that attempts to access the Internet or to which a connection
is attempted (and which is not known to be and has not been granted
access rights) produces an alert. I take it this much is like
Randall:
There's nothing that a legitimate DNS server can elicit from a client.
Although, in some special cases, clients can be hacked by specially
crafted DNS responses.
However, if a system is infected with a trojan, then obviously said
system has the potential to be used as a zombie for
Today I tried to install sshd on my
cygwin system, (which also resulted in
downloading lots of updates, since I'd
been lax in updating for a while).
I went through the setup procedures for
openssh, and got it working. During all
of this, I had disabled my firewall
(ZoneAlarm), since I've had
On Mon, 3 Mar 2003, Geoffrey Hausheer wrote:
Today I tried to install sshd on my cygwin system, (which also resulted
in downloading lots of updates, since I'd been lax in updating for a
while).
I went through the setup procedures for openssh, and got it working.
During all of this, I had
On Mon, 3 Mar 2003 16:42:51 -0500 (EST), Igor Pechtchanski
[EMAIL PROTECTED] {Cygwin}
[EMAIL PROTECTED] said:
Geoffrey,
Well, first off, your strace output seems hosed. There might have been a
problem while pasting it. Next time, try the -o option of strace...
You can then edit the
On Mon, 3 Mar 2003, Geoffrey Hausheer wrote:
On Mon, 3 Mar 2003 16:42:51 -0500 (EST), Igor Pechtchanski [EMAIL PROTECTED]
{Cygwin} [EMAIL PROTECTED] said:
Geoffrey,
Well, first off, your strace output seems hosed. There might have been a
problem while pasting it. Next time, try the
Probably because it tries to get your hostname.
At any rate you should see why if you let strace
run a little bit more.
In previous versions Cygwin was using GetComputerName.
Not it uses gethostname, loading wsock.
Pierre
--
Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple
Bug
Can you show us your PATH and all of your mount points?
In the meantime, I'll upgrade my cygwin @ home. If I don't find the
same behaviour, I'll check my config at work.
On Mon, 2003-03-03 at 17:52, Geoffrey Hausheer wrote:
On Mon, 3 Mar 2003 16:42:51 -0500 (EST), Igor Pechtchanski
[EMAIL
Geoffrey Hausheer wrote:
it seems my mail client always compresses my attachemnts, and I can't
do anything about it,
You could always get a new email client ;-) !
--
Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple
Bug reporting: http://cygwin.com/bugs.html
Ah, yes, of'course. That would definately do it. Silly me... I didn't
even think of that.
On Mon, 2003-03-03 at 18:02, Pierre A. Humblet wrote:
Probably because it tries to get your hostname.
At any rate you should see why if you let strace
run a little bit more.
In previous versions
Geoffrey,
Just to connect the dots, does your BASH prompt contain \h or \H?
The default PS1 established in /etc/profile and
/etc/profile.default contain \h and hence trigger a host name look
up per Pierre's message.
Randall Schulz
At 15:02 2003-03-03, Pierre A. Humblet wrote:
Probably
On Mon, Mar 03, 2003 at 02:52:14PM -0800, Geoffrey Hausheer wrote:
On Mon, 3 Mar 2003 16:42:51 -0500 (EST), Igor Pechtchanski
[EMAIL PROTECTED] {Cygwin}
[EMAIL PROTECTED] said:
Geoffrey,
Well, first off, your strace output seems hosed. There might have been a
problem while pasting it. Next
On Mon, 3 Mar 2003 18:01:19 -0500 (EST), Igor Pechtchanski
[EMAIL PROTECTED] {Cygwin}
it seems my mail client always compresses my attachemnts, and I can't do
anything about it, and the maillist spam-filters block my compressed
version, and the maillist won't accept my 'I am not a spammer
On Mon, Mar 03, 2003 at 03:13:07PM -0800, Randall R Schulz wrote:
Geoffrey,
Just to connect the dots, does your BASH prompt contain \h or \H?
The default PS1 established in /etc/profile and
/etc/profile.default contain \h and hence trigger a host name look
up per Pierre's message.
bash
On Mon, 3 Mar 2003 18:02:36 -0500, Pierre A. Humblet said:
Probably because it tries to get your hostname.
At any rate you should see why if you let strace
run a little bit more.
In previous versions Cygwin was using GetComputerName.
Not it uses gethostname, loading wsock.
Thank you, this
On Mon, 3 Mar 2003, Geoffrey Hausheer wrote:
One more thing, I forgot to ask...
On Mon, 03 Mar 2003 18:46:09 -0800, Geoffrey Hausheer said:
Thank you, this indeed is the issue, as can be seen from the very next
line after the wsock call:
5495150 5519336 [main] bash 1940
On Mon, Mar 03, 2003 at 06:46:09PM -0800, Geoffrey Hausheer wrote:
I wouldn't bring any of this up at all, but my private mail to Chris
got bounced as well, so I couldn't easily send a message to him.
Yes, I munge my email address for just this reason. Otherwise the many
clueless denizens of
Geoffrey,
What's the problem? Who care's about host name lookups? Is there a
security issue with DNS activity? Why do you want to circumscribe
outbound access so tightly? It's inbound connections you need to be
concerned about.
Randall Schulz
At 19:07 2003-03-03, Geoffrey Hausheer wrote:
One
On Mon, Mar 03, 2003 at 07:07:05PM -0800, Geoffrey Hausheer wrote:
One more thing, I forgot to ask...
On Mon, 03 Mar 2003 18:46:09 -0800, Geoffrey Hausheer said:
Thank you, this indeed is the issue, as can be seen from the very next
line after the wsock call:
5495150 5519336 [main] bash
Geoffrey Hausheer wrote:
One more thing, I forgot to ask...
On Mon, 03 Mar 2003 18:46:09 -0800, Geoffrey Hausheer said:
Thank you, this indeed is the issue, as can be seen from the very next
line after the wsock call:
5495150 5519336 [main] bash 1940 cygwin_gethostname: name Holly
I don't
On Mon, 3 Mar 2003 22:40:34 -0500 (EST), Igor Pechtchanski said:
If you have a static IP, try adding an entry with your IP address and
your
computer name to /etc/hosts. This should make winsock resolve the name
locally, rather than query the DNS server.
This didn't work. winsock appears to
On Mon, 03 Mar 2003 19:48:27 -0800, Randall R Schulz said:
Geoffrey,
What's the problem? Who care's about host name lookups? Is there a
security issue with DNS activity? Why do you want to circumscribe
outbound access so tightly? It's inbound connections you need to be
concerned about.
On Mon, 3 Mar 2003 22:53:47 -0500, Pierre A. Humblet said:
Can you configure ZoneAlarm to allow Dns access?
The paradox is that these calls may not go out your box. I can get my
hostname while my Ethernet is disconnected. Can you?
I have not determined how to configure ZoneAlarm to let ALL
Geoffrey,
Exactly what sneaky data can get sent in a DNS request?
Oops. I mean what data can be sneakily sent via a DNS request.
Oops. I mean what data can sneakily be sent via a DNS request.
Randall Schulz
At 20:41 2003-03-03, Geoffrey Hausheer wrote:
On Mon, 03 Mar 2003 19:48:27 -0800,
Proper hostname resolution should look in the hosts file before querying
DNS. Try putting your hostname/ip address pair in your host file. I
don't recall if windows will look there first, though. However, if
you're getting your IP address via DHCP, this isn't going to work for
you.
Seconly, why
On Mon, 2003-03-03 at 23:59, Randall R Schulz wrote:
Geoffrey,
Exactly what sneaky data can get sent in a DNS request?
Oops. I mean what data can be sneakily sent via a DNS request.
Oops. I mean what data can sneakily be sent via a DNS request.
Randall Schulz
Actually, plenty.
On 04 Mar 2003 00:08:27 -0500, David Means dmeans-at-the-means.net
|cygwin/1.0-Allow| [EMAIL PROTECTED] said:
Proper hostname resolution should look in the hosts file before querying
DNS. Try putting your hostname/ip address pair in your host file. I
don't recall if windows will look there
David,
At 21:20 2003-03-03, David Means wrote:
On Mon, 2003-03-03 at 23:59, Randall R Schulz wrote:
Geoffrey,
...
Oops. I mean what data can sneakily be sent via a DNS request?
Randall Schulz
Actually, plenty. Historically, Bind has been easily
hacked. Although it's been a while since a
31 matches
Mail list logo