On 12 Apr, Eugene van Zyl wrote:
> Can anyone tell me whether the Packet Filter on the Cisco IOS does
> statefull packet inspection ? and whether I'll be losing by replacing
> it with IPChains on Kernel 2.2.17?
Not a big difference - neither Cisco IOS nor IPchains offer stateful
inspection. For t
Il giorno Fri, Apr 13 in un momento di profonda ispirazione
Micah Anderson scrisse riguardo a " Re: Followup: Syslog ":
> One additional tweak which falls into line with the security setups, that I
> think is a good idea is to made the log files in /var/log to be chattr +a
> (append only) so
On Fri, Apr 13, 2001 at 09:33:08PM -0300, Peter Cordes wrote:
> It's not hard to find (once you to look for it:):
I looked for it. See below.
> bigfoot:~# apt-cache search less console
> aview - An high quality ascii-art image(pgm) browser
[...]
# apt-cache search less console
E: You must giv
Of all the days, it was on Fri, Apr 13, 2001 at 05:54:07PM -0500 that Kevin van Haaren
quoth:
>
>
> --On Friday, April 13, 2001 3:40 PM -0700 Micah Anderson <[EMAIL PROTECTED]>
> hath wrote:
>
> | One additional tweak which falls into line with the security setups, that
> | I think is a good
from the secret journal of Andy Bastien ([EMAIL PROTECTED]):
>
> Another technique is to use a separate logging server which has the
> transmit leads on it's ethernet connection snipped. It's capable of
> receiving (via UDP only, since it can't ACK!) log entries, but it's
> virtually impossible
On Sat, Apr 14, 2001 at 05:07:47PM +0200, Janto Trappe wrote:
> # apt-cache show console-log
> W: Unable to locate package console-log
>
> I use potato, bigfoot is woody, right? ;)
Ah, sorry. bigfoot is running unstable, actually. Some of my other
machines run testing, but I've got the unstab
On Sat, Apr 14, 2001 at 02:58:02PM +0200, Luca Gibelli wrote:
> > One additional tweak which falls into line with the security setups, that I
> > think is a good idea is to made the log files in /var/log to be chattr +a
> > (append only) so logfiles cannot be modified or removed altogether to cove
> Ah, sorry. bigfoot is running unstable, actually. Some of my other
>machines run testing, but I've got the unstable package repository in my
>sources.list (and Default-Release "testing"; in /etc/apt/apt.conf, so
>unstable doesn't get used by default, but I can install packages from it.
>see
On Sat, Apr 14, 2001 at 07:29:05PM -0700, Tim Uckun wrote:
>
> > Ah, sorry. bigfoot is running unstable, actually. Some of my other
> >machines run testing, but I've got the unstable package repository in my
> >sources.list (and Default-Release "testing"; in /etc/apt/apt.conf, so
> >unstable d
But what about when bob wants to run unstable glibc(2.2.2) and jimmy
likes stable glibc(2.1.3)? There'd have to be stable/unstable/blah
packages for every major version of glibc which I suppose isnt that
many but it'd add up. I could be totally off base though.
--
Kevin - [EMAIL PROTECTED]
[EMAIL PROTECTED] (Tim Uckun) writes:
> Ideally the packages themselves should be labled stable, milestone,
> snapshot (or something similar) and you ought to be able to subscribe to
> packages themselves.
A good idea, that doesn't work all that well in practice.
Packages rarely stand alone..
On Sat, Apr 14, 2001 at 07:49:27PM -0600, Bdale Garbee wrote:
> Packages rarely stand alone... they depend on other packages, particularly
> shared libraries. It is hard to pull packages from unstable without finding
> yourself pulling in a number of shared library updates, at which point the
>
On 12 Apr, Eugene van Zyl wrote:
> Can anyone tell me whether the Packet Filter on the Cisco IOS does
> statefull packet inspection ? and whether I'll be losing by replacing
> it with IPChains on Kernel 2.2.17?
Not a big difference - neither Cisco IOS nor IPchains offer stateful
inspection. For th
Il giorno Fri, Apr 13 in un momento di profonda ispirazione
Micah Anderson scrisse riguardo a " Re: Followup: Syslog ":
> One additional tweak which falls into line with the security setups, that I
> think is a good idea is to made the log files in /var/log to be chattr +a
> (append only) so
On Fri, Apr 13, 2001 at 09:33:08PM -0300, Peter Cordes wrote:
> It's not hard to find (once you to look for it:):
I looked for it. See below.
> bigfoot:~# apt-cache search less console
> aview - An high quality ascii-art image(pgm) browser
[...]
# apt-cache search less console
E: You must give
Of all the days, it was on Fri, Apr 13, 2001 at 05:54:07PM -0500 that Kevin van
Haaren quoth:
>
>
> --On Friday, April 13, 2001 3:40 PM -0700 Micah Anderson <[EMAIL PROTECTED]>
> hath wrote:
>
> | One additional tweak which falls into line with the security setups, that
> | I think is a good i
from the secret journal of Andy Bastien ([EMAIL PROTECTED]):
>
> Another technique is to use a separate logging server which has the
> transmit leads on it's ethernet connection snipped. It's capable of
> receiving (via UDP only, since it can't ACK!) log entries, but it's
> virtually impossible t
On Sat, Apr 14, 2001 at 05:07:47PM +0200, Janto Trappe wrote:
> # apt-cache show console-log
> W: Unable to locate package console-log
>
> I use potato, bigfoot is woody, right? ;)
Ah, sorry. bigfoot is running unstable, actually. Some of my other
machines run testing, but I've got the unstabl
On Sat, Apr 14, 2001 at 02:58:02PM +0200, Luca Gibelli wrote:
> > One additional tweak which falls into line with the security setups, that I
> > think is a good idea is to made the log files in /var/log to be chattr +a
> > (append only) so logfiles cannot be modified or removed altogether to cover
Ah, sorry. bigfoot is running unstable, actually. Some of my other
machines run testing, but I've got the unstable package repository in my
sources.list (and Default-Release "testing"; in /etc/apt/apt.conf, so
unstable doesn't get used by default, but I can install packages from it.
see apt-p
On Sat, Apr 14, 2001 at 07:29:05PM -0700, Tim Uckun wrote:
>
> > Ah, sorry. bigfoot is running unstable, actually. Some of my other
> >machines run testing, but I've got the unstable package repository in my
> >sources.list (and Default-Release "testing"; in /etc/apt/apt.conf, so
> >unstable do
But what about when bob wants to run unstable glibc(2.2.2) and jimmy
likes stable glibc(2.1.3)? There'd have to be stable/unstable/blah
packages for every major version of glibc which I suppose isnt that
many but it'd add up. I could be totally off base though.
--
Kevin - [EMAIL PROTECTED]
[EMAIL PROTECTED] (Tim Uckun) writes:
> Ideally the packages themselves should be labled stable, milestone,
> snapshot (or something similar) and you ought to be able to subscribe to
> packages themselves.
A good idea, that doesn't work all that well in practice.
Packages rarely stand alone...
On Sat, Apr 14, 2001 at 07:49:27PM -0600, Bdale Garbee wrote:
> Packages rarely stand alone... they depend on other packages, particularly
> shared libraries. It is hard to pull packages from unstable without finding
> yourself pulling in a number of shared library updates, at which point the
>
24 matches
Mail list logo