On Wed, 5 Dec 2001, Yotam Rubin wrote:
> Nothing, it's a runtime argument. When invoking syslogd, use the -f
> argument to specify an alternative configuration file. This is documented in
> the man page.
>
> Regards, Yotam Rubin
>
Yes, I know it is an runtime argument,but if you don't set
On Wed, Dec 05, 2001 at 09:00:57AM +0100, Robert Magier wrote:
> On Wed, 5 Dec 2001, Yotam Rubin wrote:
>
> > Nothing, it's a runtime argument. When invoking syslogd, use the -f
> > argument to specify an alternative configuration file. This is documented in
> > the man page.
> >
> > Regards,
On Tue, Dec 04, 2001 at 08:44:34PM +0100, Gerfried Fuchs wrote:
> You have a misinformation/misinterpretation there. It's not disabled,
> it's simply not possible in the way scripts are run. They are passed to
> the program that is given in it's first line, after the #! - or to the
> current sh
On Tue, Dec 04, 2001 at 11:56:19PM -0600, Jor-el wrote:
> Hi,
>
> Why is running Netscape as root considered to be a security
> problem? I just tried installing vmware on my system and it needs root to
> install, and it searched for Netscape. The installer, fortunately, was an
> intelligent
Thanks for all the response, comments and suggestions. Moving portmapper
from /etc/init.d solved my issue. As for commenting our services in
/etc/services, I am surprised that this isn't supposed to work and that it
is not the proper way to disable services.
I have a restricted services file and
J. Paul Bruns-Bielkowicz ([EMAIL PROTECTED]) wrote:
>
> I have a restricted services file and a default (open) services file. Some
> services are disabled, i.e.
> 9/tcp opendiscard
> 13/tcp opendaytime
> 109/tcpopenpop-2
> 987/tcpopenunknown
> by c
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Wed, 5 Dec 2001, Rolf Kutz wrote:
> J. Paul Bruns-Bielkowicz ([EMAIL PROTECTED]) wrote:
> >
> > I have a restricted services file and a default (open) services file. Some
> > services are disabled, i.e.
> > 9/tcp opendiscard
> > 13/tc
basilisk ([EMAIL PROTECTED]) wrote:
> If you do edit the init.d scripts don't forget to end the processes too.
ACK.
> Also don't just use a port scanner like nmap. have a look at lsof too
>
> lsof -Pan -i tcp -i udp
>
> It's quite useful.
Right, but it doesn't help with hosts.[allow|deny]
en
- Original Message -
From: "Rolf Kutz" <[EMAIL PROTECTED]>
> J. Paul Bruns-Bielkowicz ([EMAIL PROTECTED]) wrote:
> >
> > I have a restricted services file and a default (open) services file.
Some
> > services are disabled, i.e.
> > 9/tcp opendiscard
> > 13/tcp open
J. Paul Bruns-Bielkowicz ([EMAIL PROTECTED]) wrote:
> > Commenting out things in /etc/services doesn't
> > disable anything.
>
> It seems to. The above ports were closed just by commenting them out of
> /etc/services and then rebooting.
How did you verify?
>
> No, I just changed /etc/services
Hi,
"J. Paul Bruns-Bielkowicz" wrote:
>
> > Commenting out things in /etc/services doesn't
> > disable anything.
>
> It seems to. The above ports were closed just by commenting them out of
> /etc/services and then rebooting.
well, there are daemons which don't know on which port they should r
On Wed, Dec 05, 2001 at 01:24:54PM +0100, J. Paul Bruns-Bielkowicz wrote:
> - Original Message -
> From: "Rolf Kutz" <[EMAIL PROTECTED]>
> > Commenting out things in /etc/services doesn't
> > disable anything.
>
> It seems to. The above ports were closed just by commenting them out of
> /
> How did you verify?
I'm using nmap & netstat.
J. Paul Bruns-Bielkowicz
http://www.america.prv.pl
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
> Did you even read all things said in this thread?
Of course I did (er, am reading) read it. All these comments are very
insightful and I am saying that I am surprised, because commenting out
services in /etc/services has been working for me for the most part. Not to
add that the ports I posted
> You're not going to become a good Linux-administrator before you realize
> that you should UNDERSTAND what you do instead of just guessing and be
> happy because it worked.
Becoming a good administrator is making it work and keeping it working. It
seems there is an official way of closing the p
On Wed, Dec 05, 2001 at 02:04:32PM +0100, J. Paul Bruns-Bielkowicz wrote:
> > You're not going to become a good Linux-administrator before you realize
> > that you should UNDERSTAND what you do instead of just guessing and be
> > happy because it worked.
>
> Becoming a good administrator is makin
On Tue, Dec 04, 2001 at 05:04:09PM +0200, Johann Botha wrote:
> > I am also interested in this. I experience frequent visits from a web
> > robot on our ftp-site (with a web front). Going to the home page of
> > this robot at www.inktomi.com there was a remark that the robot respects
> > robot.t
Hello,
Is OpenSSH Version: 1:2.9p2-6 also vulernable?
--
Patrick Hsieh <[EMAIL PROTECTED]>
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
sorry.
This is my mistake. I intended to ask the openssh problem but replied to
another thread. :-(
--
Patrick Hsieh <[EMAIL PROTECTED]>
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
hi,
I would like to enable MD5 passwords on a remote woody
server.
I wonder if it could create trouble with user accounts
already configured and with the ssh package.
Also, I don't know how to do it :)
thanks for help,
Alexis
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "
Has anybody seen syslog msg like this:
sshd[30847]: Accepted password for XY from x.x.x.x port 1034
sshd[30847]: Packet integrity error (58 != 62) at sshd.c:1953
sshd[30847]: Disconnecting: Packet integrity error. (34)
Is this client side protocol incompatibility or net errors or ?
I'm running p
martin f krafft wrote:
>
> * Rens Houben <[EMAIL PROTECTED]> [2001.12.03 13:02:50+0100]:
> > Anyways, I've been following this thread and wondering: Is there any
> > reason why snort would or would not work with a bridge?
>
> snort is a tool that primarily assesses ip, tcp, and application level
unsubsribe
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
> From: Igor Mozetic [mailto:[EMAIL PROTECTED]]
> Sent: Mittwoch, 5. Dezember 2001 18:46
> To: [EMAIL PROTECTED]
> Subject: ssh: Packet integrity errorI saw the same
>
> Has anybody seen syslog msg like this:
>
> sshd[30847]: Accepted password for XY from x.x.x.x port 1034
> sshd[30847]: Packe
"J. Paul Bruns-Bielkowicz" <[EMAIL PROTECTED]> writes:
> > You're not going to become a good Linux-administrator before you realize
> > that you should UNDERSTAND what you do instead of just guessing and be
> > happy because it worked.
>
> Becoming a good administrator is making it work and keep
Ralf Dreibrodt <[EMAIL PROTECTED]> writes:
> well, there are daemons which don't know on which port they should
> run. they look in /etc/services for a special name and want to run
> on the specific port. if they don't find the special name in
> /etc/services they abort with an error message.
The only thing you can accomplish by commenting stuff in /etc/services is
that netstat and other programs will show the ports by number instead of by
name ( you commented the translation entry ) :) The ports are still open.
On Wednesday 05 December 2001 07:59 am, J. Paul Bruns-Bielkowicz wrote:
After reading the whole thread, I think I finally understand what is going on.
/etc/services really is only for mapping names to port numbers, but at least
one daemon on your system uses service names instead of numbers. The daemon
is inetd and it is that daemon that handles services such as ch
Title: Untitled Document
Dmitriy Kropivnitskiy [[EMAIL PROTECTED]] wrote:
>
> [snip stuff which is correct]
>
> can point out that portmap, https, https, mysql etc cannot be stopped this
> way. As for the inetd managed services you should comment stuff out of
> inetd.conf or better disable inetd altogether.
>
I my opin
I have ip tables running and i did a test with the -c flag but i get the
following response.
proxy:/home# iptables -A INPUT -s 10.10.1.31 -i eth0 -c ACCEPT
iptables v1.2.4: -c requires packet and byte counter
What am i missing ? where do i get a packet and byte counter ??
Marcel
Antropov Anto
Hi,
Why is running Netscape as root considered to be a security
problem? I just tried installing vmware on my system and it needs root to
install, and it searched for Netscape. The installer, fortunately, was an
intelligent one and proceeded with the install after I cancelled its
search fo
On Wed, 5 Dec 2001, Yotam Rubin wrote:
> Nothing, it's a runtime argument. When invoking syslogd, use the -f
> argument to specify an alternative configuration file. This is documented in
> the man page.
>
> Regards, Yotam Rubin
>
Yes, I know it is an runtime argument,but if you don't set t
On Wed, Dec 05, 2001 at 09:00:57AM +0100, Robert Magier wrote:
> On Wed, 5 Dec 2001, Yotam Rubin wrote:
>
> > Nothing, it's a runtime argument. When invoking syslogd, use the -f
> > argument to specify an alternative configuration file. This is documented in
> > the man page.
> >
> > Regards,
On Tue, Dec 04, 2001 at 08:44:34PM +0100, Gerfried Fuchs wrote:
> You have a misinformation/misinterpretation there. It's not disabled,
> it's simply not possible in the way scripts are run. They are passed to
> the program that is given in it's first line, after the #! - or to the
> current she
On Tue, Dec 04, 2001 at 11:56:19PM -0600, Jor-el wrote:
> Hi,
>
> Why is running Netscape as root considered to be a security
> problem? I just tried installing vmware on my system and it needs root to
> install, and it searched for Netscape. The installer, fortunately, was an
> intelligent
Thanks for all the response, comments and suggestions. Moving portmapper
from /etc/init.d solved my issue. As for commenting our services in
/etc/services, I am surprised that this isn't supposed to work and that it
is not the proper way to disable services.
I have a restricted services file and a
J. Paul Bruns-Bielkowicz ([EMAIL PROTECTED]) wrote:
>
> I have a restricted services file and a default (open) services file. Some
> services are disabled, i.e.
> 9/tcp opendiscard
> 13/tcp opendaytime
> 109/tcpopenpop-2
> 987/tcpopenunknown
> by co
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Wed, 5 Dec 2001, Rolf Kutz wrote:
> J. Paul Bruns-Bielkowicz ([EMAIL PROTECTED]) wrote:
> >
> > I have a restricted services file and a default (open) services file. Some
> > services are disabled, i.e.
> > 9/tcp opendiscard
> > 13/tcp
basilisk ([EMAIL PROTECTED]) wrote:
> If you do edit the init.d scripts don't forget to end the processes too.
ACK.
> Also don't just use a port scanner like nmap. have a look at lsof too
>
> lsof -Pan -i tcp -i udp
>
> It's quite useful.
Right, but it doesn't help with hosts.[allow|deny]
ent
- Original Message -
From: "Rolf Kutz" <[EMAIL PROTECTED]>
> J. Paul Bruns-Bielkowicz ([EMAIL PROTECTED]) wrote:
> >
> > I have a restricted services file and a default (open) services file.
Some
> > services are disabled, i.e.
> > 9/tcp opendiscard
> > 13/tcp opend
J. Paul Bruns-Bielkowicz ([EMAIL PROTECTED]) wrote:
> > Commenting out things in /etc/services doesn't
> > disable anything.
>
> It seems to. The above ports were closed just by commenting them out of
> /etc/services and then rebooting.
How did you verify?
>
> No, I just changed /etc/services
Hi,
"J. Paul Bruns-Bielkowicz" wrote:
>
> > Commenting out things in /etc/services doesn't
> > disable anything.
>
> It seems to. The above ports were closed just by commenting them out of
> /etc/services and then rebooting.
well, there are daemons which don't know on which port they should ru
On Wed, Dec 05, 2001 at 01:24:54PM +0100, J. Paul Bruns-Bielkowicz wrote:
> - Original Message -
> From: "Rolf Kutz" <[EMAIL PROTECTED]>
> > Commenting out things in /etc/services doesn't
> > disable anything.
>
> It seems to. The above ports were closed just by commenting them out of
> /e
> How did you verify?
I'm using nmap & netstat.
J. Paul Bruns-Bielkowicz
http://www.america.prv.pl
> Did you even read all things said in this thread?
Of course I did (er, am reading) read it. All these comments are very
insightful and I am saying that I am surprised, because commenting out
services in /etc/services has been working for me for the most part. Not to
add that the ports I posted
> You're not going to become a good Linux-administrator before you realize
> that you should UNDERSTAND what you do instead of just guessing and be
> happy because it worked.
Becoming a good administrator is making it work and keeping it working. It
seems there is an official way of closing the po
On Wed, Dec 05, 2001 at 02:04:32PM +0100, J. Paul Bruns-Bielkowicz wrote:
> > You're not going to become a good Linux-administrator before you realize
> > that you should UNDERSTAND what you do instead of just guessing and be
> > happy because it worked.
>
> Becoming a good administrator is making
On Tue, Dec 04, 2001 at 05:04:09PM +0200, Johann Botha wrote:
> > I am also interested in this. I experience frequent visits from a web
> > robot on our ftp-site (with a web front). Going to the home page of
> > this robot at www.inktomi.com there was a remark that the robot respects
> > robot.tx
Hello,
Is OpenSSH Version: 1:2.9p2-6 also vulernable?
--
Patrick Hsieh <[EMAIL PROTECTED]>
sorry.
This is my mistake. I intended to ask the openssh problem but replied to
another thread. :-(
--
Patrick Hsieh <[EMAIL PROTECTED]>
hi,
I would like to enable MD5 passwords on a remote woody
server.
I wonder if it could create trouble with user accounts
already configured and with the ssh package.
Also, I don't know how to do it :)
thanks for help,
Alexis
Has anybody seen syslog msg like this:
sshd[30847]: Accepted password for XY from x.x.x.x port 1034
sshd[30847]: Packet integrity error (58 != 62) at sshd.c:1953
sshd[30847]: Disconnecting: Packet integrity error. (34)
Is this client side protocol incompatibility or net errors or ?
I'm running po
martin f krafft wrote:
>
> * Rens Houben <[EMAIL PROTECTED]> [2001.12.03 13:02:50+0100]:
> > Anyways, I've been following this thread and wondering: Is there any
> > reason why snort would or would not work with a bridge?
>
> snort is a tool that primarily assesses ip, tcp, and application level
unsubsribe
> From: Igor Mozetic [mailto:[EMAIL PROTECTED]
> Sent: Mittwoch, 5. Dezember 2001 18:46
> To: debian-security@lists.debian.org
> Subject: ssh: Packet integrity errorI saw the same
>
> Has anybody seen syslog msg like this:
>
> sshd[30847]: Accepted password for XY from x.x.x.x port 1034
> sshd[
"J. Paul Bruns-Bielkowicz" <[EMAIL PROTECTED]> writes:
> > You're not going to become a good Linux-administrator before you realize
> > that you should UNDERSTAND what you do instead of just guessing and be
> > happy because it worked.
>
> Becoming a good administrator is making it work and keepi
Ralf Dreibrodt <[EMAIL PROTECTED]> writes:
> well, there are daemons which don't know on which port they should
> run. they look in /etc/services for a special name and want to run
> on the specific port. if they don't find the special name in
> /etc/services they abort with an error message.
Y
The only thing you can accomplish by commenting stuff in /etc/services is
that netstat and other programs will show the ports by number instead of by
name ( you commented the translation entry ) :) The ports are still open.
On Wednesday 05 December 2001 07:59 am, J. Paul Bruns-Bielkowicz wrote:
After reading the whole thread, I think I finally understand what is going on.
/etc/services really is only for mapping names to port numbers, but at least
one daemon on your system uses service names instead of numbers. The daemon
is inetd and it is that daemon that handles services such as cha
Title: Untitled Document
Dmitriy Kropivnitskiy [EMAIL PROTECTED] wrote:
>
> [snip stuff which is correct]
>
> can point out that portmap, https, https, mysql etc cannot be stopped this
> way. As for the inetd managed services you should comment stuff out of
> inetd.conf or better disable inetd altogether.
>
I my opinion
I have ip tables running and i did a test with the -c flag but i get the
following response.
proxy:/home# iptables -A INPUT -s 10.10.1.31 -i eth0 -c ACCEPT
iptables v1.2.4: -c requires packet and byte counter
What am i missing ? where do i get a packet and byte counter ??
Marcel
Antropov Anto
63 matches
Mail list logo
