You're absolutely correct.
Pardon for my short-sightnedness, this is a painless way of doing this
between, for example, two linux boxes. If you're considering IPSec with a
Windows machine or any devices mentioned below, I'd go with FreeS/WAN.
On Wed, 9 Jan 2002, VERBEEK, FRANCOIS wrote:
Well
On Wed, Jan 09, 2002 at 08:16:51AM +0200, Jussi Tawaststjerna wrote:
Howdy,
If you don't want to play with FreeS/WAN or CIPE or such, you could just
rig an ssh connection and run PPP through it. This way you don't have to
worry about patching kernels etc. (or at most, just compile PPP
On Wed, 9 Jan 2002, VERBEEK, FRANCOIS wrote:
Well what you propose here is not exactly IPSec. It's an encrypted way to
communicate but not IPSec. Don't expect it to work with a Cisco router/VPN
concentrator or a Win2K machine.
FreeSwan is quite a good product, quite inter-operable with all
Hi!
I Have a trouble with my e-mail server. I have to change it to my domain
name and not .local ...
I need mailserver.domainname.no
Please help me
I have debian 2.2r4
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi,
Edit '/etc/hostname' to reflect the change. Then run:
hostname -F /etc/hostname
That should do it.
Best Regards,
- --
Patrick Mackey,
System Administrator
Deep House Music Organisation
http://www.deephousemusic.org
On Wed, 9 Jan 2002,
I'll flame you now because you were wrong (As you requested). IPCHAINS works with
2.2, IPTABLES works with 2.4...
touches Curtis on the shoulder yes you are sizzling now G
-Original Message-
From: Howland, Curtis [EMAIL PROTECTED]
To: [EMAIL PROTECTED], Debian-Security [EMAIL
On Sat, Jan 05, 2002 at 07:09:01PM +0100, eim wrote:
I'm planing to install a secure finger daemon
on one of the public boxes I admin.
Which Finger daemon is *really* secure ?
Shouldn't I install this service at all ?
Any experiences about compromised systems ?
On Thu, 10 Jan 2002 02:02:00 +1300 (NZDT)
Patrick Mackey [EMAIL PROTECTED] wrote:
Edit '/etc/hostname' to reflect the change. Then run:
hostname -F /etc/hostname
That should do it.
You might also want to edit /etc/mailname
--
Hi,
Recently I've installed some IP logging packages like ippl.
A few days ago a lot of ICMP - destination unreachable - bad port
messages started showing up comming from my DSL router.
Unfortunatly the log shows only that they come from the router
and nothing more.
Now obviously these are
alright, my users don't know how to do shell, and they can't change
passwords. now, i just upgraded to squirrelmail (upgraded because i had
IMP before, barf!), which has a plugin to change the password. it's TLS
encrypted, so not too much of a problem, but in testing out poppassd,
the underlying
also sprach Balazs Javor [EMAIL PROTECTED] [2002.01.09.2130 +0100]:
Recently I've installed some IP logging packages like ippl.
A few days ago a lot of ICMP - destination unreachable - bad port
messages started showing up comming from my DSL router.
are you behind a firewall?
what's the exact
Hi,
Thanks for the tip about tcpdump. It seems the ntp service is
the responsible. I'll check the list of the ntp servers to see if
some of them is obsolete.
Anyway just in case I misinterpreted something...
I live in Switzerland, and I have a ZyXEL Prestige 642R DSL
router connected to the
Potato has 1.2-14 as its latest for poppasswd... I agree that
v1.8-ceti would be a better solution, especially considering the
security issues you cited. What does it take to get this version into
the security updates? A bug filed?
Micah
On Wed, 09 Jan 2002, Steve Mickeler wrote:
I'm using
hi ya
On Wed, 9 Jan 2002, Phillip Hofmeister wrote:
I'll flame you now because you were wrong (As you requested).
IPCHAINS works with 2.2, IPTABLES works with 2.4...
and if you're really desperate
you can run ipchains with the 2.4 kernels by insmod'ing ipchains
and start your ipchains
You'll want to edit /etc/resolv.conf too.
On Thu, 10 Jan 2002 02:02:00 +1300 (NZDT)
Patrick Mackey [EMAIL PROTECTED] wrote:
Edit '/etc/hostname' to reflect the change. Then run:
hostname -F /etc/hostname
That should do it.
You might also want to edit /etc/mailname
--
Howdy,
If you don't want to play with FreeS/WAN or CIPE or such, you could just
rig an ssh connection and run PPP through it. This way you don't have to
worry about patching kernels etc. (or at most, just compile PPP support
in, as modules if you care about your uptime ;)
Hi Fellows
I am having a problem with getting iptables working with
kernel 2.4.12. Getting the following error message:
Can't locate module ip_tables iptables v1.2.4: can't initialize iptables
table
`nat': Table does not exist (do you need to insmod?)
Perhaps I'm missing a module ?
Any help
Just the other way around, 2.2.x == ipchains, 2.4.x == iptables.
Craig, just look at your kernel, and make sure every netfilter/iptables
module is compiled/listed, and then look at your /lib/modules/2.4.12/ and
make sure everything modprobes or insmods (if they haven't already) ..
On Wed, 9 Jan
Oh bloody hell, I thought it might be. Trouble is, every time I look for it I
can't find it one way or the other. This time I'm going to write it down.
Curt-
-Original Message-
From: Jussi Tawaststjerna [mailto:[EMAIL PROTECTED]
Sent: Wednesday, January 09, 2002 16:16
To:
Well what you propose here is not exactly IPSec. It's an encrypted way to
communicate but not IPSec. Don't expect it to work with a Cisco router/VPN
concentrator or a Win2K machine.
FreeSwan is quite a good product, quite inter-operable with all paltforms I
tested it with. (It's been a while
Hi,
It's there in Sid already (maybe Woody too -- haven't checked). If
In Woody too.
Does anyone know if xscreensaver-demo on Potato have an option like
that?
No it hasn't.
Disabling the feature on each box would be easier at install, but I
respect the maintainer choice. Working in a RD
On Wed, Jan 09, 2002 at 08:16:51AM +0200, Jussi Tawaststjerna wrote:
Howdy,
If you don't want to play with FreeS/WAN or CIPE or such, you could just
rig an ssh connection and run PPP through it. This way you don't have to
worry about patching kernels etc. (or at most, just compile PPP
On Wed, 9 Jan 2002, VERBEEK, FRANCOIS wrote:
Well what you propose here is not exactly IPSec. It's an encrypted way to
communicate but not IPSec. Don't expect it to work with a Cisco router/VPN
concentrator or a Win2K machine.
FreeSwan is quite a good product, quite inter-operable with
Hi!
I Have a trouble with my e-mail server. I have to change it to my domain
name and not .local ...
I need mailserver.domainname.no
Please help me
I have debian 2.2r4
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi,
Edit '/etc/hostname' to reflect the change. Then run:
hostname -F /etc/hostname
That should do it.
Best Regards,
- --
Patrick Mackey,
System Administrator
Deep House Music Organisation
http://www.deephousemusic.org
On Wed, 9 Jan 2002, Stian
I'll flame you now because you were wrong (As you requested). IPCHAINS works
with 2.2, IPTABLES works with 2.4...
touches Curtis on the shoulder yes you are sizzling now G
-Original Message-
From: Howland, Curtis [EMAIL PROTECTED]
To: [EMAIL PROTECTED], Debian-Security
On Sat, Jan 05, 2002 at 07:09:01PM +0100, eim wrote:
I'm planing to install a secure finger daemon
on one of the public boxes I admin.
Which Finger daemon is *really* secure ?
Shouldn't I install this service at all ?
Any experiences about compromised systems ?
http://www.fefe.de/ffingerd/
On Thu, 10 Jan 2002 02:02:00 +1300 (NZDT)
Patrick Mackey [EMAIL PROTECTED] wrote:
Edit '/etc/hostname' to reflect the change. Then run:
hostname -F /etc/hostname
That should do it.
You might also want to edit /etc/mailname
--
.--=-=-=-=--=---=-=-=.
Hi,
Recently I've installed some IP logging packages like ippl.
A few days ago a lot of ICMP - destination unreachable - bad port
messages started showing up comming from my DSL router.
Unfortunatly the log shows only that they come from the router
and nothing more.
Now obviously these are
alright, my users don't know how to do shell, and they can't change
passwords. now, i just upgraded to squirrelmail (upgraded because i had
IMP before, barf!), which has a plugin to change the password. it's TLS
encrypted, so not too much of a problem, but in testing out poppassd,
the underlying
also sprach Balazs Javor [EMAIL PROTECTED] [2002.01.09.2130 +0100]:
Recently I've installed some IP logging packages like ippl.
A few days ago a lot of ICMP - destination unreachable - bad port
messages started showing up comming from my DSL router.
are you behind a firewall?
what's the exact
I'm using poppassd v1.8-ceti from
http://www.ceti.com.pl/~kravietz/prog.html
It doesnt suffer from any of the problems you described below.
1) I cant use an old password, only the current password will work to
change the password
2) It is PAM aware
3) It supports MD5
I also make sure that
Hi,
Thanks for the tip about tcpdump. It seems the ntp service is
the responsible. I'll check the list of the ntp servers to see if
some of them is obsolete.
Anyway just in case I misinterpreted something...
I live in Switzerland, and I have a ZyXEL Prestige 642R DSL
router connected to the ADSL
Potato has 1.2-14 as its latest for poppasswd... I agree that
v1.8-ceti would be a better solution, especially considering the
security issues you cited. What does it take to get this version into
the security updates? A bug filed?
Micah
On Wed, 09 Jan 2002, Steve Mickeler wrote:
I'm using
also sprach Micah Anderson [EMAIL PROTECTED] [2002.01.10.0127 +0100]:
Potato has 1.2-14 as its latest for poppasswd... I agree that
v1.8-ceti would be a better solution, especially considering the
security issues you cited. What does it take to get this version into
the security updates? A bug
also sprach Balazs Javor [EMAIL PROTECTED] [2002.01.09.2329 +0100]:
Anyway just in case I misinterpreted something...
I live in Switzerland, and I have a ZyXEL Prestige 642R DSL
router connected to the ADSL line, which performs some NAT and
firewalling. The I connect my PCs through an ethernet
hi ya
On Wed, 9 Jan 2002, Phillip Hofmeister wrote:
I'll flame you now because you were wrong (As you requested).
IPCHAINS works with 2.2, IPTABLES works with 2.4...
and if you're really desperate
you can run ipchains with the 2.4 kernels by insmod'ing ipchains
and start your ipchains
37 matches
Mail list logo
