Hi Joshua,
There should be no problem with using PasswordAuthentication with SSH
since the passwords are _NOT_ sent in the clear. Rather, the clear
text password is sent over the encrypted channel. From the SSH(1) man
page:
The password is sent to the remote host for checking; however,
I'm looking for something like this:
Howabout installing shorewall? (www.shorewall.net) the best iptables script i have
ever seen.
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Did you look at shorewall ? (apt-cache show shorewall if not)
This script is fantastic, and when you know exactly what you want,
configuring it is a matter of minutes...
Install it, read the quick-start guide, which is basically :
1) define your zones in the zones files. you would define
dmz,
Howabout installing shorewall? (www.shorewall.net) the best iptables
script i have ever seen.
It's not only the best iptables script you've ever seen, but it's also a
nice high-level configuration tool for everything
concerning firewalling.. Traffic Shaping, IPSec...
Sam
--
To UNSUBSCRIBE,
On Tue, May 28, 2002 at 05:51:02PM -0700, Stephen Johnson wrote:
Hello, i'm confused on a couple variables in the sshd_config file, i have
a client that's using that 'other os' and has an ssh client that he likes.
[PAMAuthenticationViaKbdInt doesn't work]
Is the 'other os' client using sshv1
Hello,
We are running a Debian (potato) box with Samba as PDC for user authentication and
file server for W2k LAN clients. Recently one of our notebooks was stolen. As I can
identify all the users who have ever logged in via that notebook, and may have their
samba password stored on the
I looked into shorewall. It doesn't support ipchains, but seawall does.
Would you suggest updating to iptables or using seawall?
Do you think that Linux 2.4.x is stable yet? If so, which version?
I believe that ipchains can do the job and that linux 2.2.20 is stable. I
don't have experience in
I think you should upgrade to 2.4.x, netfilter really is clean.
Even if some parts of 2.4.x are critisized (or were, like the VM..),
the whole netfilter part really is beautiful.. ipchains is a bunch of
hacks glued together to provide all the functionnalities you need.
Netfilter, on the other
On Wed, May 29, 2002 at 12:30:32PM -0400, Rishi L Khan remarked:
I looked into shorewall. It doesn't support ipchains, but
seawall does. Would you suggest updating to iptables or using
seawall?
I am also curious to know if anyone has played with seawall and
can comment on whether it comes
I am attempting to configure our Debian webserver, running Apache, to
use our Windows PDC when authenticating for secure web access. I have
followed instructions that I found on the web, but I am having trouble.
I keep getting a 500 internal server error when I go to login to a
secured area. In
On Wed, May 29, 2002 at 10:05:45AM -0700, Tom Dominico wrote:
I am attempting to configure our Debian webserver, running Apache, to
use our Windows PDC when authenticating for secure web access. I have
followed instructions that I found on the web, but I am having trouble.
[...]
AuthType
You're going to need to use the NTLM auth mod for apache ..
http://modntlm.sourceforge.net/
At 11:47 AM 29/05/2002 -0700, Christian G. Warden wrote:
On Wed, May 29, 2002 at 10:05:45AM -0700, Tom Dominico wrote:
I am attempting to configure our Debian webserver, running Apache, to
use our
On Wednesday 29 May 2002 11:16 am, Rauno Linnamäe wrote:
Hello,
We are running a Debian (potato) box with Samba as PDC for user
authentication and file server for W2k LAN clients. Recently one of our
notebooks was stolen. As I can identify all the users who have ever logged
in via that
On Wednesday 29 May 2002 04:38 pm, Rauno Linnam?e wrote:
On Wed, May 29, 2002 at 03:37:50AM -0500, xbud wrote:
On Wednesday 29 May 2002 11:16 am, Rauno Linnamäe wrote:
Hello,
We are running a Debian (potato) box with Samba as PDC for user
authentication and file server for W2k LAN
libpam-opie seems to be working great here.
On Wed, May 29, 2002 at 10:58:50AM +0700, Jean Christophe ANDRÃ? wrote:
Hello Joshua and all,
Joshua Goodall wrote :
Personally I recommend neither and tell everyone to prefer keys
and one-time passwords, but that's another story :)
Do you happen to know if debs are available? I don't see any using
apt-cache search. Thanks.
-Original Message-
From: Stephen Hassard [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, May 29, 2002 12:19 PM
To: Tom Dominico
Cc: [EMAIL PROTECTED]
Subject: Re: Configuration problems with
On Tue, May 28, 2002 at 05:51:02PM -0700, Stephen Johnson wrote:
Hello, i'm confused on a couple variables in the sshd_config file, i
have a client that's using that 'other os' and has an ssh client that he
likes. however, he wanted me to secure the server as much as possible,
i've always
Hello Joshua and all,
Joshua Goodall wrote :
Personally I recommend neither and tell everyone to prefer keys
and one-time passwords, but that's another story :)
Any hint for the best OTP method on Debian? libpam-opie??
Cheers, J.C.
--
Jean Christophe ANDRÉ [EMAIL PROTECTED]
Hi Joshua,
There should be no problem with using PasswordAuthentication with SSH
since the passwords are _NOT_ sent in the clear. Rather, the clear
text password is sent over the encrypted channel. From the SSH(1) man
page:
The password is sent to the remote host for checking; however, since
Does anyone have a set of ipchains rules for a DMZ that doesn't have
routable IPs and an internal network that doesn't have routable IPs?
I looked on the IPCHAINS HOWTO page, but they don't have a script for
this. I haven't seen anything with google either.
I'm looking for something like this:
I'm looking for something like this:
Howabout installing shorewall? (www.shorewall.net) the best iptables script i
have ever seen.
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Did you look at shorewall ? (apt-cache show shorewall if not)
This script is fantastic, and when you know exactly what you want,
configuring it is a matter of minutes...
Install it, read the quick-start guide, which is basically :
1) define your zones in the zones files. you would define
dmz, lan,
Howabout installing shorewall? (www.shorewall.net) the best iptables
script i have ever seen.
It's not only the best iptables script you've ever seen, but it's also a
nice high-level configuration tool for everything
concerning firewalling.. Traffic Shaping, IPSec...
Sam
--
To UNSUBSCRIBE,
On Tue, May 28, 2002 at 05:51:02PM -0700, Stephen Johnson wrote:
Hello, i'm confused on a couple variables in the sshd_config file, i have
a client that's using that 'other os' and has an ssh client that he likes.
[PAMAuthenticationViaKbdInt doesn't work]
Is the 'other os' client using sshv1
Hello,
We are running a Debian (potato) box with Samba as PDC for user authentication
and file server for W2k LAN clients. Recently one of our notebooks was stolen.
As I can identify all the users who have ever logged in via that notebook, and
may have their samba password stored on the
I looked into shorewall. It doesn't support ipchains, but seawall does.
Would you suggest updating to iptables or using seawall?
Do you think that Linux 2.4.x is stable yet? If so, which version?
I believe that ipchains can do the job and that linux 2.2.20 is stable. I
don't have experience in
I think you should upgrade to 2.4.x, netfilter really is clean.
Even if some parts of 2.4.x are critisized (or were, like the VM..),
the whole netfilter part really is beautiful.. ipchains is a bunch of
hacks glued together to provide all the functionnalities you need.
Netfilter, on the other
On Wed, May 29, 2002 at 12:30:32PM -0400, Rishi L Khan remarked:
I looked into shorewall. It doesn't support ipchains, but
seawall does. Would you suggest updating to iptables or using
seawall?
I am also curious to know if anyone has played with seawall and
can comment on whether it comes
I am attempting to configure our Debian webserver, running Apache, to
use our Windows PDC when authenticating for secure web access. I have
followed instructions that I found on the web, but I am having trouble.
I keep getting a 500 internal server error when I go to login to a
secured area. In
On Wed, May 29, 2002 at 10:05:45AM -0700, Tom Dominico wrote:
I am attempting to configure our Debian webserver, running Apache, to
use our Windows PDC when authenticating for secure web access. I have
followed instructions that I found on the web, but I am having trouble.
[...]
AuthType
You're going to need to use the NTLM auth mod for apache ..
http://modntlm.sourceforge.net/
At 11:47 AM 29/05/2002 -0700, Christian G. Warden wrote:
On Wed, May 29, 2002 at 10:05:45AM -0700, Tom Dominico wrote:
I am attempting to configure our Debian webserver, running Apache, to
use our
On Wednesday 29 May 2002 11:30 am, Rishi L Khan wrote:
I looked into shorewall. It doesn't support ipchains, but seawall does.
Would you suggest updating to iptables or using seawall?
Do you think that Linux 2.4.x is stable yet? If so, which version?
The kernel overall I believe is
On Wednesday 29 May 2002 11:16 am, Rauno Linnamäe wrote:
Hello,
We are running a Debian (potato) box with Samba as PDC for user
authentication and file server for W2k LAN clients. Recently one of our
notebooks was stolen. As I can identify all the users who have ever logged
in via that
On Wed, May 29, 2002 at 03:37:50AM -0500, xbud wrote:
On Wednesday 29 May 2002 11:16 am, Rauno Linnamäe wrote:
Hello,
We are running a Debian (potato) box with Samba as PDC for user
authentication and file server for W2k LAN clients. Recently one of our
notebooks was stolen. As I can
On Wednesday 29 May 2002 04:38 pm, Rauno Linnam?e wrote:
On Wed, May 29, 2002 at 03:37:50AM -0500, xbud wrote:
On Wednesday 29 May 2002 11:16 am, Rauno Linnamäe wrote:
Hello,
We are running a Debian (potato) box with Samba as PDC for user
authentication and file server for W2k LAN
libpam-opie seems to be working great here.
On Wed, May 29, 2002 at 10:58:50AM +0700, Jean Christophe ANDRÃ? wrote:
Hello Joshua and all,
Joshua Goodall wrote :
Personally I recommend neither and tell everyone to prefer keys
and one-time passwords, but that's another story :)
Any
Do you happen to know if debs are available? I don't see any using
apt-cache search. Thanks.
-Original Message-
From: Stephen Hassard [mailto:[EMAIL PROTECTED]
Sent: Wednesday, May 29, 2002 12:19 PM
To: Tom Dominico
Cc: debian-security@lists.debian.org
Subject: Re: Configuration
On Tue, May 28, 2002 at 05:51:02PM -0700, Stephen Johnson wrote:
Hello, i'm confused on a couple variables in the sshd_config file, i
have a client that's using that 'other os' and has an ssh client that he
likes. however, he wanted me to secure the server as much as possible,
i've always
38 matches
Mail list logo
