Re: question about SSH / IPTABLES

2003-01-23 Thread InfoEmergencias - Luis Gómez
El Jue 23 Ene 2003 13:45, DEFFONTAINES Vincent escribió: > 2. Mount /home, /tmp and any other place users might have write access on > with the "noexec" switch, so they can only use binaries installed (and > allowed to them) on the system. Beware that noexec can be easily cheated: <--> ad

Re: question about SSH / IPTABLES

2003-01-23 Thread InfoEmergencias - Luis Gómez
El Jue 23 Ene 2003 13:45, DEFFONTAINES Vincent escribió: > 2. Mount /home, /tmp and any other place users might have write access on > with the "noexec" switch, so they can only use binaries installed (and > allowed to them) on the system. Beware that noexec can be easily cheated: <--> ad

Re: X Security Issues? [SOLVED]

2002-11-20 Thread InfoEmergencias - Luis Gómez
El mié, 20-11-2002 a las 03:35, Edward Guldemond escribió: > Actually, I noticed something interesting when I was testing this out > on my home box. When I used "startx", X didn't listen on TCP. When I > used xinit, it did. I guess that xerverrc only gets read when you use > startx. IIRC, they

Re: X Security Issues? [SOLVED]

2002-11-20 Thread InfoEmergencias - Luis Gómez
El mié, 20-11-2002 a las 03:35, Edward Guldemond escribió: > Actually, I noticed something interesting when I was testing this out > on my home box. When I used "startx", X didn't listen on TCP. When I > used xinit, it did. I guess that xerverrc only gets read when you use > startx. IIRC, they

RE: Apache 1.3.27 is out...

2002-10-04 Thread InfoEmergencias - Luis Gómez
El vie, 04-10-2002 a las 10:36, STOJICEVIC Edi EXPSIA escribió: > Does a deb already exist for this new version ? Not yet, I guess. At least officially: Reading Package Lists... Done Building Dependency Tree... Done Reading Package Lists... Done Building Dependency Tree... Done Calculating Upgrade

RE: Apache 1.3.27 is out...

2002-10-04 Thread InfoEmergencias - Luis Gómez
El vie, 04-10-2002 a las 10:36, STOJICEVIC Edi EXPSIA escribió: > Does a deb already exist for this new version ? Not yet, I guess. At least officially: Reading Package Lists... Done Building Dependency Tree... Done Reading Package Lists... Done Building Dependency Tree... Done Calculating Upgrad

Re: debian-security-announce-$lang@lists?

2002-08-14 Thread InfoEmergencias - Luis Gómez
El mié, 14-08-2002 a las 11:03, Javier Fernández-Sanguino Peña escribió: > I do not see the benefit of this "push" method if we take in > account that we already provide an RDF channel for advisories and users > can configure their user agents (like Evolution) to retrieve them > automatically

Re: snort error starting

2002-07-19 Thread InfoEmergencias - Luis Gómez
El vie, 19-07-2002 a las 19:53, Phillip Hofmeister escribió: > On Fri, 19 Jul 2002 at 09:33:14AM -0700, Jeff wrote: > > # /etc/init.d/snort start > > /etc/init.d/snort: var: command not found > > > Looks like a bug in the init script. If I had Snort/woody I would look at it. > Someone can probabl

loopback was down and with no IP

2002-06-28 Thread InfoEmergencias - Luis Gómez
Hi Something strange has just happened to me. I've installed two very different boxes (nela is K7/1.3 GHz, yolanda is IBM Pentium 100) using ReiserFS boot disks for Woody, and one CD, and later upgraded via iNet. After finishing installation of base system, and adding some other packages (postfix

Re: DSA-134-1

2002-06-26 Thread InfoEmergencias - Luis Gómez
El mar, 25-06-2002 a las 12:40, Robert van der Meulen escribió: > and disclosure is only done when it doesn't affect > openbsd (or the '5 years without..' line on openbsd.org). You'll love this one: "One remote hole in the default install, in nearly 6 years!" Great X'DD Depending on the language

Re: PermitRootLogin enabled by default

2002-06-26 Thread InfoEmergencias - Luis Gómez
El mié, 26-06-2002 a las 16:39, Sebastian Rittau escribió: > Yes, there is. For example I have some servers that retrieve their user > information from a database. If the database is not reachable, an > ordinary user can't login, but root can, since it's the only local > account with login privileg

PermitRootLogin enabled by default

2002-06-26 Thread InfoEmergencias - Luis Gómez
Hi all Messing up with sshd_config for all the privsep stuff, I've noticed that PermitRootLogin was set to yes in my three woody boxes. I usually consider this a problem (although it has been my fault - i should have checked and noticed this much time ago). What do you think of this? IMHO, we'd b

security.debian.org is down

2002-06-25 Thread InfoEmergencias - Luis Gómez
The subject says it all... I'm in Spain, is it happening everywhere or is it just the phone company folks messing again with the DSL? Regards, Pope -- Luis Gómez Miralles InfoEmergencias - Technical Department Phone (+34) 654 24 01 34 Fax (+34) 963 49 31 80 [EMAIL PROTECTED] PGP Public

Re: named problem

2002-05-06 Thread InfoEmergencias - Luis Gómez
A week ago or so I also got some strange responses in UDP packets. They came from DNS servers to my DNS server. Maybe something's screwed up out there... I dunno, but I think root DNSs will give us a bad surprise soon... El lun, 06-05-2002 a las 16:37, Jan Räther escribió: > Hi there, > > during

Re: named problem

2002-05-06 Thread InfoEmergencias - Luis Gómez
A week ago or so I also got some strange responses in UDP packets. They came from DNS servers to my DNS server. Maybe something's screwed up out there... I dunno, but I think root DNSs will give us a bad surprise soon... El lun, 06-05-2002 a las 16:37, Jan Räther escribió: > Hi there, > > durin