getting into the internals, I would recommend
firestarter as a great app for graphical firewall configuration.
- --
[!] Justin R. Miller <[EMAIL PROTECTED]>
PGP 0xC9C40C31 -=- http://codesorcery.net
http://news.independent.co.uk/world/asia_china/story.jsp?story=281067
-BEGIN
getting into the internals, I would recommend
firestarter as a great app for graphical firewall configuration.
- --
[!] Justin R. Miller <[EMAIL PROTECTED]>
PGP 0xC9C40C31 -=- http://codesorcery.net
http://news.independent.co.uk/world/asia_china/story.jsp?story=281067
-BEGIN
ity. Am I on the wrong list or did I read
> the list description incorrectly ?
Based on what I've seen, this is for Debian-related security discussion,
and debian-security-news is for announcements.
- --
[!] Justin R. Miller <[EMAIL PROTECTED]>
PGP 0xC9C40C31 -=- http://co
ity. Am I on the wrong list or did I read
> the list description incorrectly ?
Based on what I've seen, this is for Debian-related security discussion,
and debian-security-news is for announcements.
- --
[!] Justin R. Miller <[EMAIL PROTECTED]>
PGP 0xC9C40C31 -=- http://co
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Said [EMAIL PROTECTED] on Tue, Mar 12, 2002 at 03:20:29PM -0500:
> Anyone know how I fix this?
Typing 'dmesg -n1' will turn down the console output. I'm not sure what
downsides this may have, though.
- --
[!] Justin R. Miller
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Said [EMAIL PROTECTED] on Tue, Mar 12, 2002 at 03:20:29PM -0500:
> Anyone know how I fix this?
Typing 'dmesg -n1' will turn down the console output. I'm not sure what
downsides this may have, though.
- --
[!] Justin R. Miller
ens to link to another site from
this page, the query string will be seen in the HTTP referrer header on
the remote site, which often shows up in stats programs.
- --
[!] Justin R. Miller <[EMAIL PROTECTED]>
PGP 0xC9C40C31 -=- http://codesorcery.net
http://www.cnn.com/2002/ALLPO
ens to link to another site from
this page, the query string will be seen in the HTTP referrer header on
the remote site, which often shows up in stats programs.
- --
[!] Justin R. Miller <[EMAIL PROTECTED]>
PGP 0xC9C40C31 -=- http://codesorcery.net
http://www.cnn.com/2002/ALLPO
j
> ACCEPT
Here's what firestarter seems to add for DHCP:
ACCEPT tcp -- 0.0.0.0/00.0.0.0/0 tcp dpts:67:68
ACCEPT udp -- 0.0.0.0/00.0.0.0/0 udp dpts:67:68
I suppose it could be a bit more restrictive than that...
- --
[!] Justin R
j
> ACCEPT
Here's what firestarter seems to add for DHCP:
ACCEPT tcp -- 0.0.0.0/00.0.0.0/0 tcp dpts:67:68
ACCEPT udp -- 0.0.0.0/00.0.0.0/0 udp dpts:67:68
I suppose it could be a bit more restrictive than that...
- --
[!] Justin R
uilding
firewall rules that can adapt for DHCP.
- --
[!] Justin R. Miller <[EMAIL PROTECTED]>
PGP 0xC9C40C31 -=- http://codesorcery.net
http://www.aclu.org/action/id107.html
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.0.6 (GNU/Linux)
Comment: For info se
uilding
firewall rules that can adapt for DHCP.
- --
[!] Justin R. Miller <[EMAIL PROTECTED]>
PGP 0xC9C40C31 -=- http://codesorcery.net
http://www.aclu.org/action/id107.html
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.0.6 (GNU/Linux)
Comment: For info se
7;adduser' command.
- --
[!] Justin R. Miller <[EMAIL PROTECTED]>
PGP 0xC9C40C31 -=- http://codesorcery.net
http://www.newsbytes.com/news/02/174673.html
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.0.6 (GNU/Linux)
Comment: For
e this?
- --
[!] Justin R. Miller <[EMAIL PROTECTED]>
PGP 0xC9C40C31 -=- http://codesorcery.net
http://www.newsbytes.com/news/02/174673.html
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.0.6 (GNU/Linux)
Comment: For info see http://w
7;adduser' command.
- --
[!] Justin R. Miller <[EMAIL PROTECTED]>
PGP 0xC9C40C31 -=- http://codesorcery.net
http://www.newsbytes.com/news/02/174673.html
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.0.6 (GNU/Linux)
Comment: For
e this?
- --
[!] Justin R. Miller <[EMAIL PROTECTED]>
PGP 0xC9C40C31 -=- http://codesorcery.net
http://www.newsbytes.com/news/02/174673.html
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.0.6 (GNU/Linux)
Comment: For info see http://w
Thus spake Kenneth Pronovici ([EMAIL PROTECTED]):
> From 'man ssh'
Related:
http://www-106.ibm.com/developerworks/library/l-keyc.html
http://www-106.ibm.com/developerworks/linux/library/l-keyc2/?open&l=252,t=grl,p=ossh2
--
Justin R. Miller <[EMAIL
Thus spake Kenneth Pronovici ([EMAIL PROTECTED]):
> From 'man ssh'
Related:
http://www-106.ibm.com/developerworks/library/l-keyc.html
http://www-106.ibm.com/developerworks/linux/library/l-keyc2/?open&l=252,t=grl,p=ossh2
--
Justin R. Miller <[EMAIL
gt; My filters provide similar functionality to spamassasin. The response
> scripts fill in an additional role.
Nice, I will have a look at your setup sometime. :-)
--
Justin R. Miller <[EMAIL PROTECTED]>
View my website at http://codesorcery.net
Please encrypt email using key 0xC9C40
gt; My filters provide similar functionality to spamassasin. The response
> scripts fill in an additional role.
Nice, I will have a look at your setup sometime. :-)
--
Justin R. Miller <[EMAIL PROTECTED]>
View my website at http://codesorcery.net
Please encrypt email using key 0xC9C40C31
Thus spake Karsten M. Self (kmself@ix.netcom.com):
> I've got a few systems for trapping spam.
I've been quite happy with spamassassin. Feel free to check out my
writeup:
http://codesorcery.net/docs/spamtricks.html
--
Justin R. Miller <[EMAIL PROTECTED]>
View
Thus spake Karsten M. Self ([EMAIL PROTECTED]):
> I've got a few systems for trapping spam.
I've been quite happy with spamassassin. Feel free to check out my
writeup:
http://codesorcery.net/docs/spamtricks.html
--
Justin R. Miller <[EMAIL PROTECTED]>
View
t's the best solution (security reason)
Have a look at Cyrus IMAP. It's designed for POP3/IMAP for non-shell
users, i.e. a closed-box system. the authentication _can_ be
/etc/passwd-based, but typically you use a separate DB file to store the
login info.
--
Justin R. Miller <[EMAIL PRO
t's the best solution (security reason)
Have a look at Cyrus IMAP. It's designed for POP3/IMAP for non-shell
users, i.e. a closed-box system. the authentication _can_ be
/etc/passwd-based, but typically you use a separate DB file to store the
login info.
--
Justin R. Miller <[EMAIL PRO
00 /usr/sbin/atd
If you don't use this, get rid of it. Malicious users can schedule
tasks for when they're not logged in.
Just a couple thoughts on ways to tighten things.
--
Justin R. Miller <[EMAIL PROTECTED]>
PGP/GnuPG Key ID 0xC9C40C31 (preferred)
pgplkHonmriow.pgp
Description: PGP signature
00 /usr/sbin/atd
If you don't use this, get rid of it. Malicious users can schedule
tasks for when they're not logged in.
Just a couple thoughts on ways to tighten things.
--
Justin R. Miller <[EMAIL PROTECTED]>
PGP/GnuPG Key ID 0xC9C40C31 (preferred)
msg04062/pgp0.pgp
Description: PGP signature
26 matches
Mail list logo