Re: cups security

getting into the internals, I would recommend firestarter as a great app for graphical firewall configuration. - -- [!] Justin R. Miller <[EMAIL PROTECTED]> PGP 0xC9C40C31 -=- http://codesorcery.net http://news.independent.co.uk/world/asia_china/story.jsp?story=281067 -BEGIN

Re: cups security

getting into the internals, I would recommend firestarter as a great app for graphical firewall configuration. - -- [!] Justin R. Miller <[EMAIL PROTECTED]> PGP 0xC9C40C31 -=- http://codesorcery.net http://news.independent.co.uk/world/asia_china/story.jsp?story=281067 -BEGIN

Re: Purpose of this list

ity. Am I on the wrong list or did I read > the list description incorrectly ? Based on what I've seen, this is for Debian-related security discussion, and debian-security-news is for announcements. - -- [!] Justin R. Miller <[EMAIL PROTECTED]> PGP 0xC9C40C31 -=- http://co

Re: Purpose of this list

ity. Am I on the wrong list or did I read > the list description incorrectly ? Based on what I've seen, this is for Debian-related security discussion, and debian-security-news is for announcements. - -- [!] Justin R. Miller <[EMAIL PROTECTED]> PGP 0xC9C40C31 -=- http://co

Re: IP chains logs to console

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Said [EMAIL PROTECTED] on Tue, Mar 12, 2002 at 03:20:29PM -0500: > Anyone know how I fix this? Typing 'dmesg -n1' will turn down the console output. I'm not sure what downsides this may have, though. - -- [!] Justin R. Miller

Re: IP chains logs to console

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Said [EMAIL PROTECTED] on Tue, Mar 12, 2002 at 03:20:29PM -0500: > Anyone know how I fix this? Typing 'dmesg -n1' will turn down the console output. I'm not sure what downsides this may have, though. - -- [!] Justin R. Miller

Re: default Apache configuration

ens to link to another site from this page, the query string will be seen in the HTTP referrer header on the remote site, which often shows up in stats programs. - -- [!] Justin R. Miller <[EMAIL PROTECTED]> PGP 0xC9C40C31 -=- http://codesorcery.net http://www.cnn.com/2002/ALLPO

Re: default Apache configuration

ens to link to another site from this page, the query string will be seen in the HTTP referrer header on the remote site, which often shows up in stats programs. - -- [!] Justin R. Miller <[EMAIL PROTECTED]> PGP 0xC9C40C31 -=- http://codesorcery.net http://www.cnn.com/2002/ALLPO

Re: iptables vs DHCP

j > ACCEPT Here's what firestarter seems to add for DHCP: ACCEPT tcp -- 0.0.0.0/00.0.0.0/0 tcp dpts:67:68 ACCEPT udp -- 0.0.0.0/00.0.0.0/0 udp dpts:67:68 I suppose it could be a bit more restrictive than that... - -- [!] Justin R

Re: iptables vs DHCP

j > ACCEPT Here's what firestarter seems to add for DHCP: ACCEPT tcp -- 0.0.0.0/00.0.0.0/0 tcp dpts:67:68 ACCEPT udp -- 0.0.0.0/00.0.0.0/0 udp dpts:67:68 I suppose it could be a bit more restrictive than that... - -- [!] Justin R

Re: iptables vs DHCP

uilding firewall rules that can adapt for DHCP. - -- [!] Justin R. Miller <[EMAIL PROTECTED]> PGP 0xC9C40C31 -=- http://codesorcery.net http://www.aclu.org/action/id107.html -BEGIN PGP SIGNATURE- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info se

Re: iptables vs DHCP

uilding firewall rules that can adapt for DHCP. - -- [!] Justin R. Miller <[EMAIL PROTECTED]> PGP 0xC9C40C31 -=- http://codesorcery.net http://www.aclu.org/action/id107.html -BEGIN PGP SIGNATURE- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info se

Re: root's home world readable

7;adduser' command. - -- [!] Justin R. Miller <[EMAIL PROTECTED]> PGP 0xC9C40C31 -=- http://codesorcery.net http://www.newsbytes.com/news/02/174673.html -BEGIN PGP SIGNATURE- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For

Re: root's home world readable

e this? - -- [!] Justin R. Miller <[EMAIL PROTECTED]> PGP 0xC9C40C31 -=- http://codesorcery.net http://www.newsbytes.com/news/02/174673.html -BEGIN PGP SIGNATURE- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://w

Re: root's home world readable

7;adduser' command. - -- [!] Justin R. Miller <[EMAIL PROTECTED]> PGP 0xC9C40C31 -=- http://codesorcery.net http://www.newsbytes.com/news/02/174673.html -BEGIN PGP SIGNATURE- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For

Re: root's home world readable

e this? - -- [!] Justin R. Miller <[EMAIL PROTECTED]> PGP 0xC9C40C31 -=- http://codesorcery.net http://www.newsbytes.com/news/02/174673.html -BEGIN PGP SIGNATURE- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://w

Re: problems with ssh

Thus spake Kenneth Pronovici ([EMAIL PROTECTED]): > From 'man ssh' Related: http://www-106.ibm.com/developerworks/library/l-keyc.html http://www-106.ibm.com/developerworks/linux/library/l-keyc2/?open&l=252,t=grl,p=ossh2 -- Justin R. Miller <[EMAIL

Re: problems with ssh

Thus spake Kenneth Pronovici ([EMAIL PROTECTED]): > From 'man ssh' Related: http://www-106.ibm.com/developerworks/library/l-keyc.html http://www-106.ibm.com/developerworks/linux/library/l-keyc2/?open&l=252,t=grl,p=ossh2 -- Justin R. Miller <[EMAIL

Re: Party with porn stars

gt; My filters provide similar functionality to spamassasin. The response > scripts fill in an additional role. Nice, I will have a look at your setup sometime. :-) -- Justin R. Miller <[EMAIL PROTECTED]> View my website at http://codesorcery.net Please encrypt email using key 0xC9C40

Re: Party with porn stars

gt; My filters provide similar functionality to spamassasin. The response > scripts fill in an additional role. Nice, I will have a look at your setup sometime. :-) -- Justin R. Miller <[EMAIL PROTECTED]> View my website at http://codesorcery.net Please encrypt email using key 0xC9C40C31

Re: Party with porn stars

Thus spake Karsten M. Self (kmself@ix.netcom.com): > I've got a few systems for trapping spam. I've been quite happy with spamassassin. Feel free to check out my writeup: http://codesorcery.net/docs/spamtricks.html -- Justin R. Miller <[EMAIL PROTECTED]> View

Re: Party with porn stars

Thus spake Karsten M. Self ([EMAIL PROTECTED]): > I've got a few systems for trapping spam. I've been quite happy with spamassassin. Feel free to check out my writeup: http://codesorcery.net/docs/spamtricks.html -- Justin R. Miller <[EMAIL PROTECTED]> View

Re: Mail-server config

t's the best solution (security reason) Have a look at Cyrus IMAP. It's designed for POP3/IMAP for non-shell users, i.e. a closed-box system. the authentication _can_ be /etc/passwd-based, but typically you use a separate DB file to store the login info. -- Justin R. Miller <[EMAIL PRO

Re: Mail-server config

t's the best solution (security reason) Have a look at Cyrus IMAP. It's designed for POP3/IMAP for non-shell users, i.e. a closed-box system. the authentication _can_ be /etc/passwd-based, but typically you use a separate DB file to store the login info. -- Justin R. Miller <[EMAIL PRO

Re: Hacked stable system?

00 /usr/sbin/atd If you don't use this, get rid of it. Malicious users can schedule tasks for when they're not logged in. Just a couple thoughts on ways to tighten things. -- Justin R. Miller <[EMAIL PROTECTED]> PGP/GnuPG Key ID 0xC9C40C31 (preferred) pgplkHonmriow.pgp Description: PGP signature

Re: Hacked stable system?

00 /usr/sbin/atd If you don't use this, get rid of it. Malicious users can schedule tasks for when they're not logged in. Just a couple thoughts on ways to tighten things. -- Justin R. Miller <[EMAIL PROTECTED]> PGP/GnuPG Key ID 0xC9C40C31 (preferred) msg04062/pgp0.pgp Description: PGP signature