Previously Alexander Hvostov wrote:
Where might I find this?
http://www.msu.ru/pniam/pniam.html
ftp://ftp.nc.orc.ru/pub/Linux/pniam/pniam-0.02.tgz
Wichert.
--
/ Generally uninteresting signature - ignore at
On Wed, Jun 14, 2000 at 02:43:07PM +0200, Wichert Akkerman wrote:
A good free reimplementation of portsentry is something I would really
like to see. Right now portsentry works reasonably, but it could really
use a bunch of extra features.
Can't snort do almost everything portsentry does if
Lennie,
Can you give me any more details than just that Linux I/O performance is
inferior to *BSD?
Regards,
Alex.
---
PGP/GPG Fingerprint:
EFD1 AC6C 7ED5 E453 C367 AC7A B474 16E0 758D 7ED9
-BEGIN GEEK CODE BLOCK-
Version: 3.12
GCM d- s:+ a--- C UL P L+++ E W++ N o-- K- w
On Wed, 14 Jun 2000, Alexander Hvostov wrote:
Lennie,
Can you give me any more details than just that Linux I/O performance is
inferior to *BSD?
not much :/
All I can show is from my own experience.
Some time ago, I 'replaced' my home firewall 486 Debian installation with
OpenBSD (just to
Lennie,
There's all sorts of interesting tweaks you can do to Linux to fine-tune
its network behavior via /proc. I suggest you look into it.
Regards,
Alex.
---
PGP/GPG Fingerprint:
EFD1 AC6C 7ED5 E453 C367 AC7A B474 16E0 758D 7ED9
-BEGIN GEEK CODE BLOCK-
Version: 3.12
GCM d- s:+
On Wed, Jun 14, 2000 at 09:23:54AM +0200, L. Besselink wrote:
On Tue, 13 Jun 2000, Thomas Guettler wrote:
If you ask me personally what things in Linux and/or Debian are most
needed ? Those are two things:
- I/O performance. Linux just doesn't have as good an I/O performance as
the BSD
and
- Pro active security sourcecode reading/fixing, like what the OpenBSD
people do.
I wanted to start a project like that a while back. I examined
the OpenBSD patches to try to figure out exactly what they looked for.
Unfortunately, between school and jobs, i haven't had the time to
On Tue, Jun 13, 2000 at 03:46:12PM -0700, Ryan White wrote:
As I recall after windows 95 the passwords are sent over the line
encrypted. The encryption might be weak but they are not clear text
anymore.
There is a switch in SMB to allow encrypted passwords. This is ON by
default in debian
Previously Thomas Guettler wrote:
I am in the same position. I have got some time left which
I could spent in an opensource project. Nearly all
things I dream of are already working.
A good free reimplementation of portsentry is something I would really
like to see. Right now portsentry works
Previously Alexander Hvostov wrote:
I have a better idea: an integrated 'user' command, which uses plugins to
access the actual database server (like PAM, but for writing to the
database rather than reading from it), and performs any of several
functions.
PNIAM might alreadyh do this, I
On Wed, 14 Jun 2000, Sebastian Rittau wrote:
[stuff about encrypted SMB passwords]
But using this option prevents you from using the global /etc/shadow
file, which is problematic in some cases.
True. Samba has a password sync option to enable SMB password changes to
automatically update the
On Wed, Jun 14, 2000 at 02:43:07PM +0200, Wichert Akkerman wrote:
Previously Thomas Guettler wrote:
I am in the same position. I have got some time left which
I could spent in an opensource project. Nearly all
things I dream of are already working.
A good free reimplementation of
At 22:40 14/06/2000, Zak Kipling wrote:
On Wed, 14 Jun 2000, Sebastian Rittau wrote:
[stuff about encrypted SMB passwords]
But using this option prevents you from using the global /etc/shadow
file, which is problematic in some cases.
True. Samba has a password sync option to enable SMB
Wichert,
Where might I find this?
Regards,
Alex.
---
PGP/GPG Fingerprint:
EFD1 AC6C 7ED5 E453 C367 AC7A B474 16E0 758D 7ED9
-BEGIN GEEK CODE BLOCK-
Version: 3.12
GCM d- s:+ a--- C UL P L+++ E W++ N o-- K- w
O--- M- V- PS+ PE- Y PGP t+ 5 X- R tv+ b DI--- D+
G e-- h++ r--- y
I am in the same position. I have got some time left which
I could spent in an opensource project. Nearly all
things I dream of are already working.
So that I don't know where to join.
And Mozilla ist too big.
And like Florian I am interested in security.
If someone knows where to start, please
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
snip
One thing I am interested is, which ist AFAIK no
implemented yet:
Crossplattform userauthentication (win+unix),
via LDAP.
This is a great idea. I am willing to help if pointed in the right
direction. I guess using PAM and Samba together with
Ronny and all,
If you want to use LDAP, I suggest you do LDAP over SSL/TLS. The current
OpenLDAP doesn't support it natively, but I believe there's a patch, and
of course there's always wrappers like stunnel.
Of course, if you want to use user authentication from Windows, using PAM
is more or
As I recall after windows 95 the passwords are sent over the line
encrypted. The encryption might be weak but they are not clear text
anymore.
There is a switch in SMB to allow encrypted passwords. This is ON by
default in debian (I believe)
-Ryan
On Tue, 13 Jun 2000, Alexander Hvostov wrote:
On Tue, Jun 13, 2000 at 03:54:25PM +0200, Thomas Guettler wrote:
I am in the same position. I have got some time left which
I could spent in an opensource project. Nearly all
things I dream of are already working.
So that I don't know where to join.
And Mozilla ist too big.
And like Florian
Ryan,
It may be encrypted, but it isn't public-key encrypted or anything like
that. Anyone with a packet analyzer (ngrep will do it) can just send the
encrypted password to the server, so it's just as good as having the
cleartext password.
Regards,
Alex.
---
PGP/GPG Fingerprint:
EFD1 AC6C
Michael,
I have a better idea: an integrated 'user' command, which uses plugins to
access the actual database server (like PAM, but for writing to the
database rather than reading from it), and performs any of several
functions. Some examples:
# user add joe
Enter password:
Repeat password:
User
Greetings everybody !
I've read in the news from the debian site that the security team was kind of
short of ressources and that some more people were needed. I would like to
help, but I'm not actually a good security-specialist. I'm eager to learn, and
would like to know what I can do or read to
22 matches
Mail list logo
