Questions concerning Debian's security feed

Hello to Debian's security team. I'm researching the Debian's security feed <https://security-tracker.debian.org/tracker> and I have a couple of questions about the meaning of some of the keys included on the JSON feed. Below are the keys in question. - *repositories *k

Re: Questions

Hi all, For openscap, you can also check these pages: https://wiki.debian.org/SCAPGuide https://wiki.debian.org/UsingSCAP Cheers, Le 5 décembre 2018 00:32:49 GMT+01:00, "Bardot Jérôme" a écrit : >Le 04/12/2018 à 21:32, Ruslanas Gžibovskis a écrit : >> Hi all, >> >> Jerome, I would say that m

Re: Questions

there for you to figure it out. Feel free to ask any questions if something isn't clear. If you're looking for info about using git, check out the docs: https://git-scm.com/doc Which area would you like to work on? -- bye, pabs https://wiki.debian.org/PaulWise signature.asc Descri

Re: Questions

Le 04/12/2018 à 21:32, Ruslanas Gžibovskis a écrit : > Hi all, > > Jerome, I would say that most 'users' will go to pop choice, like only > some hardcore lovers would listen to "Tsjuder" but most of the people > would go with "Lady Gaga". Same here, if you do not want to learn, you > use *buntu or

Re: Questions

Me too. Le 04/12/2018 à 21:34, Ruslanas Gžibovskis a écrit : > Paul Wise, what help is needed? I would like to commit, but not sure > how, never done that, but would LOVE TO! Could you guide? > > On Tue, 4 Dec 2018, 02:46 Paul Wise wrote: > > On Mon, Dec 3, 2018 at 7:

Re: Questions

Paul Wise, what help is needed? I would like to commit, but not sure how, never done that, but would LOVE TO! Could you guide? On Tue, 4 Dec 2018, 02:46 Paul Wise On Mon, Dec 3, 2018 at 7:10 PM Jérôme Bardot wrote: > > > Why debian is not more harden by default ? > > We need more people who are i

Re: Questions

Hi all, Jerome, I would say that most 'users' will go to pop choice, like only some hardcore lovers would listen to "Tsjuder" but most of the people would go with "Lady Gaga". Same here, if you do not want to learn, you use *buntu or any "*" made of, else if you wanna learn and use stable and upda

Re: Questions

Idézem/Quoting Jérôme Bardot : Agree about some hardening only are usefull in certain use case. But some of them should be set as default i guess because they are usefull for most of the case and case not include require skills and in this skill are include change an option in some not all the d

Re: Questions

Agree about some hardening only are usefull in certain use case. But some of them should be set as default i guess because they are usefull for most of the case and case not include require skills and in this skill are include change an option in some not all the day open conf file. Maybe i’m wrong

Re: Questions

On 2018-12-03 05:10, Jérôme Bardot wrote: Why debian is not more harden by default ? Debian's hardening is adequate for most users, who are typically behind some sort of protection such as a router/firewall. If you actually need a hardened system, it's far better for you to do the hardeni

Re: Questions

On Mon, Dec 3, 2018 at 7:10 PM Jérôme Bardot wrote: > Why debian is not more harden by default ? We need more people who are interested in working on this topic, some links for anyone who is interested in contributing: https://security-tracker.debian.org/tracker/data/report https://www.debian.or

Re: Questions

Thx, Why debian is not more harden by default ? I try to set up openvas but it’s look like there more to do than a apt, i will look deeper when i have the time. Le mer. 28 nov. 2018 à 22:26, qmi a écrit : > > Hi > > On Fri, Nov 16, 2018 at 04:31:39PM +0100, Jérôme Bardot wrote: > > Hello i try to

Re: Debian hardening (was: Questions)

This website is not GDPR compliant … The law not allow to collect any personnal data for a free download. Le jeu. 29 nov. 2018 à 10:04, Michiel Klaver a écrit : > > > qmi wrote at 2018-11-28 22:17: > > Hi > > > > On Fri, Nov 16, 2018 at 04:31:39PM +0100, Jérôme Bardot wrote: > >> Hello i try to ha

Re: Debian hardening (was: Questions)

qmi wrote at 2018-11-28 22:17: Hi On Fri, Nov 16, 2018 at 04:31:39PM +0100, Jérôme Bardot wrote: Hello i try to harden my debian server. You are welcome to do so. Some people already did, and wrote a free best-practice benchmark guide: https://www.cisecurity.org/benchmark/debian_linux/

Re: Questions

Hi On Fri, Nov 16, 2018 at 04:31:39PM +0100, Jérôme Bardot wrote: > Hello i try to harden my debian server. You are welcome to do so. > I want do understand all of this «warning». > If they are false positive maybe this part should be update because > it’s debian related ? On Debian by default t

Questions

Hello i try to harden my debian server. I use yasat for perform some «stupid» check. #yasat -f In the Check system rights Debian i have some WARNING, BAD status. First : 331 files have invalid others rights in /boot [ WARNING ] Do a chmod o-rxw name_of_the_file Right of /boot:

Re: Screensaver in KDE 4.2 (was: Random questions about KDE4.2)

On Wed, Jun 10, 2009 at 10:33:58AM -0500, Boyd Stephen Smith Jr. wrote: > I've seen similar, but only for a small period of time. > I.e. I would move my mouse and see my normal desktop for just "a second" and > then the screensaver would blank the screen and begin drawing. That wasn't > enough

Screensaver in KDE 4.2 (was: Random questions about KDE4.2)

In <200906101232.13509.zarl...@gmx.at>, Johannes Zarl wrote: >4) Screensaver/screen lock: >For some reason, the screen lock doesn't activate the screensaver. I.e. > when my screen is locked (either via Ctrl-Alt-L or via time-delay in the > screensaver itself), once I touch the mouse (and wait for t

Re: Security Debian Questions

"Abdul bijur Vallarkodath" <[EMAIL PROTECTED]> writes: > Please do not mis interpret this, but I think you guys are posting on the > wrong mailing list. Please take you doubts to #debian or some debian help > mailing list. I think you are confusing debian-security with debian-security-announce.

Re: Security Debian Questions

Hi guys, Please do not mis interpret this, but I think you guys are posting on the wrong mailing list. Please take you doubts to #debian or some debian help mailing list. There are millions of people subscribed to the security mailing list hoping to hear about vulnerabilities if someone comes ac

Re: Security Debian Questions

In article <[EMAIL PROTECTED]> you wrote: > I read in there that it's preferred to set-up separate partitions for > mount points such as /tmp, /var/tmp, & /home. I would recommend to use tmpfs for /tmp and have a MP for /var. On a Firewall you dont need /home. /usr and / would be RO. If you need

Re: Security Debian Questions

On Mon, 2007-04-23 at 19:15 +1100, Russell Coker wrote: > On Sunday 22 April 2007 01:58, Jim Popovitch <[EMAIL PROTECTED]> wrote: > > On Fri, 2007-04-20 at 20:30 -0500, George P Boutwell wrote: > > > I don't remember the exact details, but the problem I think revolved > > > around not being able to

Re: Security Debian Questions

On Sunday 22 April 2007 01:58, Jim Popovitch <[EMAIL PROTECTED]> wrote: > On Fri, 2007-04-20 at 20:30 -0500, George P Boutwell wrote: > > I don't remember the exact details, but the problem I think revolved > > around not being able to properly boot-up since the /tmp and/or the > > /var/tmp where n

RE: Security Debian Questions

Hi, some time ago while I was trying to do something similar (I wanted to have /var/log in a different partition) I accidentally created the entries in /etc/fstab in the wrong order. I first tried to mount /var/log and then /var and as a result the system was complaining that it could not find /v

Re: Security Debian Questions

On Fri, 2007-04-20 at 20:30 -0500, George P Boutwell wrote: > I don't remember the exact details, but the problem I think revolved > around not being able to properly boot-up since the /tmp and/or the > /var/tmp where needed during the boot, but not being mounted yet. Actually in order for /tm

Re: Security Debian Questions

P Boutwell wrote: > Hey, > > I have a few questions about how to actually implement some things > laid out in the Securing Debian How-To... > > I read in there that it's preferred to set-up separate partitions for > mount points such as /tmp, /var/tmp, & /home.

Re: Security Debian Questions

Hi, On Apr 21, 2007, at 3:30 AM, George P Boutwell wrote: Hey, I have a few questions about how to actually implement some things laid out in the Securing Debian How-To... I read in there that it's preferred to set-up separate partitions for mount points such as /tmp, /var/tmp, &a

Security Debian Questions

Hey, I have a few questions about how to actually implement some things laid out in the Securing Debian How-To... I read in there that it's preferred to set-up separate partitions for mount points such as /tmp, /var/tmp, & /home. I tried to do this on the last debian install I d

Re: Crypto-Swap questions

On Tue, Jan 20, 2004 at 10:53:10PM -0800, Johannes Graumann wrote: > Is the encryptionloop significantly slower than > diskwrite/read speed? No, but it uses CPU, and disk I/O doesn't (when using dma: with IDE, use hdparm -v /dev/hda to check. With SCSI, well, you bought it so you wouldn't have

Re: Crypto-Swap questions

On Tue, Jan 20, 2004 at 10:53:10PM -0800, Johannes Graumann wrote: > Is the encryptionloop significantly slower than > diskwrite/read speed? No, but it uses CPU, and disk I/O doesn't (when using dma: with IDE, use hdparm -v /dev/hda to check. With SCSI, well, you bought it so you wouldn't have

Crypto-Swap questions

Hello, Following loosely this document: http://www.sdc.org/~leila/usb-dongle/readme.html I have set up (or tried) to encrypt my swap partition (/dev/hda2). Here is what I did: * create /usr/local/sbin/crypto-swap (modified!) #!/bin/sh # Run this script somewhere in your startup scripts _after_ # r

Crypto-Swap questions

Hello, Following loosely this document: http://www.sdc.org/~leila/usb-dongle/readme.html I have set up (or tried) to encrypt my swap partition (/dev/hda2). Here is what I did: * create /usr/local/sbin/crypto-swap (modified!) #!/bin/sh # Run this script somewhere in your startup scripts _after_ # r

Re: some questions about suckit

On Thu, Dec 04, 2003 at 07:41:37AM +0100, mi wrote: Was it suckit which made the kernel oops ? Does suckit cause oopses on 2.4.21, 2.4.22 immediateley when running ? Not necessarily. Mike Stone

Re: some questions about suckit

On Thu, Dec 04, 2003 at 07:41:37AM +0100, mi wrote: Was it suckit which made the kernel oops ? Does suckit cause oopses on 2.4.21, 2.4.22 immediateley when running ? Not necessarily. Mike Stone -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL

some questions about suckit

hi, i only read the story on wiggynet. So i'm probably not 'up to date'. I just hope a little grain in my questions maybe helpful. I'll join the list for some days now. Was it suckit which made the kernel oops ? Does suckit cause oopses on 2.4.21, 2.4.22 immediateley when

some questions about suckit

hi, i only read the story on wiggynet. So i'm probably not 'up to date'. I just hope a little grain in my questions maybe helpful. I'll join the list for some days now. Was it suckit which made the kernel oops ? Does suckit cause oopses on 2.4.21, 2.4.22 immediateley when runn

Re: chkrootkit output questions

Quoting Hanasaki JiJi ([EMAIL PROTECTED]): > 1. what is a rootkit? A set of software installed by an intruder to conceal his presence. It typically consists of replacements for system utilities (ps, netstat, etc.) that could otherwise reveal his activities, altered ("trojaned") to prevent that d

chkrootkit output questions

1. what is a rootkit? 2. anything "normal" that might result in a wted warning that something was deleted? output is: Checking `wted'... 1 deletion(s) between Sat Apr 5 10:33:11 2003 and Sat Apr 5 10:53:43 2003 3. Checking bindshell reports "warning got bogus unix line. not infected" what doe

chkrootkit output questions

1. what is a rootkit? 2. anything "normal" that might result in a wted warning that something was deleted? output is: Checking `wted'... 1 deletion(s) between Sat Apr 5 10:33:11 2003 and Sat Apr 5 10:53:43 2003 3. Checking bindshell reports "warning got bogus unix line. not infected" what

selinux newbie questions

Hi, I finally decided to invest some time into SELinux, having run it in permissive/useless mode for months now. While trying to come up with the right policy changes to make my system still work I stumbled upon a few things. How to handle daemons that drop root? Is it ok to allow their domain se

selinux newbie questions

Hi, I finally decided to invest some time into SELinux, having run it in permissive/useless mode for months now. While trying to come up with the right policy changes to make my system still work I stumbled upon a few things. How to handle daemons that drop root? Is it ok to allow their domain se

Re: questions about chrooting bind 8.3.3

On Wed, Oct 30, 2002 at 11:43:28PM +0100, J.J. van Gorkum wrote: > > Maybe I'm too much an old school admin but 'they' allways told me to > move all the libraries into the chroot environment (no symlinks > watsoever) and even (if possible) move the whole chroot environment > onto an special (read

Re: questions about chrooting bind 8.3.3

On Wed, Oct 30, 2002 at 11:43:28PM +0100, J.J. van Gorkum wrote: > > Maybe I'm too much an old school admin but 'they' allways told me to > move all the libraries into the chroot environment (no symlinks > watsoever) and even (if possible) move the whole chroot environment > onto an special (read

Re: questions about chrooting bind 8.3.3

On Wed, 2002-10-30 at 22:15, Sean McAvoy wrote: > Yes it is true that it's making use of the systems libs, but they can't > be touched by the process as it has been chrooted. In order for someone > to overwrite those files, they would first have to break of the chroot. > I'm not sure of the real s

Re: questions about chrooting bind 8.3.3

Yes it is true that it's making use of the systems libs, but they can't be touched by the process as it has been chrooted. In order for someone to overwrite those files, they would first have to break of the chroot. I'm not sure of the real security implications of using the system libs are vs. us

Re: questions about chrooting bind 8.3.3

On Wed, 2002-10-30 at 18:40, Sean McAvoy wrote: > Hello, > Bind has the built in ability to chroot itself (-t). then all that needs > to be done is altering the bind init script(/etc/init.d/bind), which > contains the OPTS variable. Add '-u [username] -t [chroot_dir]' into > that variable and you s

Re: questions about chrooting bind 8.3.3

On Wed, 2002-10-30 at 22:15, Sean McAvoy wrote: > Yes it is true that it's making use of the systems libs, but they can't > be touched by the process as it has been chrooted. In order for someone > to overwrite those files, they would first have to break of the chroot. > I'm not sure of the real s

Re: questions about chrooting bind 8.3.3

Yes it is true that it's making use of the systems libs, but they can't be touched by the process as it has been chrooted. In order for someone to overwrite those files, they would first have to break of the chroot. I'm not sure of the real security implications of using the system libs are vs. us

Re: questions about chrooting bind 8.3.3

On Wed, 2002-10-30 at 18:40, Sean McAvoy wrote: > Hello, > Bind has the built in ability to chroot itself (-t). then all that needs > to be done is altering the bind init script(/etc/init.d/bind), which > contains the OPTS variable. Add '-u [username] -t [chroot_dir]' into > that variable and you s

Re: questions about chrooting bind 8.3.3

Hello, Bind has the built in ability to chroot itself (-t). then all that needs to be done is altering the bind init script(/etc/init.d/bind), which contains the OPTS variable. Add '-u [username] -t [chroot_dir]' into that variable and you should be ok. I've done this with Bind 8, and now upgraded

Re: questions about chrooting bind 8.3.3

Hello, Bind has the built in ability to chroot itself (-t). then all that needs to be done is altering the bind init script(/etc/init.d/bind), which contains the OPTS variable. Add '-u [username] -t [chroot_dir]' into that variable and you should be ok. I've done this with Bind 8, and now upgraded

Re: questions about chrooting bind 8.3.3

Hi1 Please try not to wrap long lines in command output. On Tuesday, 2002-10-29 at 23:35:42 +0100, J.J. van Gorkum wrote: > Hi, I have a question about chrooting bind 8.3.3 > I have used the setup as described in > http://people.debian.org/~pzn/howto/chroot-bind.sh.txt ... but when I > then sta

Re: questions about chrooting bind 8.3.3

Hi1 Please try not to wrap long lines in command output. On Tuesday, 2002-10-29 at 23:35:42 +0100, J.J. van Gorkum wrote: > Hi, I have a question about chrooting bind 8.3.3 > I have used the setup as described in > http://people.debian.org/~pzn/howto/chroot-bind.sh.txt ... but when I > then sta

questions about chrooting bind 8.3.3

Hi, I have a question about chrooting bind 8.3.3 I have used the setup as described in http://people.debian.org/~pzn/howto/chroot-bind.sh.txt ... but when I then start bind evrything looks right but when I do a lsof -p I see: command to start bind: start-stop-daemon --start --quiet --exec /usr

questions about chrooting bind 8.3.3

Hi, I have a question about chrooting bind 8.3.3 I have used the setup as described in http://people.debian.org/~pzn/howto/chroot-bind.sh.txt ... but when I then start bind evrything looks right but when I do a lsof -p I see: command to start bind: start-stop-daemon --start --quiet --exec /usr

Two kernel security questions

Hello List, I have been asked to respond to the following two potential security problems for my Debian (woody) servers and I am looking for solid reference material. I am running a custom 2.4.18 kernel. For this seqport problem I have not been able to find any data as to my systems vunerabi

Re: Some more port closing questions

On Fri, Aug 02, 2002 at 07:12:54AM +0900, [EMAIL PROTECTED] wrote: > From: Paul Hampson <[EMAIL PROTECTED]> > Subject: Re: Some more port closing questions > Date: Thu, 1 Aug 2002 20:17:10 +1000 > > On Thu, Aug 01, 2002 at 07:09:28AM +0900, [EMAIL PROTECTED] wrote: > >

Re: Some more port closing questions

Hi, From: Paul Hampson <[EMAIL PROTECTED]> Subject: Re: Some more port closing questions Date: Thu, 1 Aug 2002 20:17:10 +1000 > On Thu, Aug 01, 2002 at 07:09:28AM +0900, [EMAIL PROTECTED] wrote: > > From: Phillip Hofmeister <[EMAIL PROTECTED]> > > Subject: Re: Some

Re: Some more port closing questions

Paul Hampson wrote: On Thu, Aug 01, 2002 at 11:58:59AM +0200, Thiemo Nagel wrote: Paul Hampson wrote: You mean like maybe assigning different questions different priorities, and letting the user choose the priority which a question needs to have before it is asked, with some default assumed

Re: Some more port closing questions

On Thu, Aug 01, 2002 at 11:58:59AM +0200, Thiemo Nagel wrote: > Paul Hampson wrote: > >You mean like maybe assigning different questions different priorities, > >and letting the user choose the priority which a question needs to have > >before it is asked, with some defa

Re: Some more port closing questions

Paul Hampson wrote: On Thu, Aug 01, 2002 at 07:09:28AM +0900, [EMAIL PROTECTED] wrote: From: Phillip Hofmeister <[EMAIL PROTECTED]> Subject: Re: Some more port closing questions Date: Wed, 31 Jul 2002 10:49:44 -0400 On Wed, 31 Jul 2002 at 09:25:40PM +0900, [EMAIL PROTECTED]

Re: Some more port closing questions

On Thu, Aug 01, 2002 at 07:09:28AM +0900, [EMAIL PROTECTED] wrote: > From: Phillip Hofmeister <[EMAIL PROTECTED]> > Subject: Re: Some more port closing questions > Date: Wed, 31 Jul 2002 10:49:44 -0400 > > On Wed, 31 Jul 2002 at 09:25:40PM +0900, [EMAIL PROTECTED] wrote: >

Re: Some more port closing questions

Hi, From: Raymond Wood <[EMAIL PROTECTED]> Subject: Re: Some more port closing questions Date: Wed, 31 Jul 2002 07:43:07 -0400 > On Wed, Jul 31, 2002 at 07:06:09PM +0900, [EMAIL PROTECTED] imagined: > > On a related note, I just ran dselect and noticed rcconf -- > > may

Re: Some more port closing questions

Hi, From: Javier Fernández-Sanguino Peña <[EMAIL PROTECTED]> Subject: Re: Some more port closing questions Date: Wed, 31 Jul 2002 15:00:51 +0200 > On Wed, Jul 31, 2002 at 09:25:40PM +0900, [EMAIL PROTECTED] wrote: > > > > I don't think that's what I want -

Re: Some more port closing questions

Hi, From: Phillip Hofmeister <[EMAIL PROTECTED]> Subject: Re: Some more port closing questions Date: Wed, 31 Jul 2002 10:49:44 -0400 > On Wed, 31 Jul 2002 at 09:25:40PM +0900, [EMAIL PROTECTED] wrote: > > Perhaps update-rc.d or rcconf (as I posted earlier) can be used to get

Re: Some more port closing questions

Hi, From: "Thomas J. Zeeman" <[EMAIL PROTECTED]> Subject: Re: Some more port closing questions Date: Wed, 31 Jul 2002 14:55:25 +0200 (CEST) > On Wed, 31 Jul 2002 [EMAIL PROTECTED] wrote: > > > Hi, > > > > From: Frank Copeland <[EMAIL PROTECTED]> >

Re: Some more port closing questions

ehavior than the current behavior. Boy...you should get together withthe folks on debian-devel that say the install asks TOO many questions for a beginner to Linux...it would make a good flame war -- Phil PGP/GPG Key: http://www.zionlth.org/~plhofmei/ wget -O - http://www.zionlth.org/~plh

Re: Some more port closing questions

On Wed, Jul 31, 2002 at 09:25:40PM +0900, [EMAIL PROTECTED] wrote: > > I don't think that's what I want -- I want the software installed, > just not started by default. (...) FYI: http://www.debian.org/doc/manuals/securing-debian-howto/ch3.en.html#s3.6 I wonder why I wrote it? :)

Re: Some more port closing questions

On Wed, 31 Jul 2002 [EMAIL PROTECTED] wrote: > Hi, > > From: Frank Copeland <[EMAIL PROTECTED]> > Subject: Re: Some more port closing questions > Date: Wed, 31 Jul 2002 10:33:37 + (UTC) > > > On 30 Jul 02 23:24:50 GMT, [EMAIL PROTECTED] <[EMAIL PROTECTED]>

Re: Some more port closing questions

On Wed, Jul 31, 2002 at 07:06:09PM +0900, [EMAIL PROTECTED] imagined: > On a related note, I just ran dselect and noticed rcconf -- > may be that's what I want (-; I'll have to check that out. rcconf is simple and works very well for me - FYI. Cheers, Raymond -- "You deserve to be able to coope

Re: Some more port closing questions

Hi, From: Frank Copeland <[EMAIL PROTECTED]> Subject: Re: Some more port closing questions Date: Wed, 31 Jul 2002 10:33:37 + (UTC) > On 30 Jul 02 23:24:50 GMT, [EMAIL PROTECTED] <[EMAIL PROTECTED]> wrote: > > > Ah, that would be nice too. I know that the first thing

Re: Some more port closing questions

On 30 Jul 02 23:24:50 GMT, [EMAIL PROTECTED] <[EMAIL PROTECTED]> wrote: > Ah, that would be nice too. I know that the first thing I usually do > when I boot my laptop is to stop a bunch of daemons that started > up at boot (-; # update-rc.d -f somedaemon remove AIUI the reasoning is that if you

Re: Some more port closing questions

Hi, From: Mathias Palm <[EMAIL PROTECTED]> Subject: Re: Some more port closing questions Date: Wed, 31 Jul 2002 11:23:55 +0200 > On Wed, Jul 31, 2002 at 08:24:50AM +0900, [EMAIL PROTECTED] wrote: > > Hi, > > > > From: Rick Moen <[EMAIL PROTECTED]> > &

Re: Some more port closing questions

On Wed, Jul 31, 2002 at 08:24:50AM +0900, [EMAIL PROTECTED] wrote: > Hi, > > From: Rick Moen <[EMAIL PROTECTED]> > Subject: Re: Some more port closing questions > Date: Tue, 30 Jul 2002 16:21:18 -0700 > > > Quoting [EMAIL PROTECTED] ([EMAIL PROTECTED]): > >

Re: Some more port closing questions

Hi, From: Rick Moen <[EMAIL PROTECTED]> Subject: Re: Some more port closing questions Date: Tue, 30 Jul 2002 16:21:18 -0700 > Quoting [EMAIL PROTECTED] ([EMAIL PROTECTED]): > > > Kind of off-topic here, but I've been wondering for a while [1] whether > > the portmap

Re: Some more port closing questions

Quoting [EMAIL PROTECTED] ([EMAIL PROTECTED]): > Kind of off-topic here, but I've been wondering for a while [1] whether > the portmap package would be made to not install by default. I'd been wondering the same thing. Beyond that, I've been hoping that, at some point in the future, Debian won't

Re: Some more port closing questions

Hi, From: Ruben Porras <[EMAIL PROTECTED]> Subject: Re: Some more port closing questions Date: 30 Jul 2002 20:50:42 +0200 > On Tue, 2002-07-30 at 19:09, Crawford Rainwater wrote: > > Thanks to all on the Portsentry issue I had > > a week ago. > > > > Along tho

Re: Some more port closing questions

113 is controlled from inetd.conf, add a # in front of the relevent line. afterwards do a killall -HUP inetd 111 is portmaper, its in /etc/init.d, you can stop the services with ./portmap stop then remove the sym link to the run level or chmod the script to 0400 and it wont run on boot in future

Re: Some more port closing questions

On Tue, 2002-07-30 at 19:09, Crawford Rainwater wrote: > Thanks to all on the Portsentry issue I had > a week ago. > > Along those same lines, I have two ports I cannot > figure out (even looking through the LDP) on how > to close or shut down their related services. > They are as follows: > > 11

Re: Some more port closing questions

On Tue, Jul 30, 2002 at 01:22:50PM -0400, Phillip Hofmeister wrote: > On Tue, 30 Jul 2002 at 11:09:49AM -0600, Crawford Rainwater wrote: > > Thanks to all on the Portsentry issue I had > > a week ago. > > > > Along those same lines, I have two ports I cannot > > figure out (even looking through th

Re: Some more port closing questions

On Tue, 30 Jul 2002 at 11:09:49AM -0600, Crawford Rainwater wrote: > Thanks to all on the Portsentry issue I had > a week ago. > > Along those same lines, I have two ports I cannot > figure out (even looking through the LDP) on how > to close or shut down their related services. > They are as foll

Some more port closing questions

Thanks to all on the Portsentry issue I had a week ago. Along those same lines, I have two ports I cannot figure out (even looking through the LDP) on how to close or shut down their related services. They are as follows: 111/tcp sunrpc 111/udp sunrpc 113/tcp auth 1024/tcp kdm 1024/udp unknown (I

Re: Questions on Sysloging with a DMZ

> logging console > > should get what you need on a cisco. Might have to set that serial port > to no password, which brings up an additional home if physical security > is a concern. > > --Rich What about the cisco that's 35 miles away? I'm thinking with what these cisco's do, and actually log,

Re: Questions on Sysloging with a DMZ

Mike Dresser wrote: > > I was thinking of using a digiboard on the syslog machine, and connecting > a serial link to each server. However, that doesn't help me on stuff like > cisco's and jetdirect boxes that can only output syslog over ethernet. logging console should get what you need on a

Re: Questions on Sysloging with a DMZ

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On Fri, Jun 14, 2002 at 10:13:09AM -0400, Mike Dresser wrote: > I've done some looking around on the web, and haven't really found an > answer to the following question. > > How do you securely handle syslogging when you have servers in the DMZ, > and

Questions on Sysloging with a DMZ

I've done some looking around on the web, and haven't really found an answer to the following question. How do you securely handle syslogging when you have servers in the DMZ, and then the servers that are inside on the internal network? Seems that the fundamental rule is never allow internal lan

Re: Webserver questions: using samba, avoiding cleartext passwords, co-existing with Windows

On Thu, 18 Apr 2002, Tom Dominico wrote: [snip] > 3) Do none of the above and use an SCP client to manually transfer > things back and forth when necessary. Yes, but not manually. Take a look at this: http://winscp.vse.cz/eng/ Cheers, Cristian -- To UNSUBSCRIBE, email to [EMAIL PROTECTED

Re: Webserver questions: using samba, avoiding cleartext passwords,co-existing with Windows

On Thu, 18 Apr 2002, Tom Dominico wrote: [snip] > 3) Do none of the above and use an SCP client to manually transfer > things back and forth when necessary. Yes, but not manually. Take a look at this: http://winscp.vse.cz/eng/ Cheers, Cristian -- To UNSUBSCRIBE, email to [EMAIL PROTECTE

Re: Webserver questions: using samba, avoiding cleartext passwords, co-existing with Windows

Hi, > I have a Debian webserver that currently runs SSH, HTTP, and SMTP > services. The SMTP service only accepts mail from the local interface. > I try to keep my box free of any excess services that might lead to > vulnerabilities, or that transmit authentication information via > cleartext.

Re: Webserver questions: using samba, avoiding cleartext passwords, co-existing with Windows

Hi, > I have a Debian webserver that currently runs SSH, HTTP, and SMTP > services. The SMTP service only accepts mail from the local interface. > I try to keep my box free of any excess services that might lead to > vulnerabilities, or that transmit authentication information via > cleartext.

Re: Webserver questions: using samba, avoiding cleartext passwords, co-existing with Windows

Look at winscp ( http://winscp.vse.cz if I recall correctly ). It's a scp client that can be easily used by end users. Best bet is to use winscp 2, as that has drag and drop with explorer. Mark Marcel Hicking wrote: There is a Explorer-like interface to PuTTY's scp command. Maybe an option

Re: Webserver questions: using samba, avoiding cleartext passwords, co-existing with Windows

There is a Explorer-like interface to PuTTY's scp command. Maybe an option. Don't have much experience with this, I personally use some mini-shell-scripts attached to the sendto-menue for uploading. http://www.i-tree.org/ixplorer.htm Cheers, Marcel --On Donnerstag, 18. April 2002 17:34 -0700 J

Re: Webserver questions: using samba, avoiding cleartext passwords, co-existing with Windows

> There is a Explorer-like interface to PuTTY's > scp command. Maybe an option. Don't have > much experience with this, I personally use some > mini-shell-scripts attached to the sendto-menue > for uploading. > > http://www.i-tree.org/ixplorer.htm > I tried that program before, but it has issues

Re: Webserver questions: using samba, avoiding cleartext passwords,co-existing with Windows

Look at winscp ( http://winscp.vse.cz if I recall correctly ). It's a scp client that can be easily used by end users. Best bet is to use winscp 2, as that has drag and drop with explorer. Mark Marcel Hicking wrote: > There is a Explorer-like interface to PuTTY's > scp command. Maybe an opt

Re: Webserver questions: using samba, avoiding cleartext passwords,co-existing with Windows

There is a Explorer-like interface to PuTTY's scp command. Maybe an option. Don't have much experience with this, I personally use some mini-shell-scripts attached to the sendto-menue for uploading. http://www.i-tree.org/ixplorer.htm Cheers, Marcel --On Donnerstag, 18. April 2002 17:34 -0700 J

Re: Webserver questions: using samba, avoiding cleartext passwords, co-existing with Windows

hiya download and install ssh into each windoze box that needs access to the debian box samba -> encrypted passwd is typically already on smbpasswd is needed to allow the windoze users to connect nfs -> use secure portmap, secure nfs, ftp -> secure ftp w/ scp telnet

Re: Webserver questions: using samba, avoiding cleartext passwords, co-existing with Windows

Samba and encrypted passwords. The encrpyted passwords should be default on later Windows boxes, but may require registry edits on older Windows OSes. Fast, easy, and secure. Windows Netbios & SMB traffic should probably already be firewalled in and out,(If not, seriously consider it), but you can

Re: Webserver questions: using samba, avoiding cleartext passwords, co-existing with Windows

On Thu, Apr 18, 2002, Tom Dominico wrote: > I have a Debian webserver that currently runs SSH, HTTP, and SMTP > services. The SMTP service only accepts mail from the local interface. > I try to keep my box free of any excess services that might lead to > vulnerabilities, or that transmit authentic

Webserver questions: using samba, avoiding cleartext passwords, co-existing with Windows

I have a Debian webserver that currently runs SSH, HTTP, and SMTP services. The SMTP service only accepts mail from the local interface. I try to keep my box free of any excess services that might lead to vulnerabilities, or that transmit authentication information via cleartext. I am running int

Re: Webserver questions: using samba, avoiding cleartext passwords, co-existing with Windows

hiya download and install ssh into each windoze box that needs access to the debian box samba -> encrypted passwd is typically already on smbpasswd is needed to allow the windoze users to connect nfs -> use secure portmap, secure nfs, ftp -> secure ftp w/ scp telnet

  1   2   3   >