Charles Steinkuehler wrote:
For those working on updating EigerStein, there are a couple of things I
recently remembered that should not be overlooked:
Migrate the POSIXness script (/bin/grep) to the multi-file version I created
for LRP 2.9.8 (easier to edit/maintain, and it runs faster)
Everyone,
Here is some interesting information. Let me know if you think I should
stop posting stats from our site.
Site Stats:
We received 29691 visitors since March 19, 2001 (from phpWS stats)
Top Referrers since April ? (from phpWS stats)
http://lrp.c0wz.com/ 398
Everyone,
I found a site that is performing Nessus and NMAP scans for free. Please
test your firewalls and share the results.
http://www.vulnerabilities.org/
--
Mike Noyes [EMAIL PROTECTED]
http://leaf.sourceforge.net/
___
Leaf-devel mailing list
On Thu, 26 Apr 2001, Scott C. Best wrote:
Forgive the off-topic moment of levity but...Oooo.
http://www.jp.playstation.com/linux/image/main.jpg
I can see it now...a Missle Command like interface to
zap incoming packets of questionable origin...
Woot! I wanna copy of
I did earlier with an Eigerstein2BETA, but I will dig out the email and
share it again.
-Original Message-
From: Mike Noyes [mailto:[EMAIL PROTECTED]]
Sent: Thursday, April 26, 2001 2:50 PM
To: [EMAIL PROTECTED]
Subject: [Leaf-devel] Vulnerabilities dot org
Everyone,
I found
Steven Peck, 2001-04-26 17:27 -0700
I did earlier with an Eigerstein2BETA, but I will dig out the email and
share it again.
Steven,
Did you use Nessus or NMAP? Nessus recently won Netowrk Computing's
Vulnerability Assessment Scanners review.
http://www.nwc.com/1201/1201f1b1.html
They are
nessus.
It warns you that it will seriously hose you for the duration of the scan.
30-45 minutes. It starts at port 1 and goes up from there. In a nutshell,
the only things it found were my open ports.
20-21, 80 gave some warnings, 25 with some warning (not applicable to my
mail server), 22
So, I ran the Nessus scan on an Eigerstein 2.2.16
running echowall. The report, as with Steven's experience,
isn't very interesting: nothing found since I left nothing
active (I commented out the WANTED_SERVICES line before
restarting the firewall and testing). Report attached at
the end
OOPS!
I forgot about the side effect.
It filled up my RAM disk and crashed my internal dhcpd. It also killed
weblet, I could still log on locally and any statically mapped system
worked, though slow. Those assigned with dhcp lost connectivity.
Still, it says a lot for the security of the LRP