Hi
Thanks for the reply. I have tried it on my firewall and it works fine with
just the udp port open. The literature that I have read says that it does
not use tcp. The odd thing is that the xntpd server runs fine on a machine
on the LAN with no ports open but won't run on the web server. There m
Steve:
The Morpheus homepage (www.MusicCity.com) has a snippet
addressing this rumor. Still nervous? Not nearly enough:
http://www.cert.org/advisories/CA-2002-04.html
Remember: your only paranoid if it turns out that everyone
is, in fact, *not* out to get you.
-Scott
>
>http:
How to corrupt your root.lrp file
I encountered a problem with leaf (running Dachstein on hard drive).
When I went to back-up root using lrcfg, the size of the file to be
backed up was much smaller than the one I had booted from. (about 1.1M
versus 1.6M). The reason for this is that my ram
On Friday 22 February 2002 18:09, guitarlynn wrote:
> I'm on Cox/RR with the same experience. I've been port
> scanned by around 5 different ip's in the last week. I'll
> probably go down to the local office Monday and see
> if I can assert a little more influence in person.
> Most of their securi
On Monday 25 February 2002 17:54, Craig Caughlin wrote:
> Hi folks!
> Yeehaw, after much struggling...I've got my DCD up and running.
Cool, congratulations!
> as I struggle to learn more, I'd like to change things...but can
> never really figure out which packages to back-up to save my changes.
http://dailynews.yahoo.com/h/zd/20020204/tc/_dangerous_hole_discovered_in_morpheus_1.html
Read the above link. I remembered reading about this begining of Feb. but
just did not quote it in my first msg.
Still makes me nervous!
On Mon, 25 Feb 2002 10:40:06 -0800
Matt Schalit <[EMAIL PROTECTED
Hi folks!
Yeehaw, after much struggling...I've got my DCD up and running. Now, as I
struggle to learn more, I'd like to change things...but can never really
figure out which packages to back-up to save my changes. Is there any way of
knowing when you change something which "package" (file) you cha
You are correct (rw --- leaf/FS SG === 192.168.1.254 --- 192.168.1.0/24)
Is the hosts.allow/hosts.deny just belt and braces at that point, i.e.
firewall SHOULD successfully block (and, for that matter, ssh still requires
a password )?
> -Original Message-
> From: Charles Steinkuehler [ma
> My "remote network" is actually a roadwarrior (i.e. on the "internet"
side).
> Sorry I wasn't clear.
OK, so you're creating a host <-> subnet connection, with the subnet being
your firewalled home network, and the host being a random road-warrior IP?
> As a result, I would have to open it up t
My "remote network" is actually a roadwarrior (i.e. on the "internet" side).
Sorry I wasn't clear.
As a result, I would have to open it up to ANY valid ip address. Perhaps
opening it up is ok as long as I keep my firewall rules intact (ports 22 and
80 are blocked on eth0 but ipsec0 bypasses thos
> I have set up leaf as a freeswan SG with an internet connection on one
side
> and 192.168.1.0/24 (w2k) on the other. I've used weblet to monitor the
> system and ssh to administer it, but both only from 192.168.1.0/24
>
> Currently with the vpn I can ping 192.168.1.254 (the internal ip of leaf)
I have set up leaf as a freeswan SG with an internet connection on one side
and 192.168.1.0/24 (w2k) on the other. I've used weblet to monitor the
system and ssh to administer it, but both only from 192.168.1.0/24
Currently with the vpn I can ping 192.168.1.254 (the internal ip of leaf)
but I ca
Alec Miller wrote:
>
> I don't quite understand it myself. I was downloading some MP3's and within
> an hour of using it I find that I had people downloading those same MP3's
> from me.
It automatically shares anything you download. It only shares it's one
directory c:\program files\morpheus\sh
Steve Jeppesen wrote:
>
> if you find a way to "safely" use it let me know.
It's safe and secure.
> Both of my daughters use it and I am a bit worried after reading
> what can happen, ie; ppl have the ability to connect to your hard
> drive and go from there.
What are you refering to? Pe
Hi Christopher, hi Mike
> Frank,
> Scott Best found a great site that ranks dynamic DNS providers.
> http://www.kvtek.com/
Please note that ez-ipupdate currently does not support the "No-IP" service
which is rated best on kvtek.com.
I checked the ez-ipupdate homepage and even the newest version
Christopher Holmes wrote:
>
> Anyone know if it's possible to set up a firewall (Dachstein) to safely use
> Morpheus? Do I need to open a port or something? I searched around on the
> web & suprisingly didn't find much.
>
> Chris
Dachstein, pfw, Echowall, and others all safely allow
Morpheus
Jeff Newmiller wrote:
>
> Routing is a good reason, but a
> web-accessible coffeemaker probably isn't.
Ahh yes, we did one of those in physics lab, in maybe '95 or so.
Prof. Lubin had rooms on three floors of the building and also
the high-bay for the satellites. It was cold in there...
At 2002-02-25 18:57 +0100, Sandro Minola wrote:
>Hi Frank, hi all
> > Instead, I edit the external web page
> > each time I restart my DSL connection to update it to the currently
> > assigned external IP, e.g. http://209.142.160.132:/whatever, so
> > there would be nothing for a local DNS se
Hi Pasi
Hmm, I know that at least three other people are using my CIPE package
without problems. But they're all using Dachstein.
I have to say that I'm not the big CIPE guy. Perhaps on of those three can
help you:
Christopher [crayon AT leechbox DOT net]
John Hamill [jh AT lan1 DOT com DOT au]
E
Hi Chris, hi all
I you want to block incoming connections above 1024 but don't want to block
them at all, use the -y flag of IPCHAINS.
example:
ipchains -I input -j DENY -p tcp -s 0/0 -d $EXTERNAL_IP 1024: -i
$EXTERNAL_IF -y -l
This will DENY every packet which tries to initiate a connection on
Hi Frank, hi all
> I'm not sure that David's suggestion of running an internal DNS server
> would help. That is, it looks like the complex.wox.org name helps in
> his case, but I have no such name to put in my external web page to use
> as a link to my home network. Instead, I edit the external
>(I deal with my ISP changing my IP address, and with the fact that
>they don't put it into DNS themselves, by running ez-ipupd.lrp and
>using it to connect with one of the dyndns services out there. It
>works great, and I *think* it'd work for frequently changed leases,
>but I haven't tested it.
> Does this "solve" the problem of the ISP who
> changes your lease every couple of hours ?
It doesn't address that problem. It's meant for routers that are
serving dhcp leases to internal clients, and to allow those clients to
address each other by name irrespective of the IP addresses
Hi Robert,
I was asking on the use of 'rdate' with 'xntpd'. Since I run xntpd on the
router, open ntp ports would suffice. I did open both TCP and UDP. Could you
also add TCP port and see if it is OK? Then close the unused ports later.
-Original Message-
--__--__--
Message: 8
Date: S
Please post questions to the LEAF-user mailing list (see my support page).
> I try to use this LRP but my ISP need my Identifier and Password. I
> don't know how to send Password to my ISP. In "Eiger-Dynamic.readme" is
> only how to set "dhclient hostname" and "identifier". Can You help me,
> ple
'Scuse my ignorance, but:
Does this "solve" the problem of the ISP who
changes your lease every couple of hours ?
If so, since this a fairly simple script which will run in
milliseconds, and most of it only if the lease has changed,
any harm in running it once per minute?
__
26 matches
Mail list logo
