-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Correction: GRE is protocol 47, not port 47. GRE does not run over any
particular port.
- -Original Message-
From: Brad Bemis [mailto:[EMAIL PROTECTED]]
Sent: Friday, November 16, 2001 2:09 PM
To: Meritt James; Johnson David
Cc: 'Jason
Nimda scan. Just make sure your box is patched.
Andrew Blevins
-Original Message-
From: Ryan Ratkiewicz [mailto:[EMAIL PROTECTED]]
Sent: Thursday, November 15, 2001 10:18 AM
To: [EMAIL PROTECTED]
Subject: IIS Hack Attempt
Can someone help me decipher this?
11:30:48 207.217.205.149
On Fri, 16 Nov 2001, leon wrote:
Hi,
I am about to set up a sys-log server on a production network and I was
wondering if anyone had any suggestions as to why one OS might be better
then another (for example why someone would choose Debian over Redhat or
Solaris over BSD) . I would like
Al,
Your question is answered in the VPN 3000 FAQ on CCO:
http://www.cisco.com/warp/public/471/vpn_3000_faq.shtml#Q3
PPTP Control Connection 6 (TCP) 1023 1723
PPTP Tunnel Encapsulation 47 (GRE) N/A N/A
ISAKMP/IPSEC Key Management 17 (UDP) 500 500
IPSEC Tunnel Encapsulation 50 (ESP) N/A N/A
what does this mean? It is weird that I cannot get information with
google.
Cheers
Liu
Actually, the Cisco Pix firewall is not 100% command line interface. It has
a very nice GUI interface that can be used as well.
-Matt
On Sunday 18 November 2001 12:26, Roger Bou Aoun wrote:
Well according to my experience, if you want quality and something easy
to use with a nice Graphical
So is Entrust and RSA I believe.
They have CryptoAPI compatability also.
Chris
-Original Message-
From: I. Brugman [mailto:[EMAIL PROTECTED]]
Sent: Sunday, November 18, 2001 5:37 PM
To: leon; 'eko yulianto'; [EMAIL PROTECTED]
Subject: Re: Single Sign On Software and One Time Password
im looking for a good windows NT/2K/maybe XP pro) packet sniffer to monitor
the comming and goings of a few programs that i dont trust. would someone be
able to tell me of a good one (better yet the best one (LOL if there is
one))
thanks
Ben
If you can tunnel VNC through SSH that would be pretty secure. I don't know
of any applications off hand that will do that though (although I remember
Terraterm having those capabilities).
-Matt
p.s. if you want REAL secure...install linux. :-)
On Monday 19 November 2001 14:17, Matt
pcAnywhere (10.0) supports encryption.
Or, you can look into SSH which supports port forwarding. SSH creates
the encrypted tunnel for any port(s) for any port you want. See ssh.com
for the commercial version on all platforms. Free versions are available
as well, but check stability of
| Am Mittwoch, 14. November 2001 19:24 schrieb David Ellis:
| What you could actually do is create a mirrored port on your
| switch and sniff all the traffic that way
|
| Does anybody know something about switches, which can do multiple
| port mirroring? What I want is one port, that gets all
Try PWDump 3 - Search under Google.
Need Admin access.
Cheers
-Original Message-
From: Brian Heathfield [mailto:[EMAIL PROTECTED]]
Sent: 19 November 2001 01:52
To: [EMAIL PROTECTED]
Subject: SAM Database viewing access
Hi,
Does anyone know where I can find a tool to view the SAM on
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Ok I'm going to have to put on my enterprise management
specialist hat here for a minute and make some comments. Most of the
bad rap SNMP has comes from engineers that don't understand it, what
is, how to configure it, what network and systems
Code Red. Code Blue. Nimda. Take your pick.
-Matt
On Thursday 15 November 2001 10:18, Ryan Ratkiewicz wrote:
Can someone help me decipher this?
11:30:48 207.217.205.149 GET /scripts/root.exe 404
11:30:48 207.217.205.149 GET /MSADC/root.exe 404
11:30:49 207.217.205.149 GET
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
There is a ton of information on this if you do a search on google.
Also there is quite a bit of information in the cissp prep guide
which you can find at Amazon or your local bookstore.
Cheers,
Leon
- -Original Message-
From: Thomas Ryan
Hello there, guys:
I have set up a linux box (RH 7.1) to use as a firewall between
2 tiny LANs and the internet, it looks like this:
(sorry for the poor art)
eth2 *
eth0
Matt,
Your question doesn't make sense...you say that you
cannot use pcAnywhere or VNC due to the security risks
(which you haven't defined), but you still want a
remote admin tool.
What _are_ the risks, as you see them? Are you trying
to admin these machines from within the
infrastructure,
I observed this type of probing when I lived on campus a year ago during
grad school at the University of Texas at Austin. This link
http://www3.utsystem.edu/itmc/IT100699.htm has meeting minutes detailing
Bill Bard (Top UT Network guy) saying periodic scanning s a good thing
(tm).
On the
Hi all,
I've installed snort on my DNS box,It worked well,but everyday I got alert
about udp port 0 traffic,such as this:
--
11/20-13:24:13.418042 [**] [1:525:1] MISC UDP port 0 traffic [**] {UDP}
202.110.86.185:0 - ip.of.my.box:0
--
I don't know what this meaning, snort -dvr snort.log udp port
Matt,
You are right to be cautious about remotely administering the machines
in your DMZ. Have you considered connecting to your internal network using
VPN? I'm not aware of any free VPN servers (exept that OpenBSD has P2P VPN
abilities) but that would be a good way to protect your
All of the firewalls on that site are great I'm sure but I can never stress
enough that you really should do it yourself and use different vendors for
each thing and always install and play with the settings to have them just
right for you. CONFIGURE BY HAND! I simply say this because a
Hi,
a combination I think is very nice is OpenSSH (there is a free NT Version
here: http://www.networksimplicity.com) in combination with VNC or any
other remote tool. For OpenSSH on NT uses NT accounts, you can set-up a
policy that will lock the account used after x false logins making it
I have been given the task of administering a web server contained within a
DMZ. I am OK with the admin side of things but would prefer for time reasons
to be able to remotely administer this machine. I have always used
PCAnywhere, VNC and the MMC. But I now cannot use these due to the security
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Where can I find information on the current HIPAA Security
Standards?
http://aspe.hhs.gov/admnsimp/Index.htm --- U.S. Health and
Human Svcs. Two
pages off this page that discuss security and privacy rules
(proposed and
Are you looking for a 5 Gigabit port firewall or do you need a 5 Gig
throughput ?
The firewall that I use gives me the following and is better in performance
and features than the Firewall I, Netscreen.I have used both these products
and found Netscreen to be good for small/medium business
On Tue, 20 Nov 2001 09:17:19 +1100, Matt LYNCH
[EMAIL PROTECTED] wrote:
ML I have been given the task of administering a web server
ML contained within a DMZ. I am OK with the admin side of
ML things but would prefer for time reasons to be able to
ML remotely administer this machine. I have
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Will they let your run VNC over SSH?
- -Original Message-
From: Matt LYNCH [mailto:[EMAIL PROTECTED]]
Sent: Monday, November 19, 2001 4:17 PM
To: [EMAIL PROTECTED]; [EMAIL PROTECTED]
Subject: Remote Admin of DMZ
I have been given the task
By where i mean any webpage where the features supported by different
firewalls are mentioned.As far as seen from the vendor's site and other
pages i think FW-1 supports the most max features.
Bye
DRajesh
- Original Message -
From: leon [EMAIL PROTECTED]
To: 'Dilli Rajesh Kumar' [EMAIL
I wouldn't quite agree with you that there isnt
really anything much one can do :)
Your ISP can provide several technical measures to
minimize the impact of DoS (fragmenting and slowing
down all traffic if distributed DoS, blocking (if
viable) IP's initiating DoS).
The victim should log all
29 matches
Mail list logo
