Bassam ALHUSSEIN wrote:
>Hello ...
>I've got a question:
>Any body knows a free anonymizing service like the old safeweb.com ...it is
>no more free ...I know others like surfola.com etc.. but their addresses are
>blocked ...I loved the strategy of Triangleboy that wa s used in
>safeweb.com, so it
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
man nmap. Read. Learn. Spoof. :) Or, if you're in a hurry, nmap -D
.
- -Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, November 20, 2001 12:35 AM
To: [EMAIL PROTECTED]
Subject: Using Nmap to send Spoofed
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On November 24, 2001 12:35 pm, aman raheja wrote:
> It works but it takes too long for the connection to establish even when =
> I
> am doing ssh from hostA to hostA itself. I wonder why?
> Suggestions?
That generally means that something times out e
Not to sound mean, but please read the archives and faq first. ` lsof -i
`does suffice, and
netstat -a -p --inet
if you need more let me know
john
Raghu Chinthoju wrote:
> Hi Group,
>
> Can we find out what processes are listening on what TCP/IP ports on a UNIX
> host?
> I there a straight
http://anonymizer.com/
Functionality is nice for their free service but you will need to become a
member ($5 per month) if you want to access FTP and HTTPS.
Enjoy,
Joe
-Original Message-
From: Bassam ALHUSSEIN [mailto:[EMAIL PROTECTED]]
Sent: Sunday, November 25, 2001 8:56 AM
To: [EMA
I am running W2kserver and IIS 5.0 with Front Page 2000 extensions installed. I have
(or at least "had") anonymous access (READ only) set up for my FTP service until last
week when I discovered that my rather large hard drive was completely full. I did some
digging around and checked all of my
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
The VSHELL product from VanDyke Technologies http://www.vandyke.com is a
fantastic product. Although not free...it is well worth the money. They are
also the makers of SecureCRT and SecureFX.
On Monday 26 November 2001 07:18 am, Andrew Chong wrote:
On Sat, 24 Nov 2001, aman raheja wrote:
> hi all
> i have configured ipchains on my linux 7.1 box.
> the 3 rules (in order) do the following
> 1> accept src 0.0.0.0/0 port * dst hostA port 22
> 2> accept src hostA port 22 dst 0.0.0.0/0 port *
> 3> deny src 0.0.0.0/0 port * dst 0.0.0.0/0 port *
>
Yes. I installed Cygwin (http://www.cygwin.com).
I had problems authenticating at first... but then it was because I didn't read the
README files carefully :)
Start here:
http://web.mit.edu/pismere/ssh/ssh-port.html
Make sure you start the sshd service from the Control Panel -> Administrative
You can try a (locally)
"lsof |grep LISTEN" to get the listening ports.
Without the quotes
Then look in /etc/services and recognize the services you don't
recognize.
You can try nmap -v -sS -O [ip address] remotely!
-Fab
-Original Message-
From: Raghu Chinthoju [mailto:[EMAIL PROT
Hi.
If you know the port and want to know what process is listening to that port, you can
use this:
fuser -v port#/tcp - for a tcp port
fuser -v port#/udp - for an udp port
I hope it helped.
--
David Laganière
Securinet Administrateur
www: http://www.securinet.qc.ca/
email: [EMAIL PROTECTED]
Mailer: SecurityFocus
I would highly appreciat eit if someone could answer
this quesiton? is it possible in SSL for the receiver to
reorder SSL record blocks
that arrive out of order? if yes how? if not, why not?
Hi,
You may try "lsof" command on the console which ls-s the open files on the
system. Since the sockets are files, you should be able to see the open
ports/owning applications.
AFE
- Original Message -
From: "Raghu Chinthoju" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: 26 November
Have you looked at RSA's ACE server? http://www.rsa.com
Clay Dillard
Sr. Partner, Information Security
SecureSpeed Information Systems
-
www.securespeed.cc
-
On 26 Nov 2001, at 12:19, M. Wolffensperger wrote:
> I have a problem with rebuilding the sendmail.mc file to the
> sendmail.cf file I do the following [root@mail m.wolffensperger]# m4
> /etc/mail/sendmail.mc > /etc/sendmail.cf
> /etc/mail/sendmail.mc:11: m4: Cannot open
> /usr/lib/sendmail-cf/m4
Sounds like a job for lsof.
On Sat, 2001-11-24 at 10:35, Raghu Chinthoju wrote:
> Hi Group,
>
> Can we find out what processes are listening on what TCP/IP ports on a UNIX
> host?
> I there a straight forward command to find that out?
>
> Regards,
> Raghu.
>
>
> This message is confidential
Sounds like your're there.
I don't know the extent of Mandrakes "High" security level, but I would due
the following (at least):
1. Turn off telnet, rlogin and ftp. Instead use SSH, slogin and sftp.
2. Turn off all unnecessary services in /etc/services and /etc/inetd.conf.
If you have any q
Andrew Chong wrote:
>Hi,
>Anyone have successfully used and implemented SSH server for
>WindowsNT4/Win2K? I've installed one SSH server product by www.ssh.com but
>couldn't get it to work with Putty clients or scpy command.
>
>Any recommends or comments from anyone? Thanks in advance.
>
>Regards
Hi all,
I was just wondering if there is any tool that detects snort
running in a remote machine. Could it be possible? Does snort has
information leaks that could lead to its detection from an external
machine?. If such a tool exists, has anyone any info?
Thxs in advance.
M. Wolffensperger wrote:
>
>-BEGIN PGP SIGNED MESSAGE-
>Hash: SHA1
>
>Hello,
>
>I have a problem with rebuilding the sendmail.mc file to the
>sendmail.cf file I do the following [root@mail m.wolffensperger]# m4
>/etc/mail/sendmail.mc > /etc/sendmail.cf
>/etc/mail/sendmail.mc:11: m4: Cann
Raghu,
Try socklist in ur local machine. (man socklist)
cheers,
Savio Sena
Raghu Chinthoju wrote:
> Hi Group,
>
> Can we find out what processes are listening on what TCP/IP ports on a UNIX
> host?
> I there a straight forward command to find that out?
>
> Regards,
> Raghu.
>
> Th
* This one time, at band camp, Raghu Chinthoju said:
> Hi Group,
>
> Can we find out what processes are listening on what TCP/IP ports on a UNIX
> host?
> I there a straight forward command to find that out?
>
You could try any or all of the following
On the machine :
lsof | egrep
'netstat -a'
- Original Message -
From: "Raghu Chinthoju" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Monday, November 26, 2001 9:27 AM
Subject: Listening processes.
> Hi Group,
>
> Can we find out what processes are listening on what TCP/IP ports on a
UNIX
> host?
> I there a str
On Sun, 25 Nov 2001, Branko [iso-8859-2] Ivanoviæ wrote:
> Hello group,
>
> I would like to ask if anyone has some expirience working with or security
> auditing WebMail program, written in PHP, called SquirrelMail. As I can see
> in version 1.06 and 1.2.0rc2 it is using IMAP, which I consider as
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On November 25, 2001 06:20 am, Branko Ivanović wrote:
> I would like to ask if anyone has some expirience working with or security
> auditing WebMail program, written in PHP, called SquirrelMail. As I can see
> in version 1.06 and 1.2.0rc2 it is using
I have these in my iptables firewall... I dug them up on th enet
somewhere, too bad I can't remember where... (maybe rc.firewall or
something)
# Block XMAS packets
iptables -A INPUT -p tcp --tcp-flags ALL ALL -j DROP
iptables -A FORWARD -p tcp --tcp-flags ALL ALL -j DROP
# Block NULL p
netstat -an
should just about do it.
regards,
rk
-Original Message-
From: Raghu Chinthoju
To: [EMAIL PROTECTED]
Sent: 11/24/01 7:35 AM
Subject: Listning processes.
Hi Group,
Can we find out what processes are listening on what TCP/IP ports on a
UNIX
host?
I there a straight forward c
Hey
The only thing you need is a straight forward command?
Why not try some great tools? e.g. lsof.
It is a good solution to get the clues of open files and what unix processes
have them open.
at here ftp://vic.cc.purdue.edu/pub/tools/unix/lsof/
--
ÎÒÒª¸üºÃµÄÉú»î
Yiming Gong
Senior System Ad
My Experience:
Windows 98 SE2
MSDE (Office 2k Pro CD-ROM)
Despite telling MSDE to use TCP/IP, port scans indicated 1433/tcp was
closed.
As far as i could tell, msde only supported named pipes.
I have no idea the effect of the OS in question.. i didnt test MSDE on an
NT/2K box,
try using SSHD for WINNT from
http://caspian.dotconf.net/menu/Software/SSHD-NT/default.php
you can ssh into it; i've never tried to scp from a machine running this
version, but you can use it for checking on things - viewing logs, admin
tasks, etc.
BTW - it's free.
a reader on this can be found
Hello All,
I'd appreciate your comments on the exposure Unix-based systems face
relative to malicious code being passed via email, http, etc. I notice that
the major antivirus vendors do not offer server or desktop products for the
Unix-based OSes.
Thanks,
Rich Richenberg
Technical Security Mana
What do you mean by how secure is it?
is your requirement for the internet or the intranet.
My honest oppinion is that it is relatively insecure
given that clear text user id and passwords are
traveling thru your network connection
I have not attempted to use squirrel on ssl
but last i heard it wa
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi.
Andrew Chong wrote:
>Anyone have successfully used and implemented SSH server for
>WindowsNT4/Win2K? I've installed one SSH server product by www.ssh.com but
>couldn't get it to work with Putty clients or scpy command.
>
>Any recommends or comme
> Hi Group,
>
> Can we find out what processes are listening on what TCP/IP ports on a UNIX
> host?
> I there a straight forward command to find that out?
In Linux: netstat(8) and fuser(1)
For the other Unices out there, other people must help you :-)
(maybe some of those utils are present
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
> -Original Message-
> From: Craig Van Tassle [mailto:[EMAIL PROTECTED]]
> Sent: Saturday, November 24, 2001 9:33 PM
> To: [EMAIL PROTECTED]
> Subject: Re: Xmas and null scans
>
>
> Well i know what a port scan is and how it works.. i was
Hi all,
I've been asked to evaluate and recommend a Secure
POP3 Server solution for my company. It will be
required to operate on a W2K platform. It should see
several thousand messages a day both inbound and
outbound, but will only host 5 or so actual mailboxes.
Can anyone on the list provide an
As far as I remember, Mercur Mail Server
http://www.atrium-software.com/en/mercur/mercur.asp uses port 32000 as
the default port for http remote administration, does this run on your
box ?
Thierry
le mer 21-11-2001 à 11:37, Richard Feaver a écrit :
> Greets all,
>
> recently checking one of ou
::: Replying to leon <[EMAIL PROTECTED]>,
message dated Friday, November 23, 2001 14:53 hours :::
>-BEGIN PGP SIGNED MESSAGE-
>Hash: SHA1
>
>Why don't you get f-port or vision from foundstone.com and track down
>the process that is bound to the port?
>
Good choice, but why not kill two
Wow, that's great... Gibson's guide to building a weaker "SYN Cookies".
The neat thing about Gibson's method is that it makes for an easy replay
attack and bypassing of state-based filters. Very cool.
> -Original Message-
> From: Mathieu Patenaude [mailto:[EMAIL PROTECTED]]
> Sent: Thurs
I believe that my SonicWALL XPRS2 (all firewalls?) is
identifying attacks simply by the port being accessed.
I was trying to troubleshoot an irritating little
problem with Exchange Server and ended up doing some
port scans on my servers, then checking the alerts
being sent by the SonicWALL.
40 matches
Mail list logo
