hey all,
Not sure if this is the right place to post this question (I'm new here)
but I was wondering if anyone could tell me if it is safe to turn off
portmap on my Linux Red Hat box. As far as I know I am not using RPC for
anything and therefore not necessary. Am I incorrect?
Thanks
Bob,
As far as I know, everything in that CD is good to go. However, if it will
make you feel better (and I suggest this because there may be patches or
newer versions available) go right to the source websites for each of these
utilities. Just download them from the web. The docs are great on
I am looking for a tool that can generate particular ICMP querys under
win32.
In particular I am interested in the timestamp code [13] and the net
mask code [17].
Does anyone know of a tool that can generate these?
Thanks
M
When you run windows update.how does it deliver the patches, etc to you? Is there
any possibility (does anyone know for sure) if it uses TFTP?
Chris Teodorski
LAN Services
PPG Industries, Inc.
[EMAIL PROTECTED]
(412) 434-1658
"In regione caecorum
NAI has officially put the technology into "maintenance mode" which means no
more development will occur on the pieces McAfee didn't acquire. They did
attempt to sell the technology not taken by McAfee but were unsuccessful. I
believe this means that we can assume that the commercial venture tha
One of our marketers is using an application from MarketWave called
"HitList" to analyze our web logs, and I'm seeing something strange for
it - while it runs, for every log entry that it analyzes, the machine then
tries to make a connection to port 137 on that particular IP address. I
searche
Configure the Cisco or Netgear router to accept DHCP, unless you have static
... which I doubt.
Greg
-Original Message-
From: Gaysek, Marcus Roy (Marcus) [mailto:[EMAIL PROTECTED]]
Sent: Thursday, March 21, 2002 9:52 AM
To: '[EMAIL PROTECTED]';
[EMAIL PROTECTED]
Subject: RE: New Comcast
CERT® Incident Note IN-2002-03
Social Engineering Attacks via IRC and Instant Messaging
Systems Affected
Systems running Internet Relay Chat (IRC) or Instant Messaging (IM)
clients
Overview
The CERT/CC has received reports of social engineering
attacks on users of Internet
Hey everybody...
Thanks so much for all your responses to my Comcast problem.
Incidentally, they called me back yesterday to confirm my service
cancellation (wouldn't talk to me for nothin' when it was about
them causing problems, but as soon as they're about to lose a dime
they're all over
Hello,
I was a former @home high speed internet customer before the transistion to
Comcast high speed internet.
ONe strange thing i notice about the comcast DHCP ip setup they have a IP
lease set to 7 days after logging into the new network or after (booting
your PC)
SO i have maintained the
That web page has been plagerized from TechWebold story though.
http://content.techweb.com/wire/story/TWB19990903S0014
Regards,
Bomm
Hush provide the worlds most secure, easy to use online applications - which solution
is right for you?
HushMail Secure Email http://www.hushmail.com/
Hus
Take a look at www.cert.org and www.nsa.gov and follow their recommandations
-Oprindelig meddelelse-
Fra: ++WayanS [mailto:[EMAIL PROTECTED]]
Sendt: 21. marts 2002 02:33
Til: [EMAIL PROTECTED]
Emne: win 2k
all
please help me
i have win 2k server
tree days ago, some one hack my server
w
Rob,
I do dedicate a great deal of memory to the guest OS and still run into
problems with performance. I'm not doing anything crazy like streaming
video or running any kind of multimedia. But, I have just found dual boot
to work better than Host/Guest OS setup through VMWare of Virtual PC.
Wi
I'm running an exchange 2000 server and I think someone may be using the
exchange server to send mail using smtp. The system was originally setup by
a consultant. Can someone tell me first how to be sure and second how to
prevent this from happening. I looked at the smtp virtual settings under
In my understanding people with these skills come
from a UNIX background, having worked on projects
with VPN's, intrusion detection, administering and
implementations. Could anyone tell me that if I was
looking for a shit hot penetration tester what sort of
background would such a guy
Thus Spake Chris Santerre on Mar 20 :
> Not sure what you mean by proxy scanner? Do you mean something like
> squid.org? Are you looking to scan for URLs or viruses?
No. Squid is a proxy server. What I am looking for is a program, which
when given an IP range & a port range will scan those IPs
this question has come up quite a bit in the past. i would start by
searching the archives of this list.
beyond that, not sure what your set up is. make sure you have all
the latest security patches from microsoft. and invest in a firewall
if you don't have one already (even a cheap linksys
My admin is reluctant to set w2k workstation registry
settings to "no anonymous access" and instead set the
registry value to "no enumeration of shares and
accounts". They claim when the setting is out at the
more restrictive level (no anonymous access period),
workstation users are unable to vie
Yes, NAI announced some tiem ago that they would be discontinuing production
and development on PGP. However there is also no plans for anyone to
pickup the NAI versions of PGP. freePGP and GNUPG are out there though.
Larry
Linux Admin
Ivnet LLP
- Original Message -
From: "Evans, Dav
I thought that the NSA key was supposed to be the encryption system that the
NSA developed? Am I mistaken?
Tim Donahue
-Original Message-
From: leon [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, March 20, 2002 11:10 PM
To: [EMAIL PROTECTED]
Subject: yet another link
-BEGIN PGP SI
First of all you should reinstall your system from the ground to make sure
that no backdoors or other bad things are left on your server.
Next, deactivate all services and deinstall all software you don't need.
(perhaps this guide can help you a bit, while it is not up to date it can
still give yo
Okay, I know default admin shares are not a good thing
to have around. But assuming admin's need remote
access to workstations for legitimate reasons
A - What are the alternatives for giving them access
if they need to get to the machine remotely ?
B - If default admin shares are a necessity, wh
Hi All,
I use 6.5.8 under XP Pro with no issues however pgpnet doesn't work -
thankfully really as this is what seemed to break XP
when I installed the later versions.
Cheers,
Dean
Vicky Ames wrote:
>Well let me rephrase. NAI does not have a version of PGP on the market that
>is supposed to
on the iptables error, you may need to upgrade your iptables stuff, it's
available at netfilter.samba.org, also it might be that you have the ipchains
module loaded.
for the ipchains error, i think you need a source or dest addy for ports to
work, my ancient ipchains rules have a line like thi
I suggest Barricade Firewall. Looka at:
http://www.privador.com/products/firewall/index.phtml
Tarvo
On 20 Mar 2002, J-P wrote:
>
>
> I think the idea is in the subject !
>
> Price range 1000$-2000$ (can be used)
> Number of computer on the network 80
>
> I want to protect all my servers (&w
Hi,
Assume a typical Campus LAN (2 Layer3 switch ad a switch for floor) with a
lot of users with different security requirement (CIO, Manager, Staff, Human
Resource)
Do you think that is feasible manage internal security using VLAN and ACL
applied over Layer3 Switch?
best regards
Carmelo
At 08:58 AM 3/21/2002 -0800, you wrote:
>[EMAIL PROTECTED]
Check out www.pgp.com
Quote from www.pgp.com
Network Associates recently announced the closure of PGP
Security business unit and the integration of some of its product into
other business units. PGP encrypt
On Wed, 2002-03-20 at 22:58, [EMAIL PROTECTED] wrote:
> on linux 2.2.19, slackware 8, i used ipchains -P input DENY, which returned no errors
> but when i try ipchains -A input -p tcp http -j ALLOW or ipchains -A input -p tcp
>http -j ACCEPT I get an error message?
you really want :/sbin/ipchain
You can audit the access to the shared folders in administrative tools-->
event viewer, in "Security events"; there you can audit all referred to the
access to shared resources in your computer
Regards
Mauri
-Mensaje original-
De: Michael Gargan [mailto:[EMAIL PROTECTED]]
Enviado el:
I disagree on one small point: If you try out VPC5 you will see dramatic improvements;
even more enhanced if you are using a G4 processor (the VPC5 takes advantage of the
Altivec engine).
My .02,
Bill
-Original Message-
From: Bejon Parsinia [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, M
Hi,
The program addresses gives the following behaviour:
addresses `perl -e 'print "A" x 100'`
bash: /usr/bin/addresses: Argument list too long
..but
addresses `perl -e 'print "A" x 10'`
Segmentation fault
..i was wondering if there was anything further i coul
All,
I should have been more clear when I said PGP didn't "work" with XP. Several people
have clarified this when they say that it will work as long as you don't implement the
VPN adapter and install the PGP virtual NIC, etc.
That is correct that it will work, or more accurately *parts* of it
Hello All,
Can someone tell me a type of server that would be set up as a firewall.
Also is there a particular brand of software for this. Thanks
_
Join the worlds largest e-mail service with MSN Hotmail.
http://www.hotmail.com
I suppose that if you drop NAI PGP you'll be searching for a cheaper
option. I thing gnuPG can do the job. try some frontends.
Ivan
Evans, Dave wrote:
>Hey,
>
>Has anyone heard of plans to drop PGP from NAI product line? If so, are
>there any plans for someone to pick up where they left off?
>
On Wed, Mar 20, 2002 at 06:31:14PM -0500, Frederick Garbrecht wrote:
> I use Vault to store network configuration information and PINs for password
> management, but I keep the executables and databases on an IBM memory key
> (which stays in my pocket). If I need a pw, I just uncap the key and st
Did you check out the rest of the site? There are also news reports on
area 51, and human experimentation, and such. If you liked this site,
try the onion newspaper.
w w w . t h e o n i o n . c o m
That has some pretty interesting stories too.
--- leon <[EMAIL PROTECTED]> wrote:
> -BEGIN
Wath services support SSH , like telnet and ftp ??
and if it supports telnet , does I need a specific client program on the pc
that is going to connect or I just keep using the program I use normally ?
We are currently implementating a product called Active Net Steward
(www.securitydesigners.com or www.activenetsteward.com) it has some very
useful features such as, a 100% configurable firewall rulesets, features to
disable the use of modems in a system, and policies which can be applied to
t
On Thursday 21 March 2002 05:18, Binaya D. Joshi wrote:
> is it necessary for somoone to know your passwd to send mails ??? :)
Mostly not - SMTP is usualy open to anyone on the Internet (if it is an
open relay) or to selected "few" on the same network (if it is not an open
relay). That means, a
That's really old stuff, it surfaced almost 3 years ago. Look at
http://www.cnn.com/TECH/computing/9909/13/backdoor.idg/
The webs ite you linked to appears to be a haven for people who publish any sort of
rehashed and mixed-up news that are quite inexact and badly written.
> -Original Mess
If you click on the Advanced button when looking at NTFS permissions you can
go to the auditing tab and set different types of monitoring. You then have
to enable the event auditing by changing the settings using your security
policy editor (local security policy, domain security policy, or domai
NAI talked to a number of prospective buyers but they could not make a
deal so the GUI products are effectively dead. (The command line product
is still being sold as the "e-business server.")
It is really unfortunate. PGP 7.5 would have been a marvelous
improvement to the 7.x line, especially
Sonicwall IRE VPN Client perhaps? Look for IREike.exe in the Task Manager's
process list.
Joe
Adrian Horton
Sorry for the delay in response time. I was waiting on my boss and turns out
that he found a better method than what I had described, though I will still
include it for your information.
http://www.spack.org/index.cgi/OneWayEthernet
http://www.sikurezza.org/ml/10_01/msg00222.html
http://home.i
It's at least two years old, probably older:
http://content.techweb.com/wire/story/TWB19990903S0014
Peter
-Original Message-
From: leon [mailto:[EMAIL PROTECTED]]
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Anyone care to comment on this one?
It was passed on to me by a friend. M
Just enable auditing on the folders that you have shared.You will need
to enable 'object access' auditing in your security policy under the audit
policy. Then select the folders you want to audit and what specific
actions on those folders that you want to track. Just don't go too crazy
w
NAI has dropped the PGP line of products. According to a rep
from NAI, they are hoping that another company picks up the product and
integrates it into their app or OS. Apparently NAI was not making a lot of
$$ on the product and people weren't paying up on licensing.
Bill
-Original Mess
This article was originally posted by Duncan Campbell 04.09.1999
See below for a link. Big Hint: The part where "last years Crypto 98" is
mentioned... ya thats 1998.
http://www.heise.de/tp/english/inhalt/te/5263/1.html
For anyone worried about a Windows vulnerability I think the Windows Shell
v
>From the NAI/PGP website.
Network Associates recently announced the closure of PGP Security business
unit and the integration of some of its product into other business units.
PGP encryption is retained and continues to be the encryption engine within
McAfee E-Business Server product line. PGP's
I just ignored them and never installed their crap software. All you need
for your cable modem to work is the right network settings.
Did it open any listening ports? It would be interesting to try to telnet to
those..
-Original Message-
From: Nil Fiat [mailto:[EMAIL PROTECTED]]
Sent:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Smoothwall. www.smoothwall.org it's free. It's a striped down
linux kernel that you install from a bootable CD you download. So you
need a computer that will be used for just this - nothing else. The
good news is that the computer can be puny.
More on this...
These PGP Security products continue to be developed and sold by McAfee:
PGP E-Business Server is now McAfee E-Business Server
PGP E-Business Server Point-2-Point is now McAfee E-Business Server Partner
Edition
PGP E-Business Server for OS/390 is now McAfee E-Business Server for O
Always update your server with "windows update" from Microsoft.
Patch your IIS with latest patch.
You can gain all of patches from Microsoft's site. And last thing, always
check your IIS log periodically.
Rgds and CMIIW,
Dike
> -Original Message-
> From: ++WayanS [mailto:[EMAIL PROTECTED
On Wed, Mar 20, 2002 at 09:48:56AM -0800, Bejon Parsinia wrote:
> Here is what I would suggest. Definitely go with dual boot over a virtual
> OS installation. Why? I've used VMWare and I've used Virtual PC, neither
> of them allow any kind of real performance. Case in point, I have a P4 1.6
>
Talk about a loaded question.
First of all, make sure you have a firewall on your network with solid rules
blocking all ports and allowing only the ones you need to access your
network open. And then only to selected IP Addresses (via NAT). You may
even want to consider rolling out software fir
I am a Comcast cable user on the east coast. I use a netgear rt314 to
connect to their network and I have never needed to install Comcast's
software to get on the network. So my suggestion is if it really bothers
you don't use it, uninstall it and throw it away.
Thank You,
Marcus
-Orig
Does anyone have a handy reference with recommendations for how to setup
Security Zones in the Microsoft products (e.g., Outlook, Internet Explorer)?
Thanks!
Squid sounds right, also try: http://online.securityfocus.com/tools/1988
But,if you need to scan ports, try:
Firewalk: http://www.packetfactory.net/firewalk/
or Nmap: http://www.insecure.org/nmap/
Rob
-Original Message-
From: Chris Santerre [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, Ma
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
I don't know exactly what you're using it for (email, net traffic,
what have you) but I use PGP freeware edition on XP at home and it
works fine. It's what I just used to sign this email.
James
- -Original Message-
From: [C] Teodorski, Chris
59 matches
Mail list logo