Hello, all
I have operated linux server at switch environment,
and just with tcpdump, I can see some other traffic whic is not related
with me without any other tool or trick.
it means that I can sniff traffic without special sniffing tool at the
switch , right? is it possible?
but it's
Hi!
Anybody encoutered the trojan under the 8.12.6 vresion of sendmail? How bout
the older version od this application (8.11.X). Is this also affected?
Check out the wireless security FAQ:
http://www.iss.net/wireless/WLAN_FAQ.php
That probably has all the info you want.
Tyler
-Original Message-
From: Teodorski, Chris [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, October 09, 2002 10:43 AM
To: Security-Basics (E-mail)
Subject: securing
May I ask a question or two? See below...
-Original Message-
From: Andre Guimaraes [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, October 08, 2002 11:26 AM
To: Trevor Cushen; [EMAIL PROTECTED]
Subject: RES: Is SSH worth it??
I dont like RSA without passwords caus if your machine
Agreed.
- Original Message -
From: JM [EMAIL PROTECTED]
To: [EMAIL PROTECTED]; [EMAIL PROTECTED];
[EMAIL PROTECTED]
Sent: Tuesday, October 08, 2002 4:25 PM
Subject: Re: Somebody saw this trojan ? (nicely)
Nick
Great email, if you are trying to put the guy off..
I agree with what
Question: How do I lock down my Access Point?
Answer:
Basics for secure wireless computing.
1. Disable SSID broadcasts.
2. Enable WEP encryption.
3. Use Mac filtering if possible.
4. Know your wireless footprint.
5. Limit IP's from AP DHCP.
Explanations:
1. By disabling SSID broadcasts, you
Check these for ideas
http://www.wardriving.com/
http://www.practicallynetworked.com/support/wireless_secure.htm
http://www.microsoft.com/windowsxp/expertzone/columns/bowman/december03.
asp
http://www.cisco.com/warp/public/784/packet/jul01/p74-cover.html
Good Afternoon,
Change the default Name, SSID, and WEP keys. Go to their web site and
do a full firmware upgrade; if possible. Turn off transmit SSID, and
possible set up a MAC address list of allowed users.
Problems: Even with all the above it is moderately easy to crack WEP,
and or
On 09/10/02 14:34 +0100, Trevor Cushen wrote:
snip
Some line length fixing and quoting order fixes, please?
Can I ask you for a url to more info on this expect language and it usage.
Again many thanks
IIRC, O'Reilly has a book on the topic. Also, man 1 expect might be
useful. Expect is a TCl
If this script is to be run automatically, from say cron, this is no different than
using keys. You will have to either hard code the password in the script, use a config
file containing the script, or pass it as an argument. In all three cases, the
password is obviously available on the
Thanks :)
Here is the official page: http://expect.nist.gov/
Here is the script I used, maybe it will be helpful. The first argument is
the target hosts list file.
#!/usr/local/bin/expect -f
# Andre - Coleta arquivos de cadastros em todas webs e copia para diretorio
de sincronizacao
proc
In article [EMAIL PROTECTED], Andre
Guimaraes (ag) writes:
ag I dont like RSA without passwords caus if your machine gets
ag compromised, the attacker would have root access to another
ag machines in your network.
Wouldn't the `Right' solution be to put a passphrase on the private
key and use
Security Pro's:
A group of my programmers want to have a DSL connection put in their
testing area so they can simulate end user experience across the Internet. I
have concerns with this and am curious if anyone else has found a good
solution to provision their business requirement
On Tue, Oct 08, 2002 at 03:25:54PM -0300, Andre Guimaraes wrote:
I dont like RSA without passwords caus if your machine gets compromised, the
attacker would have root access to another machines in your network.
When I needed automated scripting using ssh and scp I used this programming
You are seeing the point I was making (Thank you Harley). Yes SSH has
to be installed on each machine. Whats more it looks like Perl may need
to be used and installed, keys added for each machine (110 in total !!!)
About 30+ scripts re-written.
Andre sent stuff on Expect which would solve the
What does the community think of this news -
http://www.ntobjectives.com/pressrelease_lawsuit.html? Seems big
Foundstone is trying to keep others from releasing free tools to the
community. Maybe I'm misinterpreting, but didn't they used to talk about
the benefits of providing these
16 matches
Mail list logo