ration and let the administrator manually add to the default
services.
Regards, Dustin
---
Dustin Puryear <[EMAIL PROTECTED]>
Information Systems Consultant
http://members.telocity.com/~dpuryear
In the beginning the Universe was created.
This has been widely regarded as a bad move. - Douglas Adams
Are you using OpenSSH? If so, you can disable host lookups. I'm not so sure
about commercial SSH.
Anyway, I ran into this problem when servers in our DMZ were taking forever
to log into because they were trying to lookup addresses for our internal
hosts, which naturally wasn't working. We could h
Another decent one is "Windows NT/2000 Network Security" by E. Eugene Schultz. It has
some problems, but it's not a bad primer. You can read my review at:
http://www.windowsitlibrary.com/BookReviews/BookReview.cfm?BookReviewID=41
Regards, Dustin
> -Original Message-
> From: Andreas Ham
Well, PortSentry will alert you via syslog of it's action, so you can view
the operation as the software immediately reacting and then letting you take
appropriate steps for a long-term solution. You can turn this feature off if
desired, and in fact, I usually do.
One big issue is that it would b
re: command history
I didn't see the original post, so I'll just reply here. Pablo, there are a
few ways to do this. The first, and probably the best, is to enable
auditing. Just look this up in your system documentation. The second method,
and one that will work nicely where the system doesn't
An obvious choice for HTTP is SSL. I also believe that there are FTP servers
and clients that can use SSL. That would give you a two-in-one solution. For
email, if you are using Exchange you can easily setup S/MIME. Naturally,
this would require that your clients also use S/MIME. PGP should work
e
You didn't specify if you are hosting your own mail server for inbound mail,
or if your POP3 users are hitting this box or another one. If you are
hosting all of your mail here then you need to run something. If this is
your firewall then setup another box running a mail server and forward SMTP
tr
Jason, turn on auditing from the User Manager to see this information in
your Event Log.
Regards, Dustin
> -Original Message-
> From: George, Jason [mailto:[EMAIL PROTECTED]]
> Sent: Thursday, October 18, 2001 1:29 PM
> To: [EMAIL PROTECTED]
> Subject: SAM Auditing Tool
> Sensitivity: Pr
Well, Windows is no more vulnerable than your average UNIX system is out of
the box. This is especially true if you use a mass-market Linux distribution
like Red Hat. You should just apply all of the patches available from
Microsoft for whatever services you are running (you didn't mention which
o
from the access control list.
Unfortunately, I believe that the administrators can still use Take
Ownership, but then the original owner would know that something had
happened.
Regards, Dustin
--
Dustin Puryear <[EMAIL PROTECTED]>
http://members.telocity.com/~dpuryear
In the beginning the Universe
, and other sorts of viruses without
> having the patches installed. Obviously you should still patch your
> boxes
> (and MS clearly states this on their webite), but it could save a lot of
> companies headaches!
>
>
--
Dustin Puryear <[EMAIL PROTECTED]>
http://members.telocity
ting the original poster should use Timeserv or W32Time.
You could also configure NET TIME /SET to run via AT running under the
Service account.
Regards, Dustin
--
Dustin Puryear <[EMAIL PROTECTED]>
http://members.telocity.com/~dpuryear
In the beginning the Universe was created.
Th
On Fri, 2001-09-21 at 02:04, Devdas Bhagat wrote:
> On Wed, 19 Sep 2001, Dustin Puryear spewed into the ether:
> > I don't think that's true anymore. More and more people are jumping on
> > the Linux bandwagon the same way people jumped on the NT bandwagon. I
> > d
administrators is going to decrease over time.
Regards, Dustin
--
Dustin Puryear <[EMAIL PROTECTED]>
http://members.telocity.com/~dpuryear
In the beginning the Universe was created.
This has been widely regarded as a bad move. - Douglas Adams
services being deployed.
Regards, Dustin
--
Dustin Puryear <[EMAIL PROTECTED]>
http://members.telocity.com/~dpuryear
In the beginning the Universe was created.
This has been widely regarded as a bad move. - Douglas Adams
nd bounds over NT. It's actually
> feasible. The rebooting after patching security holes is a pain, but at
> least you can use windows update..
I see Windows 2000 as an improvement as well.
> cheers Dustin & company.
Cheers back at ya.
Regards, Dustin
--
Dustin Puryear <
t; (Mahatma Gandhi)
>
> ^..^ Support the wolves in Norway -- go to ^..^
> \/ http://home.no.net/ulvelist/protest_int.htm \/
>
> * Please only send me emails which concern me *
>
> -BEGIN PGP SIGNATURE-
> Version: GnuPG v1.0.6 (GNU/Linux)
a way to syn the time of all worstation with my server.
Assign the priviledge using User Manager. Better yet, setup NTP or
W32Time.
Regards, Dustin
--
Dustin Puryear <[EMAIL PROTECTED]>
http://members.telocity.com/~dpuryear
In the beginning the Universe was created.
This has been widely rega
e configured to warn you of certain priority types.
Finally, you can use perl to do it all on your own.
In fact, I was skimming _Perl for System Administrators_ from O'Reilly
(I may be a bit off on the title) and I think they used this very topic
as part of an exercise.
Regards, Dustin
-
19 matches
Mail list logo