Re: ¡¡I NEED HELP!!

On Fri, Nov 30, 2001 at 02:36:03AM -0600, Devon Ryan wrote: R. Toma wrote: open. Now, are these the famous trojans? I have linux, aren't they programmed for a MS platform? How can I close these ports Something tells me that you're running tripwire...or you scanned the wrong ip :P

Re: Unix Environments and Malicious Code

On Mon, Nov 26, 2001 at 04:40:03PM -0800, Rich Richenberg wrote: Hello All, I'd appreciate your comments on the exposure Unix-based systems face relative to malicious code being passed via email, http, etc. I notice that the major antivirus vendors do not offer server or desktop products for

Re: sendmail.mc /etc/sendmail.cf

From: M. Wolffensperger [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Monday, November 26, 2001 3:19 PM Subject: sendmail.mc /etc/sendmail.cf I have a problem with rebuilding the sendmail.mc file to the sendmail.cf file I do the following [root@mail m.wolffensperger]# m4

RE: CERT paper and AOL VPN?

At 08:46 PM 11/08/2001 -0500, Mark Medici wrote: From what I've found so far, it seems that the AOL client program, when installed, also installs something called the AOL Network Adapter. I've seen this on some client machines, and always wondered what it was doing. Now I realize that it is

Re: CERT paper and AOL VPN?

- Original Message - From: Hudak, Tyler [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Monday, November 05, 2001 8:56 AM Subject: CERT paper and AOL VPN? I tried to verify this over the weekend with no success. To do this, I loaded ZoneAlarm on my test machine (running Windows 98)

Re: help - can someone explain this to me?

Thus, in the perfect/hypothetical world where everyone followed RFC1918's suggestions as well as it's requirements Of course, being pedantic I feel the need to correct my own mistake here. The 'requirement' of not using private IP space for public interfaces is actually that of IANA, who

Re: help - can someone explain this to me?

- Original Message - From: Cliff Riggs [EMAIL PROTECTED] To: [EMAIL PROTECTED]; scott [gts] [EMAIL PROTECTED]; security-basics [EMAIL PROTECTED] Sent: Friday, October 26, 2001 7:57 PM Subject: RE: help - can someone explain this to me? Those are spoofed addresses. They could be coming

Re: help - can someone explain this to me?

On Tue, Oct 30, 2001 at 08:29:21AM -0800, Andrew Blevins wrote: [ Quoting reorganized to stop this insane top-posting!] but that does not explain why he is gettings hits by non routable ip addresses..even if they were natted they would show the NAT external address ..not the internal address

Re: help - can someone explain this to me?

On Tue, Oct 30, 2001 at 06:42:44PM -0500, KaTT KaTT wrote: Simple high level explanation: 10.0.0.0/8 (255.255.255.0) is a class A addressing space 172.16.0.0/12 (255.240.0.0) is a class B addressing space 192.168.0.0/16 (255.255.255.0) is a class C addressing space All of the above are

Re: Snort question

From: Michael Kjorling [EMAIL PROTECTED] Sent: Thursday, September 27, 2001 4:06 AM -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 I belive not. The firewall code (the rules of which are managed through ipfwadm/ipchains/iptables depending on your kernel version) is executing directly in