Hi,
Just wondering on thoughts about download managers- do they pose are
security risk? Any known to be trojaned? The one I use is GetRight, does
anyone know if this one has known security issues?
Any thoughts appreciated, thanks.
Leon
you will need slightly different versions depending on the systems
aimed at.
Regards,
Leon
-Original Message-
From: Simon Taplin [mailto:[EMAIL PROTECTED]]
Sent: Sunday, 5 January 2003 7:29 AM
To: Security-Basics
Subject: CIS Security template
Has anybody run into any problems using
an safely be
created. Doing this worked a treat. :)
-Original Message-
From: flur [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, 10 December 2002 10:33 AM
To: [EMAIL PROTECTED]
Cc: Leon Pholi
Subject: Re: XP admin shares
Try reading Microsoft Knowledge Base Article #314984 entitled "HO
7;ll be re-enabled at
reboot, and the Win2k key of
HKLM\SYSTEM\CurrentControlSet\Services\LanManServer\Parameters\AutoShareWks
doesn't seem to exist. Any ideas?
Thanks,
Leon
Would it also come down to trespass?
Just a thought...
nard
http://www.nardware.co.uk
-Original Message-
From: Robert J. Young [mailto:rjyoung@;frankie.ca]
Sent: 18 October 2002 17:26
To: [EMAIL PROTECTED]
Subject: Re: WIRELESS THEFT
It's a theft of service. The wireless part is not r
rsion 2
of my adventures, probably still at the diving in the deep end stage
but then there's at least a chance I could swim!!
Thanks again for all your comments & helpful URLs (that I'm still
investigating), will let you know how I go...
Leon
- -BEGIN PGP SIGNED MESSAGE---
do a google search, are there any
resources (a simple step by step howto would be good) you would
recommend for the suggested approach?
All help greatly appreciated. Thanks in advance.
Leon
-BEGIN PGP SIGNATURE-
Version: PGP 7.0.4
iQA/AwUBPaoQ+23X5duwk+XvEQKyUQCfcI+YuA2CoEgTKPdMkacPHhc0
Hello.
A user group for people interested in network security is being
formed in the Reading (UK) Area.
The general idea and behind the group includes;
* Allowing like minded people bounce ideas off each other.
* Learn something new.
* Converse and discuss new developments.
* Pass on kn
Alok + world,
If you are looking at WebSense, all I can recommend is that you put
it through some stringent tests. I have used the MS Proxy version in my
company for three years or so and have had a few problems. Must of them were
with previous versions, however the nightmare began when a
I've the PDF version and works fine, I haven't used the Word version.
www.elcomsoft.com
Saludos,
Jose D. Crespo de Leon
MCSE, MCSA, CISSP
E-mail: [EMAIL PROTECTED]
Mobile: 787-607-8574
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]
Sent: Tuesda
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
What about using sourcefire? www.sourcefire.com from the maker(s) of
snort.
Cheers,
Leon
- -Original Message-
From: shawn merdinger [mailto:[EMAIL PROTECTED]]
Sent: Monday, June 03, 2002 4:08 PM
To: ABRAHAM AJI
Cc: [EMAIL PROTECTED
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
I would use LC4 the what's new section claims the algorithms are
improved and the cracking time is faster.
Just a thought.
Cheers,
leon
- -Original Message-
From: Michael Ungar [mailto:[EMAIL PROTECTED]]
Sent: Friday, June 14, 20
1.htm
Good luck,
Leon ward
aka nard
Please direct replies to: [EMAIL PROTECTED]
-Original Message-
From: Thomas Madhavan [mailto:[EMAIL PROTECTED]]
Sent: 29 May 2002 21:13
To: Leon Ward
Cc: [EMAIL PROTECTED]
Subject: Re: Snort or Ethereal for a relative newbie?
I thought Sno
It seams that you are thinking on slightly along the wrong lines here,
Snort and Ethereal capture packets and do not do not block anything.
Snort has the capability to inspect packets against a set of rules and
report accordingly (alert on suspicious traffic).
Ethereal captures packets for the pur
As much J Dyson will hate this (because his site is unfairly banned
IMHO) you can try Websense.com
They have quite a list.
HTH,
Leon
-Original Message-
From: Ivan Hernandez [mailto:[EMAIL PROTECTED]]
Sent: Friday, May 24, 2002 4:32 PM
To: [EMAIL PROTECTED]
Subject: banned sites lists
f you need help with the
syntax or writing acls please feel free to contact me off list.
Best regards and HTH,
Leon
-Original Message-
From: Kevin Brooks [mailto:[EMAIL PROTECTED]]
Sent: Monday, May 20, 2002 12:21 PM
To: [EMAIL PROTECTED]
Subject: Cisco IOS question
On my cisco 3600 r
Small device, as in physically small or lightweight?
Cheep What's Cheep, do you mean free?
Anyway here are some links.
http://www.ipcop.org
http://www.smoothwall.org
http://www.gnatbox.com They do a light version that's PUFFware and a new
"RoBox" device.
http://www.gta.com/ Info about the GT
Look at fetchmail,
Nard
Leon Ward
Added Dimension
-Original Message-
From: John D from Best Price Cruises [mailto:[EMAIL PROTECTED]]
Sent: 17 May 2002 14:32
To: Security-Basics Mailing List
Subject: RE: Strange situation with outlook
Sorry, I forgot to say we use pop... Right now, I
|
|hub|
|-Server's
|-Client's
Therefore you can deny any access to clients and servers in your internal
network and still supply services to the internet.
Hope this helps.
Nard
Leon Wa
anyone have policies they wouldn't mind
sharing or a website where I can find policies already done?
TIA,
Leon
Couldn't checkpoint meta-ip do what the original poster asked?
Sorry to be late on the response but I get the list in digest form.
Cheers,
Leon
-Original Message-
From: Richard Westlake [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, May 14, 2002 3:22 PM
To: Chris
Cc: [EMAIL PROT
This can be done with cisco switches and port security. IN FACT you
don't even have to hard code the mac address you can actually tell the
switch to set the port for the mac addy of the first frame it recieves.
HTH,
Leon
-Original Message-
From: [EMAIL PROTECTED] [mailto:[
t for this kind of
comments
that would be appreciated also.
Cheers and thanks again,
Leon
native mode over
mixed mode? If so what are they?
I really appreciate the help and thanks again.
Cheers,
Leon
ftp://ftp.cerias.purdue.edu/pub/dict/wordlists/
Very useful wordlists, Includes lists of sci-fi characters, common
passwords, girls names, hitchhikers guide words etc.
Nard
[EMAIL PROTECTED]
-Original Message-
From: Craig Strait [mailto:[EMAIL PROTECTED]]
Sent: 08 May 2002 19:52
To:
1) This is a code red v2 infection attempt.
Unfortunately web server admins are having to class these as just normal
background traffic. Please people - MAKE SURE YOU ARE PATCHED!
Looking for holes left by CR v1
GET /
~/scripts/root.exe 404 123 -
2002-05-10 02:27:00 6
I would guess that there is a script kiddy now in control of the box. He is
probably using an automatic tool to search for a certain known vulnerability
in web servers by the 1000.
Due to the content of the web page being served by the host, my immediate
assumption (and remember kids, assumption
The Suspicious Activity Report and the guidelines:
http://www.ncua.gov/ref/sar/f9022-47-1(fill-in).pdf
http://www.ncua.gov/ref/sar/SARGuidelines.pdf
If you get anything off list you could share to me or the group I am
sure we would all appreciate.
Cheers,
Leon
-Origina
ch on google I can do that
myself (and actually have) There is quite a bit of information so I am
looking for websites or documentation that people have found helpful to
help me lower the "signal to noise ratio"
Thx,
Leon
one takes a look at hack proofing your internetwork
there are quite a few chapters on how to discover vulnerabilities.
Best regards,
Leon
- -Original Message-
From: Oliver Petruzel [mailto:[EMAIL PROTECTED]]
Sent: Friday, April 05, 2002 1:25 AM
To: 'kaipower'; [EMAIL PROTEC
I see this thread come up alot so I thought I might
share this article with the group. Hope you enjoy it
as much as I did.
Regards,
Leon
http://story.news.yahoo.com/news?tmpl=story&u=/cn/20020409/tc_cn/financial_firms_turn_on_secure_im&am
are running the machine
when it does this? What software is loaded on it?
Regards,
Leon
- -Original Message-
From: Adrian Horton [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, March 20, 2002 2:42 PM
To: [EMAIL PROTECTED]
Subject: Port Scan(?)
The [EMAIL PROTECTED] owner rejected this
post
questions.
Just a few suggestions,
Leon
- -Original Message-
From: Steven Boshuizen [mailto:[EMAIL PROTECTED]]
Sent: Friday, March 22, 2002 6:14 AM
To: [EMAIL PROTECTED]
Subject: Pen Testing Skills
In my understanding people with these skills come
from a UNIX background, having
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
I was quite interested in this thread myself so I wrote a quick post
to incidents. Here is one of the best responses I got back with
links included.
Hope the group is doing well,
Leon
"
Though the case is not cited, the 2 Mar 90 Defense
grab hfnetchk (sp?) you can scan
the server to make sure you have gotten all the hotfixes (not all are
listed on m$ windows update site. God bless 'em).
HTH,
Leon
- -Original Message-
From: ++WayanS [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, March 20, 2002 8:33 PM
To: [EMAIL PROT
e
off list and I will upload the iso to them.
Cheers,
Leon
- -Original Message-
From: Michael Gilmer [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, March 20, 2002 2:59 PM
To: 'Matt Bell'; '[EMAIL PROTECTED]'
Subject: RE: FW: Security Engineers Field Tool Kit
I dow
a bunch of key
words into a search engine.
Cheers & Thx,
Leon
- -Original Message-
From: Murtaza Nooruddin [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, March 20, 2002 1:38 AM
To: [EMAIL PROTECTED]
Subject: Win2k file share monitor
This might sound like a basic admin question. But i
g (sp?) machine.
HTH and best regards,
Leon
- -Original Message-
From: Dan Williamson [mailto:[EMAIL PROTECTED]]
Sent: Thursday, March 21, 2002 12:49 PM
To: '[EMAIL PROTECTED]'
Subject: Hardware Disposal Policies
I am looking for a simple guide to write a policy for the di
have been picked up by mainstream
info-sec media and then mainstream media.
Just thought I would throw that one out there.
No flames I don't buy it I just thought the group might find it
interesting.
As always best regards,
Leon
-BEGIN PGP SIGNATURE-
Version: PGPfreeware 6.5
eware or if you minded paying.
HTH,
Leon
- -Original Message-
From: Daniel Hay [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, March 13, 2002 9:48 AM
To: [EMAIL PROTECTED]
Subject: Vulnerability Scanning large networks
Hi,
I was hoping to get some advice on vulnerability scanning
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
If you are using LDAP you will be able to trace it. If you are
logging to syslog the entry will be in there.
Cheers,
Leon
- -Original Message-
From: NP, Ram (CORP, GEITC) [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, March 13, 2002 5:24 AM
ibuted to the
emergence of efficient management tools for network traffic, which
could conceivably be used to harshly limit the practice (news - Y!
TV). Companies such as Packeteer and NetReality have been marketing
such products to schools for months and claim hundreds of clients.&qu
attacker to jump through.
All the best,
Leon
- -Original Message-
From: Curious George [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, March 12, 2002 12:59 PM
To: [EMAIL PROTECTED]
Subject: Restricting cmd.exe access
This is a slight off shoot of the scary site post. What
are the potential
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Blackhats have an exploit for 2.6.1 upgrade to 2.6.2 as soon as
possible.
I posted to incidents and it seems a lot of people are getting
scanned for this and compromises are happening as you read this.
Cheers,
Leon
-BEGIN PGP
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Also don't forget about the dsniff suite from Dug Song. I don't have
the link handy but it can be found a google search for dsniff.
Best regards,
Leon
- -Original Message-
From: Matt Hemingway [mailto:[EMAIL PROTECTED]]
Sent:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Why not try doing this through group policy and assign the patches as
software at either the domain, OU or Site level?
HTH,
Leon
- -Original Message-
From: Kip Sr. [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, March 12, 2002 1:01 AM
To
/network_security_article-4551.ht
ml
Regards,
Leon
-BEGIN PGP SIGNATURE-
Version: PGPfreeware 6.5.8 for non-commercial use <http://www.pgp.com>
iQA/AwUBPI4lmdqAgf0xoaEuEQL2pQCffY5f4dArBsXzzBwqPVpQ3D5Fs8oAoL3m
XOh7wYu4O8KoTCmsuhhgosbz
=Ys0V
-END PGP SIGNATURE-
firewalls could use
some kind of generic proxy if this is a well known protocol.
HTH,
Leon
- -Original Message-
From: Maxime Rapaille [mailto:[EMAIL PROTECTED]]
Sent: Friday, March 08, 2002 3:03 AM
To: 'Security-Basics (E-mail)'
Subject: VPN and Cisco +IIOP question
Dear lis
virus when it is not harmful (just delete the
files from your IE cache if worried). And again I apologize for
upsetting anyone (if you only saw the hate mail). I am here to teach
and most importantly be taught.
Thanks again for the positive e-mail I received (you know who you
people are).
Regard
ing win xp, ie 6 and all patches. It
doesn't appear to work on win 9x with ie 5 or win 2k with ie 5. Your
mileage may vary.
Cheers,
Leon
- -Original Message-
From: Patrick McAllister [mailto:[EMAIL PROTECTED]]
Sent: Thursday, March 07, 2002 6:23 AM
To: leon; [EMAIL PROTECTED]
Su
filter, stateful inspection and proxy
servers.
Cheers,
Leon
-BEGIN PGP SIGNATURE-
Version: PGPfreeware 6.5.8 for non-commercial use <http://www.pgp.com>
iQA/AwUBPIUArNqAgf0xoaEuEQLn0wCgjtpLPuRxLbCscHrq32IjePeezf8AoI6t
T73+xCv/VhrCGDVDIVrFBqZl
=9gR6
-END PGP SIGNATURE-
Is the machine only going to be used as a f/w?
If it is have you thought about something like smoothwall?
http://www.smoothwall.org
It would be easier to keep secure and up-to-date with patches.
Just an idea,
Nard
-Original Message-
From: jnf [mailto:[EMAIL PROTECTED]]
Sent: 26 Februa
utral cert like sans,
cissp, or SSCP.
Cheers,
Leon
- -Original Message-
From: Dave Mee [mailto:[EMAIL PROTECTED]]
Sent: Friday, February 22, 2002 2:47 PM
To: [EMAIL PROTECTED]
Subject: Cisco security
Has anyone taken the exams for Cisco Security Specialist 1?? How
good are
they? Is i
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Put an IDS in front of it and behind it. A free one would be snort.
The IDS could log every single packet if you wish it to and you can
go through it looking for what ever you want using perl, grep or
something of that nature.
Cheers,
Leon
f the vlan you are on and fool the switch into
letting you "hop" into a different one?
Thx and hope everyone is enjoying the weekend.
Leon
-BEGIN PGP SIGNATURE-
Version: PGPfreeware 6.5.8 for non-commercial use <http:/
To subscribe to the digest, e-mail:
<[EMAIL PROTECTED]>
To unsubscribe from the digest, e-mail:
<[EMAIL PROTECTED]>
To post to the list, e-mail:
[EMAIL PROTECTED]
LOL hope everyone is having a great weekend,
Leon
- -Original Message-
From:
e did).
Let it through and you will be fine.
Cheers,
Leon
- -Original Message-
From: [mailto:[EMAIL PROTECTED]]
Sent: Saturday, February 16, 2002 8:33 AM
To: [EMAIL PROTECTED]
Subject: 255.255.255.255..Why Does Services and Controller App want
to go there.?
Hello All,
ZoneAlarmPro tel
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi everyone,
Does anyone know of a good script (that they have successfully used
not
just read about) that works with Redhat 7.2? I wanted to use the
bastille
script but it seems to work only up to 7.1
Thanks in advance,
Leon
-BEGIN PGP
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
To the original poster,
1) Get F-port www.foundstone.com
2) Identify process bound to the listening port
3) Terminate the process
4) Prevent it from starting up in the future.
Cheers,
Leon
- -Original Message-
From: Benedikt Wildenhain
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Argus is a company that produces security products. They are most
well known for their pitbull firewalls and hosting the openhack
challenge. I believe they do have a logging tool also.
Cheers,
Leon
PS: Russel is quite friendly if the original
e kind of packets (ie the source
port never changes, etc). So it would not be unusually hard for
someone skilled at writing signatures to come up with one if they
could get a packet dump and all the program's packets appear the
same.
Anyone disagree???
Cheers,
Leon
- -Original Message-
n afford that
or has the expertise to implement it.
HTH,
Leon
UIN: 8031369 for people who want to chat via icq
-BEGIN PGP SIGNATURE-
Version: PGPfreeware 6.5.8 for non-commercial use <http://www.pgp.com>
iQA/AwUBPGv7BdqAgf0xoaEuEQJYDQCgsXmEYdDsYAXlDgLHqi8R/Gq5/q8AoI9L
yV12z2cyd+KpLHpk2J1kDLHi
=EAaX
-END PGP SIGNATURE-
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi everyone,
Just curious if there were any known flaws with m$'s implementation
of ip-sec?
I know that some of their protocols have issues (pptp, ms-chap, and
the lan-man hash).
Does have anyone have any links discussing this?
Thx,
Leon
P
some good
counter points). I am not sure if AOL is playing with Trillian
anymore or if aol is still being monopolistic. Whoops I meant, um,
well lets be honest they are just as bad as M$ by not opening up the
protocol to other vendors :)
Cheers,
Leon
- -Original Message-
From: will
n find the page.
Cheers,
Leon
- -Original Message-
From: ermelir [mailto:[EMAIL PROTECTED]]
Sent: Monday, February 11, 2002 12:43 AM
To: [EMAIL PROTECTED]
Subject: free IDS on windows platform
Hi everybody,
I would know if you could give me a list of IDS in freeware licence
on
Windows2
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
There is a link off both www.cnet.com and www.dslreports.com
Both do a fairly thorough test.
HTH,
Leon
- -Original Message-
From: Todd Sparks [mailto:[EMAIL PROTECTED]]
Sent: Saturday, February 09, 2002 11:41 PM
To: Security-Basics
nly 2 people have taken a
crack at it so far and no one has answered the question.)
Either way,
Thx and cheers,
Leon
-BEGIN PGP SIGNATURE-
Version: PGPfreeware 6.5.8 for non-commercial use <http://www.pgp.com>
iQA/AwUBPGgsG9qAgf0xoaEuEQKtLACgwPFWPE+LOLgYTf2vr9pVJ
rotocol
as opposed to arbitrary things like source ip, destination IP or port
numbers?
Cheers and thanks in advance,
PS: Links are appreciated but flames are not :)
Leon
-BEGIN PGP SIGNATURE-
Version: PGPfreeware 6.5.8 for non-commercial use <http://www.
nderstand
from friends who work for Cisco the IOS will not see daylight till
the summer.)
If anyone on the list knows something I don't know please feel free
to correct me. I would love to use the IPsec client but right now I
am stuck with pptp :(
Cheers,
Leon
- -Original Message-
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
I believe you can contact ISC2 and if you provide a name they will
tell you within 24 hours if someone has achieved their CISSP or not.
I also know that you can contact Cisco systems to check on someone's
certification level. Sounds like a lot of wo
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
If you have a Cisco (or any other Router that is halfway decent) in
front why not set up an access list denying traffic with a
destination port of 22?
This would solve the problem quite easily.
HTH,
Leon
- -Original Message-
From: Geeking
ick people
off with aimfilter? (rhetorical ;)
D'oh! AOl's engineers or Oracle's engineers; who is doing worse in
the month of January? One is breakable the other is remotely
exploitable. Hehe
Cheers to the group,
Leon
-BEGIN PGP SIGNATURE-
Version: PGPfreeware 6.5.8 for
.
Cheers,
Leon
- -Original Message-
From: Dr Bado [mailto:[EMAIL PROTECTED]]
Sent: Thursday, January 17, 2002 10:58 AM
Cc: [EMAIL PROTECTED]
Subject: Ftp box - questionable
Can someone decipher this??
Jan 8 09:47:46 ftp ftpd[17283]: [ID 575915 daemon.notice] ftp of
ACB026FC.ipt.aol.com
is leaving and entering your network).
HTH,
Leon
- -Original Message-
From: Jason Jaszewski [mailto:[EMAIL PROTECTED]]
Sent: Friday, January 18, 2002 2:21 PM
To: [EMAIL PROTECTED]
Subject: Security of Private Networks
Hello all,
If I have a Private network (with IPs of the 1
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Try to avoid PPTP.
www.counterpane.com I believe Bruce has a nice write up of all the
vulns that go with it.
Incidentally this was discussed on this list at least twice in the
last 6 weeks.
HTH,
Leon
- -Original Message-
From: Mike
statistics, proto may be
any of:
IP, IPv6, ICMP, ICMPv6, TCP, TCPv6, UDP, or UDPv6.
It has nothing to do with ports. Please DO NOT GIVE ADVICE ON THE
LIST IF YOU ARE NOT SURE OF WHAT YOU ARE SAYING.
Cheers,
Leon
- -Original Message-
From: shawn merdinger [mailto:[EMAIL
lieve there was backdoor so that
the author of the program could bypass the password and connect it at
any time.
HTH,
Leon
- -Original Message-
From: Levi Pugh [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, January 15, 2002 4:12 PM
To: [EMAIL PROTECTED]
Subject: Remote PC Management via LAN/WAN
f you possibly could, an
attacker never would because you would be unable to route traffic to
it.
HTH,
Leon
- -Original Message-
From: Craig Van Tassle [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, January 15, 2002 2:35 PM
To: secuirty-basics
Subject: Re: loopback device
My loop back is suppos
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
This was a checklist that Sonicwall developed and I saw on SnP. I
thought it might be useful for the readers of the list and thus I
posted it.
Cheers,
Leon
10 Security Guidelines
I. Secure telecommuters and remote workers: Telecommuters and
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
So maybe it is time to ditch Windows 95? It was not meant to be run
by business anyway. Try win2k.
I still think my idea of using the security policy is best.
Regards,
Leon
- -Original Message-
From: Calhoun, Heath [mailto:[EMAIL
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
www.cccure.org has some material for the SSCP I believe.
HTH,
Leon
- -Original Message-
From: Joshua Carlson [mailto:[EMAIL PROTECTED]]
Sent: Thursday, January 10, 2002 12:54 PM
To: [EMAIL PROTECTED]
Subject: Study material for the Common
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Whisker and Nessus.
www.google.com
- -Original Message-
From: Alok Ahuja [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, January 08, 2002 1:39 AM
To: [EMAIL PROTECTED]
Subject: Hardening/Firewall/Network Audit
hi folks ,
i am new to the securit
at a time of course ;) and see
which one YOU like the best.
HTH,
Leon
- -Original Message-
From: Askew, Gary [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, January 09, 2002 2:22 PM
To: '[EMAIL PROTECTED]'
Subject: Mobile user Firewall Comparison
Hi All,
Does anyone know
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
I can confirm that both of these work just fine.
Leon
- -Original Message-
From: Mark L. Jackson [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, January 09, 2002 3:34 AM
To: Philip Wagenaar; [EMAIL PROTECTED]
Subject: RE: Portscanning from
corporate security policy?
Cheers,
Leon
- -Original Message-
From: Benoit Joseph [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, January 08, 2002 4:55 PM
To: Calhoun, Heath
Cc: [EMAIL PROTECTED]
Subject: Re: Blocking Kazaa
Can't you just block the port 1214? I think that if you block it on
patch?)
Hope everyone is having a nice weekend,
Leon
- -Original Message-
From: Octavio / Super [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, January 08, 2002 4:57 AM
To: Omar Koudsi; [EMAIL PROTECTED]
Subject: Re: Hardening VS firewalling ?
If I have to choose _only_ one, then I would go for s
n the list has a great weekend.
Cheers,
Leon
Icq 8031369 if anyone ever wants to reach me via chat.
-BEGIN PGP SIGNATURE-
Version: PGPfreeware 6.5.8 for non-commercial use <http://www.pgp.com>
iQA/AwUBPD8qDNqAgf0xoaEuEQKuvgCfQMtREsr87B3bTPzsi63TBw2kpK0AoJVj
GxATJRCuEogkJT
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Mac Pork and the more famous MacAnalysis. Sorry I cant provide links
But I bet google can ;)
Have a nice weekend,
Leon
- -Original Message-
From: M W [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, January 09, 2002 2:22 PM
To: [EMAIL
thank them.
Cheers,
Leon
- -Original Message-
From: Rob Weiss [mailto:[EMAIL PROTECTED]]
Leon (and others),
I tried to verify this in some of my MS books, but couldn't find the
answer.
What I believe that I remember is this: Encrypted files keep their
encryption when they are c
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
You check out www.counterpane.com for a list of weaknesses with PPTP.
Incidentally this was discussed on this list within the last 4
weeks. Sorry I cant remember the subject heading.
HTH,
Leon
- -Original Message-
From: Jerry Roy [mailto
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
What about snort and using something like acid?
Cheers,
Leon
- -Original Message-
From: Greg [mailto:[EMAIL PROTECTED]]
Sent: Monday, January 07, 2002 2:46 PM
To: [EMAIL PROTECTED]
Subject: Network based intrusion detection
I was
I know how to harden it).
Default "out-da-box" Apache takes the cake for more secure.
Hands down.
Cheers,
Leon
- -Original Message-
From: Hornat, Charles [mailto:[EMAIL PROTECTED]]
Sent: Monday, January 07, 2002 2:03 PM
To: 'Baba Bogdan'; [EMAIL PROTECTED]
Subje
J Dyson does,)
behavior. Considering that an im could give up total control of your
computer and it took them 4 months to add the equivalent of a
firewall acl I find this behavior nauseating.
Cheers,
Leon
- -Original Message-
From: dewt [mailto:[EMAIL PROTECTED]]
Sent: Monday, January
with telnet (excluding acls and
things of that nature).
Cheers,
Leon
- -Original Message-
From: Led Slinger [mailto:[EMAIL PROTECTED]]
Sent: Monday, January 07, 2002 11:23 AM
To: [EMAIL PROTECTED]
Subject: Securing Access to Cisco Routers
I have been tasked with finding a solution to
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Did you grab both tcp AND udp?
Leon
- -Original Message-
From: Justin Silles [mailto:[EMAIL PROTECTED]]
Sent: Monday, January 07, 2002 10:32 AM
To: '[EMAIL PROTECTED]'
Subject: Windows networking ports
Hello All.
Just trying t
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
I have gotten nmap to compile and work with visual C++
Cheers,
Leon
PS: foundstone makes a great command line port scanner but the name
escapes me right now. You could goto www.foundstone.com and find it
quite easily.
- -Original Message
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Have you tried sniffing the traffic? Could you post dumps to the
list?
Cheers,
Leon
- -Original Message-
From: Nicholas & Anthony McKenzie [mailto:[EMAIL PROTECTED]]
Sent: Monday, January 07, 2002 1:13 AM
To: [EMAIL PROTECTED]
Sub
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Heh it could be implemented at layer one by securing your wiring. On
some cisco switches (don't know about bridges) you can apply ACL's
Cheers,
Leon
- -Original Message-
From: ashley thomas [mailto:[EMAIL PROTECTED]]
Se
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Heh so much for Larry and unbreakable.
Leon
- -Original Message-
From: Chris Wysopal [mailto:[EMAIL PROTECTED]]
Sent: Thursday, January 10, 2002 9:23 AM
To: [EMAIL PROTECTED]
Subject: [VulnWatch] 8 NGSSoftware security advisories
me
to mail me off-list if you are curious (unless someone answers it on
list).
Thanks guys (and ladies of course).
Cheers,
Leon
-BEGIN PGP SIGNATURE-
Version: PGPfreeware 6.5.8 for non-commercial use <http://www.pgp.com>
iQA/AwUBPD0RqtqAgf0xoaEuEQJiZwCgw7TNQs9wVbIZdxAdSZGR8
1 - 100 of 181 matches
Mail list logo
