> I was thinking of setting up a scanner (strobe/nmap/...?) to
> automatically do a scan from a cron and mail the results to me. However,
> is there any existing framework like this that I could leverage?
>
Nessus can be tweaked to be able to report on a daily basis, its
reports (includi
I am hoping someone here can help shed some light on some strange system
events that I saw between snort and logcheck on my firewall/router.
After seeing the following log, I opened my logcheck.sh file and saw the
garbage in the file that shows up in my log. I closed it and went to my
other box t
5 legs? The author of that one ought to take biology one more time..
> -Original Message-
> From: Adam Olsen [mailto:[EMAIL PROTECTED] Behalf Of
> Adam Olsen
> Sent: Sunday, June 03, 2001 1:37 AM
> To: debian-security@lists.debian.org
> Subject: Re: a FISH?!?!
>
>
> On Sun, Jun 03, 2001
'slocate' is what I needed.
Since this computer is turned off at night, cron will not run slocate updates.
so I put a line in root's crontab:
@reboot sleep 1200; /usr/bin/nice -n 19 /etc/cron.daily/slocate
That makes my slocate database always updated.
Thanks for everybody.
Pedro
On
Hi all,
Without no apparent reason, I started receiving thousands of packets to one
of the interfaces. The network card is an rtl8029, and I logged between 70 and
80.000 packacges per second. They all where too big to be ethernet packets,
and they were reported by the kernel as:
Jun 4 12:20:15 ne
Hi.
U're using kernel version 2.4.x, and iptables - so thereis no support for
command
ipchains -M -L, and netstat -M
ip_masquerade entries are in
/proc/net/ip_conntrack and I don't know how to list them by utility ( maybye
ipnatctrl )
Best regards
--
Aleksander Iwanski <[EMAIL PROTECTED]>
At 12:10 AM 6/5/2001 -0500, Eric LaMunyon wrote:
Does anyone have a basic iptables script for a webserver with direct
connection to the internet(1 nic), that blocks most dos, ping of death,
etc?
Anything would be helpful.
http://muse.linuxmafia.org/gshield.html
http://www.tlsecurity.net/uni
Does anyone have a basic iptables script for a webserver with direct
connection to the internet(1 nic), that blocks most dos, ping of death,
etc?
Anything would be helpful.
On Sun, Jun 03, 2001 at 11:39:29PM +0200, Luc MAIGNAN wrote:
> HI all,
>
> I have an internet connection on eth0 (10.0.0.1) and a private network
> connection on eth1 (192.168.0.1).
>
> I put the masquerade configuration on a kernel 2.4.4 :
>
> iptables -t nat -s 192.168.0.0/24 -o ppp0 -
Thanks for your help!
~Eric
--- Eric LaMunyon <[EMAIL PROTECTED]> wrote:
> Does anyone have a basic iptables script for a
> webserver with direct
> connection to the internet(1 nic), that blocks most
> dos, ping of death,
> etc?
>
> Anything would be helpful.
>
>
>
>
> --
> To UNSUBSCRIBE
hi ya eric
i've been collecting example scripts and docs...
http://www.Linux-Sec.net/firewall.gwif.html
- check the various iptable howto too
c ya
alvin
On Tue, 5 Jun 2001, Tim Uckun wrote:
> At 12:10 AM 6/5/2001 -0500, Eric LaMunyon wrote:
> >Does anyone have a basic iptables scrip
'slocate' is what I needed.
Since this computer is turned off at night, cron will not run slocate updates. so I
put a line in root's crontab:
@reboot sleep 1200; /usr/bin/nice -n 19 /etc/cron.daily/slocate
That makes my slocate database always updated.
Thanks for everybody.
Pedro
O
I am hoping someone here can help shed some light on some strange system
events that I saw between snort and logcheck on my firewall/router.
After seeing the following log, I opened my logcheck.sh file and saw the
garbage in the file that shows up in my log. I closed it and went to my
other box to
Hi all,
I want to upgrade my iptables package. Currently I use version 1.1.2. I went
to the Rusty's web site to download the latest version. I installed it as the
ReadMe told me. All seemed to be ok, but iptables always give me the same
version. Any idea ?
Check out the firewall building tool at
http://www.linux-firewall-tools.com/linux/firewall/index.html
Leonard Leblanc
Webmaster / Intranet Administrator
www.emergeknowledge.com
- Original Message -
From: "Eric LaMunyon" <[EMAIL PROTECTED]>
To:
Sent: Monday, June 04, 2001 10:10 PM
Subje
I'm guessing that whats happened is you still have the old version
installed, which the shell will find in your path first, and the
iptables you have installed will be in /usr/local somewhere.
Cya.
On Wed, Jun 06, 2001 at 12:41:25AM +0200, Luc MAIGNAN wrote:
> Hi all,
>
> I want to upgrade m
On Fri, Jun 01, 2001 at 08:24:51AM -0300, Pedro Zorzenon Neto wrote:
> On Fri, Jun 01, 2001 at 09:21:19AM +0200, Philipp Schulte wrote:
> > I was thinking of bad memory that might cause this behaviour.
>
> Helping about checking memory:
> Install package 'hwtools'
> Put a blank, formatted flop
Hi everyone.
This is perhaps off topics, but I'm searching for external opinions
about firewalls ;
1 - a linux box with kernel 2.4.x and netfilter/NAT
2 - a linux box with a commercial firewall product
3 - an integrated firewall you don't know much about what it is made of
For my own, I prefer t
Mathias Bocquet <[EMAIL PROTECTED]> writes:
> This is perhaps off topics, but I'm searching for external opinions about
> firewalls ;
>
> 1 - a linux box with kernel 2.4.x and netfilter/NAT
> 2 - a linux box with a commercial firewall product
> 3 - an integrated firewall you don't know much about
At 04:37 PM 6/7/2001 +0200, Mathias Bocquet wrote:
Hi everyone.
This is perhaps off topics, but I'm searching for external opinions
about firewalls ;
1 - a linux box with kernel 2.4.x and netfilter/NAT
Currently using this, albeit with a 2.2.X kernel and IPChains (upgrade
planned and slowly
On Thu, Jun 07, 2001 at 06:57:18PM -0300, Pedro Zorzenon Neto wrote:
>$ locate private | grep "/home/pzn/private"
> the whole contents of my private dir suddenly appears here...
Did you run "updatedb" as root anytime recently?
Notice that by default, this command is run (from cron) as us
On Thu, Jun 07, 2001 at 05:21:52PM -0600, Hubert Chan wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> > "Pedro" == Pedro Zorzenon Neto <[EMAIL PROTECTED]> writes:
>
> Pedro> Hi list, I created a directory /home/pzn/private/ and chmod it
> Pedro> go-rwx to put my private things.
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
> "Mathias" == Mathias Bocquet <[EMAIL PROTECTED]> writes:
Mathias> Hi everyone. This is perhaps off topics, but I'm searching for
Mathias> external opinions about firewalls ;
[cut]
"The most secure system is the one that you understand the bes
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
> "Pedro" == Pedro Zorzenon Neto <[EMAIL PROTECTED]> writes:
Pedro> Hi list, I created a directory /home/pzn/private/ and chmod it
Pedro> go-rwx to put my private things. Then nobody can see the
Pedro> contents and files of this directory, right?
Hi list,
I created a directory /home/pzn/private/ and chmod it go-rwx to put my
private things.
Then nobody can see the contents and files of this directory, right? I've
believed it was true, but other user can do:
$ ls -l ~pzn/
...
drwx--S--- 20 pzn pzn 4096
On Thu, Jun 07, 2001 at 06:57:18PM -0300, Pedro Zorzenon Neto wrote:
>$ locate private | grep "/home/pzn/private"
> the whole contents of my private dir suddenly appears here...
Did you run "updatedb" as root anytime recently?
Notice that by default, this command is run (from cron) as u
On Thu, Jun 07, 2001 at 05:21:52PM -0600, Hubert Chan wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> > "Pedro" == Pedro Zorzenon Neto <[EMAIL PROTECTED]> writes:
>
> Pedro> Hi list, I created a directory /home/pzn/private/ and chmod it
> Pedro> go-rwx to put my private things.
Hi list,
I created a directory /home/pzn/private/ and chmod it go-rwx to put my private
things.
Then nobody can see the contents and files of this directory, right? I've believed
it was true, but other user can do:
$ ls -l ~pzn/
...
drwx--S--- 20 pzn pzn 4096
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
> "Pedro" == Pedro Zorzenon Neto <[EMAIL PROTECTED]> writes:
Pedro> Hi list, I created a directory /home/pzn/private/ and chmod it
Pedro> go-rwx to put my private things. Then nobody can see the
Pedro> contents and files of this directory, right
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
> "Mathias" == Mathias Bocquet <[EMAIL PROTECTED]> writes:
Mathias> Hi everyone. This is perhaps off topics, but I'm searching for
Mathias> external opinions about firewalls ;
[cut]
"The most secure system is the one that you understand the be
At 04:37 PM 6/7/2001 +0200, Mathias Bocquet wrote:
>Hi everyone.
>
>This is perhaps off topics, but I'm searching for external opinions
>about firewalls ;
>
>1 - a linux box with kernel 2.4.x and netfilter/NAT
Currently using this, albeit with a 2.2.X kernel and IPChains (upgrade
planned and slo
Mathias Bocquet <[EMAIL PROTECTED]> writes:
> This is perhaps off topics, but I'm searching for external opinions about
> firewalls ;
>
> 1 - a linux box with kernel 2.4.x and netfilter/NAT
> 2 - a linux box with a commercial firewall product
> 3 - an integrated firewall you don't know much abou
Hi everyone.
This is perhaps off topics, but I'm searching for external opinions
about firewalls ;
1 - a linux box with kernel 2.4.x and netfilter/NAT
2 - a linux box with a commercial firewall product
3 - an integrated firewall you don't know much about what it is made of
For my own, I prefer
33 matches
Mail list logo
