Better to bounce or moderate entries from non-subscribers, IMOHO. That
would cut down on the spam quite a lot better than probabilistic filters
as well.
There are probably reasons why this hasn't been done, although most
non-debian mailing lists seem to take this approach (and see none of the
nois
Also note that if those packages actually did contain malicious code,
uninstalling is a totally pointless exercise. I rather doubt that an
attacker is going to be kind enough to add a remove script for their
rootkit ;)
(I've seen two different people say some variation of this, so I thought
I ough
Also note that if those packages actually did contain malicious code,
uninstalling is a totally pointless exercise. I rather doubt that an
attacker is going to be kind enough to add a remove script for their
rootkit ;)
(I've seen two different people say some variation of this, so I thought
I ough
I haven't done more then look at the screen shots for it, but the
"personal firewall" (eg: iptables frontend) that comes with RH9 looks to
be default deny for most incoming traffic while providing a nice (read:
graphical and straightforward) way to punch essential holes through it
as needed. (and o
eboot: you have to
> set them up manually.
>
> Might be worth a look to see how they did it to see if it can be easily
> implemented on debian?
>
>
> On Thu, 25 Sep 2003 10:04, Florian Weimer wrote:
> > On Wed, Sep 24, 2003 at 01:42:01PM -0700, Adam Lydick wrote:
&g
Agreed. The X maintainers (as one example) started doing that a while
back. I run exim and a few other services like this (manually
configured, sadly).
On Wed, 2003-09-24 at 15:04, Florian Weimer wrote:
> On Wed, Sep 24, 2003 at 01:42:01PM -0700, Adam Lydick wrote:
>
> > Is there a
I haven't done more then look at the screen shots for it, but the
"personal firewall" (eg: iptables frontend) that comes with RH9 looks to
be default deny for most incoming traffic while providing a nice (read:
graphical and straightforward) way to punch essential holes through it
as needed. (and o
eboot: you have to
> set them up manually.
>
> Might be worth a look to see how they did it to see if it can be easily
> implemented on debian?
>
>
> On Thu, 25 Sep 2003 10:04, Florian Weimer wrote:
> > On Wed, Sep 24, 2003 at 01:42:01PM -0700, Adam Lydick wrote:
&g
Agreed. The X maintainers (as one example) started doing that a while
back. I run exim and a few other services like this (manually
configured, sadly).
On Wed, 2003-09-24 at 15:04, Florian Weimer wrote:
> On Wed, Sep 24, 2003 at 01:42:01PM -0700, Adam Lydick wrote:
>
> > Is there a
need
it, rather then to need to remember to turn something off that you
aren't using?
Thanks,
Adam Lydick
need
it, rather then to need to remember to turn something off that you
aren't using?
Thanks,
Adam Lydick
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
t;
> iD8DBQE+7QqJL/zYpWVgapgRAlKNAJ9ttp2EXJTQOM0zbt4QxP9+9035FgCfecVc
> gIRXdU/bu7D5WN/1s1La4Is=
> =NZ2c
> -END PGP SIGNATURE-
--
Adam Lydick <[EMAIL PROTECTED]>
t;
> iD8DBQE+7QqJL/zYpWVgapgRAlKNAJ9ttp2EXJTQOM0zbt4QxP9+9035FgCfecVc
> gIRXdU/bu7D5WN/1s1La4Is=
> =NZ2c
> -END PGP SIGNATURE-
--
Adam Lydick <[EMAIL PROTECTED]>
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
You could hardcode the MAC using static arp entries. Also, you could
just broadcast on the logger interface (which doesn't require an ARP
lookup, it just uses the broadcast MAC).
My concerns with this approach (although I like the sound of it) is that
it might fsck up your media detection (eg: is
Note that you must also prevent raw disk access by the superuser as
well.
If I were securing a system, I think I'd opt for offline storage of logs
(line printer, serial line, WORM/CDR driver, write-only network logging
to a "secure" machine.)
Trying to protect the local system from the superuser
Note that you must also prevent raw disk access by the superuser as
well.
If I were securing a system, I think I'd opt for offline storage of logs
(line printer, serial line, WORM/CDR driver, write-only network logging
to a "secure" machine.)
Trying to protect the local system from the superuser
Before the previous thread turned all that useful energy into waste
heat, the author raised an interesting point:
What support do .debs have for package signing right now?
Thanks,
Adam
Before the previous thread turned all that useful energy into waste
heat, the author raised an interesting point:
What support do .debs have for package signing right now?
Thanks,
Adam
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTE
18 matches
Mail list logo
