Re: End-user laptop firewall available?

2013-12-09 Thread Jérémie Marguerie
dress you can remove all the non attributed prefixes (widely available). And you can certainly only target the prefixes that have been allocated to domestic network cards. You could well be under 2^32 with that. And we all know here that scanning 2^32 is fairly easy nowadays. -- Jérémie MARGUERIE

Re: End-user laptop firewall available?

2013-12-08 Thread Jérémie Marguerie
curity in depth is always useful. You'll always have risks of someone finding a way to go around the security you've put in place. You just want to make it as hard as possible in an adequate amount of time. -- Jérémie MARGUERIE -- To UNSUBSCRIBE, email to debian-security-requ...@lis

Re: End-user laptop firewall available?

2013-12-07 Thread Jérémie Marguerie
On Sat, Dec 7, 2013 at 4:03 PM, Anatoli Lichii wrote: > I use ufw/gufw A simple firewall configuration is to allow what goes out and only accept what comes in if it was initiated from your laptop ("established" connection). -- Jérémie MARGUERIE -- To UNSUBSCRIBE, email to de

Re: SSL for debian.org/security?

2013-11-12 Thread Jérémie Marguerie
private key exists. (Which also means that only > one machine can sign with the key.) Correct me if I'm wrong but if the key is destroyed, then you revoke it with the signing third party that signed the key. -- Jérémie MARGUERIE -- To UNSUBSCRIBE, email to debian-security-requ...@lis

Re: SSL for debian.org/security?

2013-11-11 Thread Jérémie Marguerie
it gets asked without revealing the certificate. And then the idea is to do "certificate pinning" in the distribution to make sure the SSL certificate hasn't be forged by a trusted third party (see the Comodo/Diginotar problem). I doubt/really hope that Debian doesn't need th

Re: NULL Scan issues or something else?

2013-02-05 Thread Jérémie Marguerie
not annoy too much your users but will annoy stupid bots. -- Jérémie Marguerie

Re: NULL Scan issues or something else?

2013-02-05 Thread Jérémie Marguerie
his noise (but by more advanced threat could :)). A simple iptables firewall with input dropped by default and allowing certain ports should work for most servers. -- Jérémie Marguerie

Re: integrity checks and inodes

2011-01-21 Thread Jérémie Marguerie
e strange actions on the file. For example, if you copy a file, delete it and finally restore it with the copy you made before, the inode number will change. People may want to be warned of such things. -- Jérémie MARGUERIE Student in l'EPITA (Engineering school of computer science) -- To U

Re: rkhunter message

2009-10-05 Thread Jérémie Marguerie
On Mon, Oct 5, 2009 at 11:09 PM, Paul Cartwright wrote: > :/dev/shm# ls -l > total 8 > -rw-r- 1 pbc pbc    4096 2009-10-04 13:11 mono.17997 > -rw-r- 1 pbc pbc   79880 2009-10-04 13:11 > mono-shared-1000-shared_data-paulandcilla.homelinux.org-Linux-i686-312-12-0 > -rw-r- 1 pbc pbc 36864