Re: Several security issues seeking help

txt > [10] http://bugs.debian.org/257973 > > -- > Jeroen van Wolffelaar > [EMAIL PROTECTED] (also for Jabber & MSN; ICQ: 33944357) > http://Jeroen.A-Eskwadraat.nl > > > -- > To UNSUBSCRIBE, email to [EMAIL PROTECTED] > with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED] -- -- -> Jean-Francois Dive --> [EMAIL PROTECTED] I think that God in creating Man somewhat overestimated his ability. -- Oscar Wilde -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: IPSec tunnels with isakmpd

> Thank you very much. > > > > __ > Yahoo! lanza su nueva tecnolog?a de b?squedas > ?te atreves a comparar? > http://busquedas.yahoo.es > > > -- > To UNSUBSCRIBE, email to [EMAIL PROTECTED] > with a subject of "unsubscribe". T

Re: IPSec tunnels with isakmpd

> Thank you very much. > > > > __ > Yahoo! lanza su nueva tecnolog?a de b?squedas > ?te atreves a comparar? > http://busquedas.yahoo.es > > > -- > To UNSUBSCRIBE, email to [EMAIL PROTECTED] > with a subject of "unsubscribe". T

Re: IPSec WinXP interop

I must admit I'm still a little > unclear how the whole idea works, but I believe that IPSec receives the > connection, then calls l2tpd, which starts ppp. I can post more config > / debug if needed. > > A > -- > Documentation - http://www.debian.org/doc/ > FAQ - http://www.debian.org/doc/FAQ/ > Install manual (i386) - http://www.debian.org/releases/stable/i386/install > > > -- > To UNSUBSCRIBE, email to [EMAIL PROTECTED] > with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED] -- -> Jean-Francois Dive --> [EMAIL PROTECTED] I think that God in creating Man somewhat overestimated his ability. -- Oscar Wilde

Re: IPSec WinXP interop

I must admit I'm still a little > unclear how the whole idea works, but I believe that IPSec receives the > connection, then calls l2tpd, which starts ppp. I can post more config > / debug if needed. > > A > -- > Documentation - http://www.debian.org/doc/ > FAQ - http://www.debian.org/doc/FAQ/ > Install manual (i386) - http://www.debian.org/releases/stable/i386/install > > > -- > To UNSUBSCRIBE, email to [EMAIL PROTECTED] > with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED] -- -> Jean-Francois Dive --> [EMAIL PROTECTED] I think that God in creating Man somewhat overestimated his ability. -- Oscar Wilde -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: Is there a FAM(file alteration monitor) exploit in the wild?

The program does not work with RPC services over TCP. These services are > registered as rpc/tcp in the inetd configuration file." > > The local-only security options do not work when called from inetd. How > are you supposed to protect this program? Firewall? > >

Re: Is there a FAM(file alteration monitor) exploit in the wild?

The program does not work with RPC services over TCP. These services are > registered as rpc/tcp in the inetd configuration file." > > The local-only security options do not work when called from inetd. How > are you supposed to protect this program? Firewall? > >

Re: H323 Gateways

are suggestions / tricks / ideas? > > > -- > Daniel -- -> Jean-Francois Dive --> [EMAIL PROTECTED] There is no such thing as randomness. Only order of infinite complexity. - Marquis de LaPlace - deterministic Principles -

Re: H323 Gateways

are suggestions / tricks / ideas? > > > -- > Daniel -- -> Jean-Francois Dive --> [EMAIL PROTECTED] There is no such thing as randomness. Only order of infinite complexity. - Marquis de LaPlace - deterministic Principles - -- To UNSUBSCRIBE, email to [EMAIL PROTECTE

Re: [Q] How to keep Debian system secure: automation?

if you build your own packages *from debian sources*, just get the appropriate source tree. This apply for the kernel as well. JeF On Tue, 2003-03-04 at 14:10, Kynn Jones wrote: > > > > > > apt-get update/upgrade is good enough for me as a way to keep up with > security updates at the binary

Re: [Q] How to keep Debian system secure: automation?

if you build your own packages *from debian sources*, just get the appropriate source tree. This apply for the kernel as well. JeF On Tue, 2003-03-04 at 14:10, Kynn Jones wrote: > > > > > > apt-get update/upgrade is good enough for me as a way to keep up with > security updates at the binary

Re: Firewall Informer

Hi, I'm glad to see this is not a standard form of spamming as your answered comments on the list. However, this list is not the proper place to post commercial advertisement about security product not supported under linux and particulary Debian GNU Linux. Thanks, JeF On Mon, 2003-02-24 at 02

Re: Firewall Informer

Hi, I'm glad to see this is not a standard form of spamming as your answered comments on the list. However, this list is not the proper place to post commercial advertisement about security product not supported under linux and particulary Debian GNU Linux. Thanks, JeF On Mon, 2003-02-24 at 02

Re: raw disk access

hank you, > > Joshua SS Miller > > On Mon, 2003-01-13 at 03:19, Jean-Francois Dive wrote: > > already answered but dd | nc (to send it to another box) is a classical. > > > > Otherwise, some other tools can give you as well memory dumps which may > > sometimes

Re: raw disk access

hank you, > > Joshua SS Miller > > On Mon, 2003-01-13 at 03:19, Jean-Francois Dive wrote: > > already answered but dd | nc (to send it to another box) is a classical. > > > > Otherwise, some other tools can give you as well memory dumps which may > > sometimes

Re: raw disk access

ssary, and would appreciate > any pointers to good reference material (raw drive access and > how to work with the images created). > > If it helps, i am running with the latest 'unstable' packages. > > Many thanks. > > -- > viv <[EMAIL

Re: raw disk access

ssary, and would appreciate > any pointers to good reference material (raw drive access and > how to work with the images created). > > If it helps, i am running with the latest 'unstable' packages. > > Many thanks. > > -- > viv <[EMAIL

Re: Dedicated Firewall + snmpd smux 199/tcp

een smux used for session management by freeradius. > > -- > Gerard > > > -- > To UNSUBSCRIBE, email to [EMAIL PROTECTED] > with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED] -- -> Jean-Francois Dive --> [EMAIL PROTECTED] There is no such

Re: Dedicated Firewall + snmpd smux 199/tcp

een smux used for session management by freeradius. > > -- > Gerard > > > -- > To UNSUBSCRIBE, email to [EMAIL PROTECTED] > with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED] -- -> Jean-Francois Dive --> [EMAIL PROTECTED] There is no such

Re: a nessus developpers joke?

strange for a stable release...? > > > > i ve done a nmap -sU on those ports (trinoo) from the 2 fresh hosts, > > they re closed and of course a nmap -sS on port 22 > > give us a opened port. > > > > thanks Martin > > > > ;-) > > > >

Re: a nessus developpers joke?

strange for a stable release...? > > > > i ve done a nmap -sU on those ports (trinoo) from the 2 fresh hosts, > > they re closed and of course a nmap -sS on port 22 > > give us a opened port. > > > > thanks Martin > > > > ;-) > > > >

Re: harden-clients idea

til.kjernsmo.net/ > > > -- > To UNSUBSCRIBE, email to [EMAIL PROTECTED] > with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED] -- -> Jean-Francois Dive --> [EMAIL PROTECTED] There is no such thing as randomness. Only order of infinite complexity. - _The Holographic Universe_, Michael Talbot

Re: harden-clients idea

//www.kjetil.kjernsmo.net/ > > > -- > To UNSUBSCRIBE, email to [EMAIL PROTECTED] > with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED] -- -> Jean-Francois Dive --> [EMAIL PROTECTED] There is no such thing as randomness. Only order of infinite comple

Re: FreeS/WAN and kernel 2.4.20-pre7

subscribe". Trouble? Contact [EMAIL PROTECTED] -- -> Jean-Francois Dive --> [EMAIL PROTECTED] There is no such thing as randomness. Only order of infinite complexity. - _The Holographic Universe_, Michael Talbot

Re: FreeS/WAN and kernel 2.4.20-pre7

subscribe". Trouble? Contact [EMAIL PROTECTED] -- -> Jean-Francois Dive --> [EMAIL PROTECTED] There is no such thing as randomness. Only order of infinite complexity. - _The Holographic Universe_, Michael Talbot -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Postgres buffer overflow in stable .

ean-Francois Dive --> [EMAIL PROTECTED] There is no such thing as randomness. Only order of infinite complexity. - _The Holographic Universe_, Michael Talbot

Re: port 6051: hacked?

> > the city of palo alto, in its official description of parking lot > standards, specifies the grade of wheelchair access ramps in terms of > centimeters of rise per foot of run. a compromise, i imagine... -- -> Jean-Francois Dive --> [EMAIL PROTECTED] There is

Re: port 6051: hacked?

any open ports?", well, i turned the firewall off for > scanning :-) > > I am now quite shure that there was no breakin, but will follow the > suggestion by Jean-Francois Dive an let a sniffer run... you really almost *never* can be 100% sure. The latest root kit are running in the k

Re: port 6051: hacked?

Am i hacked? > > Is there any other way i can tell which program is responsible for > > this port? > > What exactly is the meaning of "filtered"? > > > > > > Info: > > System is running unstable, last upgrade 07-02-2002. Kernel 2.4.5. > > chkrootkit (l

linux random capabilities ...

those mechanims are. Finally, i read here and there some work on hardware random generation devices (based on radio activity readings, or diods based devices or whatever), is there anyone with some experience with those ? thanks, cheers, JeF -- -> Jean-Francois Dive --> [EMAIL PROTECTED]

Re: PPTP with Encryption

> > -- > To UNSUBSCRIBE, email to [EMAIL PROTECTED] > with a subject of "unsubscribe". Trouble? Contact > [EMAIL PROTECTED] > -- -> Jean-Francois Dive --> [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: PPTP with Encryption

- > To UNSUBSCRIBE, email to [EMAIL PROTECTED] > with a subject of "unsubscribe". Trouble? Contact > [EMAIL PROTECTED] > -- -> Jean-Francois Dive --> [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: logging iptables

.ku.dk | > > >"Politics is for the moment, equations are forever" > - Albert Einstein > > > > -- > To UNSUBS

SPSL implementation ..

have been defined by SSH people to define security policies in IPSec / IKE context, and is defined now in a (expired) draft. thanks, Cheers, JeF -- -> Jean-Francois Dive --> [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe".

SPSL implementation ..

have been defined by SSH people to define security policies in IPSec / IKE context, and is defined now in a (expired) draft. thanks, Cheers, JeF -- -> Jean-Francois Dive --> [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe".

Re: [SECURITY] [DSA 122-1] New zlib & other packages fix buffer overflow

affected in the first place, or that they were > overlooked? > > -- > Dmitry Borodaenko > > > -- > To UNSUBSCRIBE, email to [EMAIL PROTECTED] > with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED] > -- -> Jean-Francois Dive --> [EMAIL PROTECTED]

Re: [SECURITY] [DSA 122-1] New zlib & other packages fix buffer overflow

affected in the first place, or that they were > overlooked? > > -- > Dmitry Borodaenko > > > -- > To UNSUBSCRIBE, email to [EMAIL PROTECTED] > with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED] > -- -> Jean-Francois Dive --> [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: PPTP and encryption / RC4 weaknesses

On Mon, Mar 04, 2002 at 03:20:44PM +0100, Christoph Moench-Tegeder wrote: thanks, this confirm me that i really have to avoid it ;) cheers, JeF > ## Jean-Francois Dive ([EMAIL PROTECTED]): > > > I was wondering: PPTP use RC4 up to 128 bit keys as an encryption > > mechanis

Re: PPTP and encryption / RC4 weaknesses

On Mon, Mar 04, 2002 at 03:20:44PM +0100, Christoph Moench-Tegeder wrote: thanks, this confirm me that i really have to avoid it ;) cheers, JeF > ## Jean-Francois Dive ([EMAIL PROTECTED]): > > > I was wondering: PPTP use RC4 up to 128 bit keys as an encryption mechanism. I

PPTP and encryption / RC4 weaknesses

t the problem in WEP is the key extrapolation which is the problem, but i'd like to know if RC4 in PPTP can be considered as secure, purely on encryption side. Thanks for any pointer on this.( except the 'read the applied cryptography book ;) JeF -- -> Jean-Francois Dive --> [EMAIL PROTECTED]

PPTP and encryption / RC4 weaknesses

t the problem in WEP is the key extrapolation which is the problem, but i'd like to know if RC4 in PPTP can be considered as secure, purely on encryption side. Thanks for any pointer on this.( except the 'read the applied cryptography book ;) JeF -- -> Jean-Francois Dive --> [EMAI

Re: hosts.{allow,deny} vs iptables.

-- I hack, therefore I am -- BOFH > -BEGIN PGP SIGNATURE- > Version: GnuPG v1.0.6 (GNU/Linux) > Comment: Processed by Mailcrypt 3.5.6 <http://mailcrypt.sourceforge.net/> > > iD8DBQE8grxhFsfyfWvjfZARAlNpAJ9R9limzM711W+n0HU+r91/QGtToACgxi0X > JSPo/zUMHGqKp4Vdk/zp8Go= &

Re: hosts.{allow,deny} vs iptables.

-- I hack, therefore I am -- BOFH > -BEGIN PGP SIGNATURE- > Version: GnuPG v1.0.6 (GNU/Linux) > Comment: Processed by Mailcrypt 3.5.6 <http://mailcrypt.sourceforge.net/> > > iD8DBQE8grxhFsfyfWvjfZARAlNpAJ9R9limzM711W+n0HU+r91/QGtToACgxi0X > JSPo/zUMHGqKp4Vdk/zp8Go= &

Re: Security implications of chpasswd.

seem to find it in my local mirror. > > -- > Share and Enjoy. > > > -- > To UNSUBSCRIBE, email to [EMAIL PROTECTED] > with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED] > -- -> Jean-Francois Dive --> [EMAIL PROTECTED]

Re: Security implications of chpasswd.

seem to find it in my local mirror. > > -- > Share and Enjoy. > > > -- > To UNSUBSCRIBE, email to [EMAIL PROTECTED] > with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED] > -- -> Jean-Francois Dive --> [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: port-forward ssh

nyone > have a suggestion on what I can do to figure this out? > > thanks, > Joan > > > -- > To UNSUBSCRIBE, email to [EMAIL PROTECTED] > with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED] > -- -> Jean-Francois Dive --> [EMAIL PROTECTED]

Re: port-forward ssh

nyone > have a suggestion on what I can do to figure this out? > > thanks, > Joan > > > -- > To UNSUBSCRIBE, email to [EMAIL PROTECTED] > with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED] > -- -> Jean-Francois Dive --> [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: PPPoverEthernet vs. PPPoverATM

t even respond to ping) so it may be considered as quite secure > (if you don't define a default internal server in the NAT parameters). > http://www.sateh.com (if I remember well) > > > > > -----Original Message- > From: Jean-Francois Dive [SM

Re: PPPoverEthernet vs. PPPoverATM

t even respond to ping) so it may be considered as quite secure (if you don't >define a default internal server in the NAT parameters). http://www.sateh.com (if I >remember well) > > > > > -----Original Message- > From: Jean-Francois Dive [SMTP:[EMA

Re: PPPoverEthernet vs. PPPoverATM

LES anyhow! > > > > > -- > To UNSUBSCRIBE, email to [EMAIL PROTECTED] > with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED] > -- -> Jean-Francois Dive --> [EMAIL PROTECTED]

Re: PPPoverEthernet vs. PPPoverATM

gt; > > > > -- > To UNSUBSCRIBE, email to [EMAIL PROTECTED] > with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED] > -- -> Jean-Francois Dive --> [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]