idence
to the effect.
my 2 cents,
jc
--
Jeff CoppockSystems Engineer
Diggin' Debian Admin and User
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
On 14 Apr 2004 22:44:40 GMT
Paul Hink <[EMAIL PROTECTED]> wrote:
> Jeff Coppock <[EMAIL PROTECTED]> wrote:
>
> > On 14 Apr 2004 20:35:19 GMT Paul Hink <[EMAIL PROTECTED]> wrote:
> >
> >> Russell Coker <[EMAIL PROTECTED]> wrote:
> >
On 14 Apr 2004 22:44:40 GMT
Paul Hink <[EMAIL PROTECTED]> wrote:
> Jeff Coppock <[EMAIL PROTECTED]> wrote:
>
> > On 14 Apr 2004 20:35:19 GMT Paul Hink <[EMAIL PROTECTED]> wrote:
> >
> >> Russell Coker <[EMAIL PROTECTED]> wrote:
> >
er" which is what is needed here. "session
> (opened)|(closed) for user" matches "session opened" and "closed for
> user" which does not make much sense in this context.
Using either variation appears to be working, but that's most likely
due to t
On Wed, 14 Apr 2004 15:49:00 -0400
Brian Clark <[EMAIL PROTECTED]> wrote:
> Hi Jeff,
>
> On Wed, Apr 14, 2004 at 09:01:54AM -0700, Jeff Coppock wrote:
>
> > CRON[15613]:(pam_unix) session opened for user mail by (uid=0)
> > CRON[15613]:(pam_unix) session closed
On Wed, 14 Apr 2004 20:06:02 +0100
Marco Franzen <[EMAIL PROTECTED]> wrote:
> > Date: Wed, 14 Apr 2004 11:27:55 -0700
> > From: Jeff Coppock <[EMAIL PROTECTED]>
>
> > On Thu, 15 Apr 2004 03:49:35 +1000
> > Russell Coker <[EMAIL PROTECTED]> wrot
er" which is what is needed here. "session
> (opened)|(closed) for user" matches "session opened" and "closed for
> user" which does not make much sense in this context.
Using either variation appears to be working, but that's most likely
due to t
On Thu, 15 Apr 2004 03:49:35 +1000
Russell Coker <[EMAIL PROTECTED]> wrote:
> On Thu, 15 Apr 2004 02:01, Jeff Coppock <[EMAIL PROTECTED]> wrote:
> > I'm having trouble with getting entries here to work. I have the
> > following /var/log/auth.log messages that I wa
On Wed, 14 Apr 2004 15:49:00 -0400
Brian Clark <[EMAIL PROTECTED]> wrote:
> Hi Jeff,
>
> On Wed, Apr 14, 2004 at 09:01:54AM -0700, Jeff Coppock wrote:
>
> > CRON[15613]:(pam_unix) session opened for user mail by (uid=0)
> > CRON[15613]:(pam_unix) session closed
On Wed, 14 Apr 2004 20:06:02 +0100
Marco Franzen <[EMAIL PROTECTED]> wrote:
> > Date: Wed, 14 Apr 2004 11:27:55 -0700
> > From: Jeff Coppock <[EMAIL PROTECTED]>
>
> > On Thu, 15 Apr 2004 03:49:35 +1000
> > Russell Coker <[EMAIL PROTECTED]> wrot
On Thu, 15 Apr 2004 03:49:35 +1000
Russell Coker <[EMAIL PROTECTED]> wrote:
> On Thu, 15 Apr 2004 02:01, Jeff Coppock <[EMAIL PROTECTED]> wrote:
> > I'm having trouble with getting entries here to work. I have the
> > following /var/log/auth.log messages that I wa
the entry?
thanks,
jc
--
Jeff CoppockSystems Engineer
Diggin' Debian Admin and User
the entry?
thanks,
jc
--
Jeff CoppockSystems Engineer
Diggin' Debian Admin and User
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
the scan very slow, especially over a slow network link), use the "-p 1-
> " argument to every scan to force nmap to scan every port from 1 to
> 65535 instead of just the maybe 400 or 500 ports that it has listed in
> its services file. That's the only way you can get a complete picture
> of what your box looks like from the outside.
--
Jeff CoppockNortel Networks
Systems Engineerhttp://nortelnetworks.com
the scan very slow, especially over a slow network link), use the "-p 1-
> " argument to every scan to force nmap to scan every port from 1 to
> 65535 instead of just the maybe 400 or 500 ports that it has listed in
> its services file. That's the only way you can get a
tony mancill, 2001-Oct-20 21:22 -0700:
> On Sat, 20 Oct 2001, Marc Wilson wrote:
>
> > On Sat, Oct 20, 2001 at 07:18:25PM -0700, Jeff Coppock wrote:
> > > Just for grins, I removed every udp listing in
> > > /etc/services and restarted inetd and the scan came back
tony mancill, 2001-Oct-20 21:22 -0700:
> On Sat, 20 Oct 2001, Marc Wilson wrote:
>
> > On Sat, Oct 20, 2001 at 07:18:25PM -0700, Jeff Coppock wrote:
> > > Just for grins, I removed every udp listing in
> > > /etc/services and restarted inetd and the scan came back
iour, perhaps I can add an iptables
entry like:
iptables -A INPUT -p udp -j drop
However, I don't have any applications running using udp, so the
'open' port doesn't have anywhere to go, as far as I know.
Again, if someone can confirm this, I'd really appreciate it.
than
ure behaviour, perhaps I can add an iptables
entry like:
iptables -A INPUT -p udp -j drop
However, I don't have any applications running using udp, so the
'open' port doesn't have anywhere to go, as far as I know.
Again, if someone can confirm this, I'd really appreciate i
Jeff Coppock, 2001-Oct-13 19:40 -0700:
> Has anyone seen an issue with scp, as part of the woody ssh
> package? On 2 occasions after using scp to transfer some large
> files (300MB +), my libc6 got corrupted. The 1st time I had to
> reinstall the system. This time, I was able to
and a couple more just
for grins and all seems okay now.
I'm scared to use scp anymore, and I haven't found any bug
reports on it yet.
thanks,
jc
--
Jeff CoppockNortel Networks
Systems Engineerhttp://nortelnetworks.com
Jeff Coppock, 2001-Oct-13 19:40 -0700:
> Has anyone seen an issue with scp, as part of the woody ssh
> package? On 2 occasions after using scp to transfer some large
> files (300MB +), my libc6 got corrupted. The 1st time I had to
> reinstall the system. This time, I was able to
and a couple more just
for grins and all seems okay now.
I'm scared to use scp anymore, and I haven't found any bug
reports on it yet.
thanks,
jc
--
Jeff CoppockNortel Networks
Systems Engineerhttp://nortelnetworks.com
--
To UNSUBSCRIBE, email to [EMAIL PROTECT
rt, but in the recent flurry of "IIS attacks",
it's hard to dig through the huge log files for other attacks
that might be caught.
If anyone has any idea's on this, I'd really appreciate it.
thanks,
jc
--
Jeff CoppockNortel Networks
Systems Engineerhttp://nortelnetworks.com
rt, but in the recent flurry of "IIS attacks",
it's hard to dig through the huge log files for other attacks
that might be caught.
If anyone has any idea's on this, I'd really appreciate it.
thanks,
jc
--
Jeff CoppockNortel Networks
Systems Engineerh
Peter Cordes, 2001-Sep-13 02:31 -0300:
> On Mon, Sep 10, 2001 at 11:41:32AM -0700, Jeff Coppock wrote:
> > I ran ssh-keygen with strace and found that the seg fault occurs
> > after /dev/urandom is opened, then closed, and the "brk0x..."
> > lines come out.
>
Peter Cordes, 2001-Sep-13 02:31 -0300:
> On Mon, Sep 10, 2001 at 11:41:32AM -0700, Jeff Coppock wrote:
> > I ran ssh-keygen with strace and found that the seg fault occurs
> > after /dev/urandom is opened, then closed, and the "brk0x..."
> > lines come out.
>
Steve Greenland, 2001-Sep-10 10:50 -0500:
> On 10-Sep-01, 03:34 (CDT), Colin Walters <[EMAIL PROTECTED]> wrote:
> > Jeff Coppock <[EMAIL PROTECTED]> writes:
> >
> > > I'm having trouble getting ssh installed on my new woody system.
> > > I&#
Steve Greenland, 2001-Sep-10 10:50 -0500:
> On 10-Sep-01, 03:34 (CDT), Colin Walters <[EMAIL PROTECTED]> wrote:
> > Jeff Coppock <[EMAIL PROTECTED]> writes:
> >
> > > I'm having trouble getting ssh installed on my new woody system.
> > > I&#
I'm having trouble getting ssh installed on my new woody system.
I'm getting segmentation faults during the ssh-keygen process. I
can't find any reason for this.
Please help,
jc
--
Jeff CoppockNortel Networks
Systems Engineerhttp://nortelnetworks.
just wanted to see if there was a way to keep the port from
binding to an interface to start with.
So, I'll continue with iptables for now.
thanks,
jc
--
Jeff CoppockNortel Networks
Systems Engineerhttp://nortelnetworks.com
Major Accts.Santa Clara, CA
I'm having trouble getting ssh installed on my new woody system.
I'm getting segmentation faults during the ssh-keygen process. I
can't find any reason for this.
Please help,
jc
--
Jeff CoppockNortel Networks
Systems Engineerhttp://nortelnetworks.
y,
I just wanted to see if there was a way to keep the port from
binding to an interface to start with.
So, I'll continue with iptables for now.
thanks,
jc
--
Jeff CoppockNortel Networks
Systems Engineerhttp://nortelnetworks.com
Major Accts.Santa Clara, CA
-
How would I control which ports listen on specified interfaces?
I have eth0 and eth1 and I want have certain ports listening on
one, but not the other.
thanks,
jc
--
Jeff CoppockNortel Networks
Systems Engineerhttp://nortelnetworks.com
Major Accts.Santa Clara
How would I control which ports listen on specified interfaces?
I have eth0 and eth1 and I want have certain ports listening on
one, but not the other.
thanks,
jc
--
Jeff CoppockNortel Networks
Systems Engineerhttp://nortelnetworks.com
Major Accts.Santa Clara
rsion: 2.3.0.50-1
I can't figure out what the deal is and have not yet found any
documentation on this issue.
Any help is much appreciated.
thanks,
jc
--
Jeff CoppockNortel Networks
Systems Engineerhttp://nortelnetworks.com
Major Accts.Santa Clara, CA
rsion: 2.3.0.50-1
I can't figure out what the deal is and have not yet found any
documentation on this issue.
Any help is much appreciated.
thanks,
jc
--
Jeff CoppockNortel Networks
Systems Engineerhttp://nortelnetworks.com
Major Accts.Santa Clara, C
gt; Regards,
>
> 1h0p1355 N3w813
>
>
> --
> To UNSUBSCRIBE, email to [EMAIL PROTECTED]
> with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
>
Hmmm...telnet logins should be logged in syslog, failed logins
for telnet along with successful
> Regards,
>
> 1h0p1355 N3w813
>
>
> --
> To UNSUBSCRIBE, email to [EMAIL PROTECTED]
> with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
>
Hmmm...telnet logins should be logged in syslog, failed logins
for telnet along with successful
Mike Renfro, 2001-Aug-21 14:40 -0500:
> On Tue, Aug 21, 2001 at 09:36:02AM -0700, Jeff Coppock wrote:
>
> >Can I get a few recommendations on the proper sources.list for a
> >system running woody, that includes the security updates?
>
> Woody would be my last ch
em unbootable, since lilo was
involved. I'm scared to death to run another update/upgrade
since I had to rebuild the system from scratch!
thanks,
jc
--
Jeff CoppockNortel Networks
Systems Engineerhttp://nortelnetworks.com
Major Accts.Santa Clara, CA
Mike Renfro, 2001-Aug-21 14:40 -0500:
> On Tue, Aug 21, 2001 at 09:36:02AM -0700, Jeff Coppock wrote:
>
> >Can I get a few recommendations on the proper sources.list for a
> >system running woody, that includes the security updates?
>
> Woody would be my last ch
ade my system unbootable, since lilo was
involved. I'm scared to death to run another update/upgrade
since I had to rebuild the system from scratch!
thanks,
jc
--
Jeff CoppockNortel Networks
Systems Engineerhttp://nortelnetworks.com
Major Accts.
ion.
As for an IOP listing, you'll have to go directly to each
vendor/supplier of the VPN solution you're considering and
check there.
I hope this helps,
jc
--
Jeff CoppockNortel Networks
Systems Engineerhttp://nortelnetworks.com
Major Accts.Santa Clara, CA
ion.
As for an IOP listing, you'll have to go directly to each
vendor/supplier of the VPN solution you're considering and
check there.
I hope this helps,
jc
--
Jeff CoppockNortel Networks
Systems Engineerhttp://nortelnetworks.com
Major Accts.
this same source.
It hung and 99% the first try and I C to break and
immediately ran it again and it worked fine.
jc
--
Jeff CoppockNortel Networks
Systems Engineerhttp://nortelnetworks.com
Major Accts.Santa Clara, CA
this same source.
It hung and 99% the first try and I C to break and
immediately ran it again and it worked fine.
jc
--
Jeff CoppockNortel Networks
Systems Engineerhttp://nortelnetworks.com
Major Accts.Santa Clara, CA
--
To UNSUBSCRIBE, email
Jeff Coppock, 2001-Aug-05 09:04 -0700:
>I'm trying to cleanup my logging using syslog-ng (version
>1.5.6-1). The problem at this point is that my firewall
>(iptables) logs are showing up in my newly setup firewall log
>file, and still in the messages kern.log
Jeff Coppock, 2001-Aug-05 09:04 -0700:
>I'm trying to cleanup my logging using syslog-ng (version
>1.5.6-1). The problem at this point is that my firewall
>(iptables) logs are showing up in my newly setup firewall log
>file, and still in the messages kern.log
at the beginning.
I moved the destination entry to the beginning of that
section and will watch the logs.
thanks for any help...jc
--
Jeff CoppockNortel Networks
Systems Engineerhttp://nortelnetworks.com
Major Accts.Santa Clara, CA
at the beginning.
I moved the destination entry to the beginning of that
section and will watch the logs.
thanks for any help...jc
--
Jeff CoppockNortel Networks
Systems Engineerhttp://nortelnetworks.com
Major Accts.Santa Clara, CA
--
To U
Tamas TEVESZ, 2001-Jul-23 19:17 +0200:
> On Mon, 23 Jul 2001, Jeff Coppock wrote:
>
> >other than /var/log/syslog. I'd like these "Refected: " log
> >messages to go into /var/log/iptables.log instead. I can't
> >figure out what
Tamas TEVESZ, 2001-Jul-23 19:17 +0200:
> On Mon, 23 Jul 2001, Jeff Coppock wrote:
>
> >other than /var/log/syslog. I'd like these "Refected: " log
> >messages to go into /var/log/iptables.log instead. I can't
> >figure out what
bles.log instead. I can't
figure out what changes to make to /etc/syslog.conf to make
this happen. Any help is appreciated.
jc
--
Jeff CoppockNortel Networks
Systems Engineerhttp://nortelnetworks.com
Major Accts.Santa Clara, CA
bles.log instead. I can't
figure out what changes to make to /etc/syslog.conf to make
this happen. Any help is appreciated.
jc
--
Jeff CoppockNortel Networks
Systems Engineerhttp://nortelnetworks.com
Major Accts.Santa Clara, CA
--
To UN
What does syslog recognize as iptables log messages? I tried
putting iptable.* in syslog.conf, but I'm not seeing messages.
thanks,
jc
--
Jeff CoppockNortel Networks
Systems Engineerhttp://nortelnetworks.com
Major Accts.Santa Clara, CA
What does syslog recognize as iptables log messages? I tried
putting iptable.* in syslog.conf, but I'm not seeing messages.
thanks,
jc
--
Jeff CoppockNortel Networks
Systems Engineerhttp://nortelnetworks.com
Major Accts.Santa Clar
Jim Breton, 2001-Jul-20 20:01 +:
> On Fri, Jul 20, 2001 at 12:37:49PM -0700, Jeff Coppock wrote:
> >Do I need to dist-upgrade to woody to use iptables?
>
> Nope.
>
> http://netfilter.samba.org
>
> Compiles very easily from source. HTH.
>
I wa
Jim Breton, 2001-Jul-20 20:01 +:
> On Fri, Jul 20, 2001 at 12:37:49PM -0700, Jeff Coppock wrote:
> >Do I need to dist-upgrade to woody to use iptables?
>
> Nope.
>
> http://netfilter.samba.org
>
> Compiles very easily from source. HTH.
>
I wa
figured I could compile it on my stable
machine.
Do I need to dist-upgrade to woody to use iptables?
seeking help,
jc
--
Jeff CoppockNortel Networks
Systems Engineerhttp://nortelnetworks.com
Major Accts.Santa Clara, CA
figured I could compile it on my stable
machine.
Do I need to dist-upgrade to woody to use iptables?
seeking help,
jc
--
Jeff CoppockNortel Networks
Systems Engineerhttp://nortelnetworks.com
Major Accts.Santa Clara, CA
--
To UNSUBSCRIBE
1:0.1.9.1-1 which has the long
> known
> exploit fixed. I can't find modified binaries or any strange
> behaviour... was
> this a defeated attack? The second line says /bin/sh somewhere which
> makes me
> a bit concerned... Was I cracked?
>
> Lukas
>
--
Jeff CoppockNortel Networks
Systems Engineerhttp://nortelnetworks.com
Major Accts.Santa Clara, CA
as the long
> known
> exploit fixed. I can't find modified binaries or any strange
> behaviour... was
> this a defeated attack? The second line says /bin/sh somewhere which
> makes me
> a bit concerned... Was I cracked?
>
> Lukas
>
--
Jeff CoppockNortel Networks
Systems Engineerhttp://nortelnetworks.com
Major Accts.Santa Clara, CA
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
See inline...jc
Thusly Thwacked By Davy Gigan:
> Marco Tassinari writes:
> >
> >
> > Hallo,
> > I wonder what is the best solution for security in this ascii-art
> > network:
> >
> >
> >[router]
> > |
> >[let's call it firewall even if it's n
See inline...jc
Thusly Thwacked By Davy Gigan:
> Marco Tassinari writes:
> >
> >
> > Hallo,
> > I wonder what is the best solution for security in this ascii-art
> > network:
> >
> >
> >[router]
> > |
> >[let's call it firewall even if it's
Yoros,
I pulled this off of the Mutt list [http://www.mutt.org]
Put this in your .muttrc config file
set editor="vim -c 'set textwidth=72'"
OR add the following to your .vimrc config file:
" set the textwidth to 72 characters for replies (email&usenet)
au BufRead
Yoros,
I pulled this off of the Mutt list [http://www.mutt.org]
<[EMAIL PROTECTED]>
Put this in your .muttrc config file
set editor="vim -c 'set textwidth=72'"
OR add the following to your .vimrc config file:
" set the textwidth to 72 characters for replies (email&us
Yup, a script is creating them on exit. Thanks for the help...jc
On Sun, Apr 22, 2001 at 10:51:41AM -0500, Nathan E Norman wrote:
> On Sun, Apr 22, 2001 at 11:03:50AM -0400, Jacob Kuntz wrote:
> > from the secret journal of Nathan E Norman ([EMAIL PROTECTED]):
> > > Could be, except stdin is fd 1
Yup, a script is creating them on exit. Thanks for the help...jc
On Sun, Apr 22, 2001 at 10:51:41AM -0500, Nathan E Norman wrote:
> On Sun, Apr 22, 2001 at 11:03:50AM -0400, Jacob Kuntz wrote:
> > from the secret journal of Nathan E Norman ([EMAIL PROTECTED]):
> > > Could be, except stdin is fd
I have a strange thing happening. I keep coming across this file in directories I've
touched as root:
-rw-r--r--1 root jeff0 Apr 19 09:47 0
There's nothing in the file and I delete it whenever I come across it. This is a
laptop that only I use.
Any ideas?
thanks,
jeff
--
I have a strange thing happening. I keep coming across this file in
directories I've touched as root:
-rw-r--r--1 root jeff0 Apr 19 09:47 0
There's nothing in the file and I delete it whenever I come across it. This is
a laptop that only I use.
Any ideas?
thanks,
jeff
IOS does packet filtering, it's not stateful in any way. You won't be losing
anything by using ipchains. Depending on the system you run ipchains on and
the router you use, you could get better performance with ipchains on a fast
pentium for less money, and it sounds like you'd have more contr
IOS does packet filtering, it's not stateful in any way. You won't be losing anything
by using ipchains. Depending on the system you run ipchains on and the router you
use, you could get better performance with ipchains on a fast pentium for less money,
and it sounds like you'd have more cont
A colleague of mine successfully setup OpenLDAP and has interfaced several
server applications to it that were originally designed for Netscape Directory
Server. It's running fast and stable so far.
jc
On Sat, Mar 17, 2001 at 09:25:40AM -0700, Moe Harley wrote:
> I'm playing with the idea of a
A colleague of mine successfully setup OpenLDAP and has interfaced several server
applications to it that were originally designed for Netscape Directory Server. It's
running fast and stable so far.
jc
On Sat, Mar 17, 2001 at 09:25:40AM -0700, Moe Harley wrote:
> I'm playing with the idea of
ian F. H?gh wrote:
> Hi Jeff.
>
> My pcmcia netcard also don't work when i switch on my laptop.
> When i type ifconfig it prints:
> UP BROADCAST RUNNING
> then I enable multicast (ifconfig eth0 multicast)
> It works and ifconfig prints
> UP BROADCAST RUNNING MULTICAST
&
ian F. H?gh wrote:
> Hi Jeff.
>
> My pcmcia netcard also don't work when i switch on my laptop.
> When i type ifconfig it prints:
> UP BROADCAST RUNNING
> then I enable multicast (ifconfig eth0 multicast)
> It works and ifconfig prints
> UP BROADCAST RUNNING MULTICAST
&
I recently install snort on my laptop to check it out and now my pcmcia network
card will pass IP only when snort is running (daemon mode or not), or I have to
put my network card in promiscuous mode [#ifconfig eth0 -promisc].
I can't find any configuration that is obvious to me that would cause
I recently install snort on my laptop to check it out and now my pcmcia network card
will pass IP only when snort is running (daemon mode or not), or I have to put my
network card in promiscuous mode [#ifconfig eth0 -promisc].
I can't find any configuration that is obvious to me that would caus
79 matches
Mail list logo
