Luis M wrote:
(snip)
6. use the AllowUsers option in sshd_config and put a comma separated
list of users that are allowed to login remotely. All other users will
simply be denied access.
7. Use tcp_wrappers to allow only a handful of IPs to login remotely
to your box. If you don't have a static IP
Kjetil Kjernsmo wrote:
On Thursday 15 January 2004 17:33, Rich Puhek wrote:
Depending on what you're doing, pinning actually can work quite well.
Yup, and I do it on my workstation (not that I understand it, it is
rather magic to me).
Snort is related to you overall s
Kjetil Kjernsmo wrote:
On Thursday 15 January 2004 17:33, Rich Puhek wrote:
Depending on what you're doing, pinning actually can work quite well.
Yup, and I do it on my workstation (not that I understand it, it is
rather magic to me).
Snort is related to you overall system sec
Kjetil Kjernsmo wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Dear all,
It is an issue that's been bugging me for some time, and while I have
tried to find good reasons, I have not, so I might as well write them
down. I have a lot of respect for the security team, and I don't think
Kjetil Kjernsmo wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Dear all,
It is an issue that's been bugging me for some time, and while I have
tried to find good reasons, I have not, so I might as well write them
down. I have a lot of respect for the security team, and I don't think
I h
ed).
---
The human race is a race of cowards; and I am not only marching in that
procession but carrying a banner.
-- Mark Twain
--Rich
_____
Rich Puhek
ETN Systems Inc.
2125 1st Ave East
Hibbing MN 55746
tel: 218.262.1130
email: [EMAIL PROTECTED]
_
The human race is a race of cowards; and I am not only marching in that
procession but carrying a banner.
-- Mark Twain
--Rich
_____
Rich Puhek
ETN Systems Inc.
2125 1st Ave East
Hibbing MN 55746
tel
Adrian von Bidder wrote:
On Tuesday 16 September 2003 22:30, Rich Puhek wrote:
[mix stable/testing/unstable]
This is what I usually do - and usually, it works quite fine. Right now,
though, I've been pulling in more and more from testing/unstable since some
things depend on the new
Adrian von Bidder wrote:
On Tuesday 16 September 2003 22:30, Rich Puhek wrote:
[mix stable/testing/unstable]
This is what I usually do - and usually, it works quite fine. Right now,
though, I've been pulling in more and more from testing/unstable since some
things depend on the new glibc
eved need for a more recent version has been for security updates,
which, of course, are backported in Debian stable. Of course, YMMV.
--Rich
_
Rich Puhek
ETN Systems Inc.
2125 1st Ave East
Hibbing MN 55746
tel: 218.262.1130
email: [EMAIL PROTECTED]
_
ceved need for a more recent version has been for security updates,
which, of course, are backported in Debian stable. Of course, YMMV.
--Rich
_
Rich Puhek
ETN Systems Inc.
2125 1st Ave East
Hibbing MN 55746
tel: 218.262.1130
email: [EMAIL PROTECTED]
_
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
g is, amavis will do a better job at catching the
attachments then some of the ad hoc methods discussed earlier (see the
config section on banned filenames). Another plus is that it can be
configured to SMTP reject the message, instead of accepting and then
bouncing.
--Rich
ice thing is, amavis will do a better job at catching the
attachments then some of the ad hoc methods discussed earlier (see the
config section on banned filenames). Another plus is that it can be
configured to SMTP reject the message, instead of accepting and then
bouncing.
--Rich
__
ssword?
--Rich
_____
Rich Puhek
ETN Systems Inc.
2125 1st Ave East
Hibbing MN 55746
tel: 218.262.1130
email: [EMAIL PROTECTED]
_
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "u
omised password?
--Rich
_____
Rich Puhek
ETN Systems Inc.
2125 1st Ave East
Hibbing MN 55746
tel: 218.262.1130
email: [EMAIL PROTECTED]
_
t anyone needing to
do a lookup on the Debian servers.
That is a nice approach to handling the spam problem, but as you can
see, one must be very careful to prevent leaking the subscribed to address.
--Rich
_____
Rich Puhek
ETN Systems Inc.
2
n
from my workstation, so the continual screen updates don't distract me
with increasing packet counts).
It's also packaged for Debian.
--Rich
_____
Rich Puhek
ETN Systems Inc.
2125 1st Ave East
Hibbing MN 55746
tel: 218.26
orkstation, so the continual screen updates don't distract me
with increasing packet counts).
It's also packaged for Debian.
--Rich
_____
Rich Puhek
ETN Systems Inc.
2125 1st Ave East
Hibbing MN 55746
tel: 218.262.1130
ema
tency, but the point was to
prove that a firewall is not a guarrantee of security.
Also worth considering in your examples is RFC2549 (IP over Avian
Carriers with QoS).
--Rich
_____
Rich Puhek
ETN Systems Inc.
2125 1st Ave East
H
but the point was to
prove that a firewall is not a guarrantee of security.
Also worth considering in your examples is RFC2549 (IP over Avian
Carriers with QoS).
--Rich
_____
Rich Puhek
ETN Systems Inc.
2125 1st Ave East
Hibbing MN 55746
tel:
ust waiting
for a siren to go off, planes might not have been fuled up, planes were
most likely not armed, etc.
--Rich
_
Rich Puhek
ETN Systems Inc.
2125 1st Ave East
Hibbing MN 55746
tel: 218.262.1130
email: [EMAIL PROTECTED]
_
ion that is nearly unstoppable.
--Rich
_____
Rich Puhek
ETN Systems Inc.
2125 1st Ave East
Hibbing MN 55746
tel: 218.262.1130
email: [EMAIL PROTECTED]
_
a siren to go off, planes might not have been fuled up, planes were
most likely not armed, etc.
--Rich
_
Rich Puhek
ETN Systems Inc.
2125 1st Ave East
Hibbing MN 55746
tel: 218.262.1130
email: [EMAIL PROTECTED]
is nearly unstoppable.
--Rich
_____
Rich Puhek
ETN Systems Inc.
2125 1st Ave East
Hibbing MN 55746
tel: 218.262.1130
email: [EMAIL PROTECTED]
_
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
l see Debian listed there eventually.
--Rich
_____
Rich Puhek
ETN Systems Inc.
2125 1st Ave East
Hibbing MN 55746
tel: 218.262.1130
email: [EMAIL PROTECTED]
_
the same early notification of vulnerabilities as RedHat,
SuSe, and other vendors. As mentioned in another thread, Debian didn't
appear to be on the list of vendors notified by CERT (see
http://www.cert.org/advisories/CA-2003-07.html).
-- Rich
___
'll see Debian listed there eventually.
--Rich
_____
Rich Puhek
ETN Systems Inc.
2125 1st Ave East
Hibbing MN 55746
tel: 218.262.1130
email: [EMAIL PROTECTED]
_
--
To UNSUBSCRIBE, email
ly notification of vulnerabilities as RedHat,
SuSe, and other vendors. As mentioned in another thread, Debian didn't
appear to be on the list of vendors notified by CERT (see
http://www.cert.org/advisories/CA-2003-07.html).
-- Rich
_____
d get what you need on a cisco. Might have to set that serial port
to no password, which brings up an additional home if physical security
is a concern.
--Rich
_
Rich Puhek
ntab like
>
> ssh server script
>
> but I need the IP address i'm connecting from in the shell script and
> the address is assigned dynamically.
>
> thanks
>
> ~ejg
--
_____
Rich Puhek
ETN Systems Inc.
_
t a crontab like
>
> ssh server script
>
> but I need the IP address i'm connecting from in the shell script and
> the address is assigned dynamically.
>
> thanks
>
> ~ejg
--
_____
any feedback any of you might provide. I read the list,
> or you can send email privately to <[EMAIL PROTECTED]>.
>
> Thanks!
>
--
_____
Rich Puhek
ETN Systems Inc.
_
back any of you might provide. I read the list,
> or you can send email privately to <[EMAIL PROTECTED]>.
>
> Thanks!
>
--
_____
Rich Puhek
ETN Systems Inc.
__
...)
>
> Thanks for hearing me out. I could be very wrong on all of this. (Sorry if
> I am) I would just like to know why this hasn't been implemented in UNIX.
> (Actually, I did once hear about some patch to the LInux kernel that did
> something similar, but I have yet to fin
...)
>
> Thanks for hearing me out. I could be very wrong on all of this. (Sorry if
> I am) I would just like to know why this hasn't been implemented in UNIX.
> (Actually, I did once hear about some patch to the LInux kernel that did
> something similar, but I have yet to fin
35 matches
Mail list logo
