Well what you propose here is not exactly IPSec. It's an encrypted way to communicate
but not IPSec. Don't expect it to work with a Cisco router/VPN concentrator or a Win2K
machine.
FreeSwan is quite a good product, quite inter-operable with all paltforms I tested it
with. (It's been a while no
Hi,
> It's there in Sid already (maybe Woody too -- haven't checked). If
In Woody too.
> Does anyone know if xscreensaver-demo on Potato have an option like
> that?
No it hasn't.
Disabling the feature on each box would be easier at install, but I
respect the maintainer choice. Working in a R&D
On Tue, Jan 08, 2002 at 09:32:22PM -0800, J C Lawrence wrote:
> On Tue, 8 Jan 2002 10:37:10 -0700
> Stefan Srdic <[EMAIL PROTECTED]> wrote:
>
> > I was curious about IPSec and had a few questions about it. Do
> > you need more then one host on the network in order to use it?
>
> To do anything
You're absolutely correct.
Pardon for my short-sightnedness, this is a painless way of doing this
between, for example, two linux boxes. If you're considering IPSec with a
Windows machine or any devices mentioned below, I'd go with FreeS/WAN.
On Wed, 9 Jan 2002, VERBEEK, FRANCOIS wrote:
> Well
On Wed, Jan 09, 2002 at 08:16:51AM +0200, Jussi Tawaststjerna wrote:
> Howdy,
>
> If you don't want to play with FreeS/WAN or CIPE or such, you could just
> rig an ssh connection and run PPP through it. This way you don't have to
> worry about patching kernels etc. (or at most, just compile PPP s
On Wed, 9 Jan 2002, VERBEEK, FRANCOIS wrote:
> Well what you propose here is not exactly IPSec. It's an encrypted way to
>communicate but not IPSec. Don't expect it to work with a Cisco router/VPN
>concentrator or a Win2K machine.
> FreeSwan is quite a good product, quite inter-operable with
Hi!
I Have a trouble with my e-mail server. I have to change it to my domain
name and not .local ...
I need mailserver.domainname.no
Please help me
I have debian 2.2r4
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi,
Edit '/etc/hostname' to reflect the change. Then run:
hostname -F /etc/hostname
That should do it.
Best Regards,
- --
Patrick Mackey,
System Administrator
Deep House Music Organisation
http://www.deephousemusic.org
On Wed, 9 Jan 2002, Stian
I'll flame you now because you were wrong (As you requested). IPCHAINS works with
2.2, IPTABLES works with 2.4...
yes you are sizzling now
-Original Message-
From: "Howland, Curtis" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>, "Debian-Security" <[EMAIL PROTECTED]>
Date: Wed, 9 Ja
On Sat, Jan 05, 2002 at 07:09:01PM +0100, eim wrote:
> I'm planing to install a secure finger daemon
> on one of the public boxes I admin.
> Which Finger daemon is *really* secure ?
> Shouldn't I install this service at all ?
> Any experiences about compromised systems ?
http://www.fefe.de/ffin
On Thu, 10 Jan 2002 02:02:00 +1300 (NZDT)
Patrick Mackey <[EMAIL PROTECTED]> wrote:
> Edit '/etc/hostname' to reflect the change. Then run:
>
> hostname -F /etc/hostname
>
> That should do it.
You might also want to edit /etc/mailname
--
.--=-=-=-=--=---=-=
Hi,
Recently I've installed some IP logging packages like ippl.
A few days ago a lot of ICMP - destination unreachable - bad port
messages started showing up comming from my DSL router.
Unfortunatly the log shows only that they come from the router
and nothing more.
Now obviously these are replie
alright, my users don't know how to do shell, and they can't change
passwords. now, i just upgraded to squirrelmail (upgraded because i had
IMP before, barf!), which has a plugin to change the password. it's TLS
encrypted, so not too much of a problem, but in testing out poppassd,
the underlying p
also sprach Balazs Javor <[EMAIL PROTECTED]> [2002.01.09.2130 +0100]:
> Recently I've installed some IP logging packages like ippl.
> A few days ago a lot of ICMP - destination unreachable - bad port
> messages started showing up comming from my DSL router.
are you behind a firewall?
what's the e
I'm using poppassd v1.8-ceti from
http://www.ceti.com.pl/~kravietz/prog.html
It doesnt suffer from any of the problems you described below.
1) I cant use an old password, only the current password will work to
change the password
2) It is PAM aware
3) It supports MD5
I also make sure that
Hi,
Thanks for the tip about tcpdump. It seems the ntp service is
the responsible. I'll check the list of the ntp servers to see if
some of them is obsolete.
Anyway just in case I misinterpreted something...
I live in Switzerland, and I have a ZyXEL Prestige 642R DSL
router connected to the ADSL
Potato has 1.2-14 as its latest for poppasswd... I agree that
v1.8-ceti would be a better solution, especially considering the
security issues you cited. What does it take to get this version into
the security updates? A bug filed?
Micah
On Wed, 09 Jan 2002, Steve Mickeler wrote:
>
> I'm usin
also sprach Micah Anderson <[EMAIL PROTECTED]> [2002.01.10.0127 +0100]:
> Potato has 1.2-14 as its latest for poppasswd... I agree that
> v1.8-ceti would be a better solution, especially considering the
> security issues you cited. What does it take to get this version into
> the security updates?
also sprach Balazs Javor <[EMAIL PROTECTED]> [2002.01.09.2329 +0100]:
> Anyway just in case I misinterpreted something...
> I live in Switzerland, and I have a ZyXEL Prestige 642R DSL
> router connected to the ADSL line, which performs some NAT and
> firewalling. The I connect my PCs through an et
hi ya
On Wed, 9 Jan 2002, Phillip Hofmeister wrote:
> I'll flame you now because you were wrong (As you requested).
> IPCHAINS works with 2.2, IPTABLES works with 2.4...
>
and if you're really desperate
you can run ipchains with the 2.4 kernels by insmod'ing ipchains
and start your ipchains
You'll want to edit /etc/resolv.conf too.
> On Thu, 10 Jan 2002 02:02:00 +1300 (NZDT)
> Patrick Mackey <[EMAIL PROTECTED]> wrote:
> > Edit '/etc/hostname' to reflect the change. Then run:
> >
> > hostname -F /etc/hostname
> >
> > That should do it.
>
> You might also want to edit /etc/mailname
Howdy,
If you don't want to play with FreeS/WAN or CIPE or such, you could just
rig an ssh connection and run PPP through it. This way you don't have to
worry about patching kernels etc. (or at most, just compile PPP support
in, as modules if you care about your uptime ;)
http://www.linuxdoc.org/
Hi Fellows
I am having a problem with getting iptables working with
kernel 2.4.12. Getting the following error message:
Can't locate module ip_tables iptables v1.2.4: can't initialize iptables
table
`nat': Table does not exist (do you need to insmod?)
Perhaps I'm missing a module ?>
Any help wo
Please flame me if I have this backwards, but I believe ip_tables only works
under 2.2.x and earlier kernels, and the 2.4.x kernel introduced ip_chains and
is incompatible with ip_tables.
You have to use the right one, even thought the package/module for both shows
up (at least in Woody) and lo
Just the other way around, 2.2.x == ipchains, 2.4.x == iptables.
Craig, just look at your kernel, and make sure every netfilter/iptables
module is compiled/listed, and then look at your /lib/modules/2.4.12/ and
make sure everything modprobes or insmods (if they haven't already) ..
On Wed, 9 Jan 2
Oh bloody hell, I thought it might be. Trouble is, every time I look for it I
can't find it one way or the other. This time I'm going to write it down.
Curt-
> -Original Message-
> From: Jussi Tawaststjerna [mailto:[EMAIL PROTECTED]
> Sent: Wednesday, January 09, 2002 16:16
> To: How
Well what you propose here is not exactly IPSec. It's an encrypted way to
communicate but not IPSec. Don't expect it to work with a Cisco router/VPN
concentrator or a Win2K machine.
FreeSwan is quite a good product, quite inter-operable with all paltforms I
tested it with. (It's been a while now
Hi,
> It's there in Sid already (maybe Woody too -- haven't checked). If
In Woody too.
> Does anyone know if xscreensaver-demo on Potato have an option like
> that?
No it hasn't.
Disabling the feature on each box would be easier at install, but I
respect the maintainer choice. Working in a R&D
On Tue, Jan 08, 2002 at 09:32:22PM -0800, J C Lawrence wrote:
> On Tue, 8 Jan 2002 10:37:10 -0700
> Stefan Srdic <[EMAIL PROTECTED]> wrote:
>
> > I was curious about IPSec and had a few questions about it. Do
> > you need more then one host on the network in order to use it?
>
> To do anything
You're absolutely correct.
Pardon for my short-sightnedness, this is a painless way of doing this
between, for example, two linux boxes. If you're considering IPSec with a
Windows machine or any devices mentioned below, I'd go with FreeS/WAN.
On Wed, 9 Jan 2002, VERBEEK, FRANCOIS wrote:
> Well w
On Wed, Jan 09, 2002 at 08:16:51AM +0200, Jussi Tawaststjerna wrote:
> Howdy,
>
> If you don't want to play with FreeS/WAN or CIPE or such, you could just
> rig an ssh connection and run PPP through it. This way you don't have to
> worry about patching kernels etc. (or at most, just compile PPP su
On Wed, 9 Jan 2002, VERBEEK, FRANCOIS wrote:
> Well what you propose here is not exactly IPSec. It's an encrypted way to
> communicate but not IPSec. Don't expect it to work with a Cisco router/VPN
> concentrator or a Win2K machine.
> FreeSwan is quite a good product, quite inter-operable with
Hi!
I Have a trouble with my e-mail server. I have to change it to my domain
name and not .local ...
I need mailserver.domainname.no
Please help me
I have debian 2.2r4
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi,
Edit '/etc/hostname' to reflect the change. Then run:
hostname -F /etc/hostname
That should do it.
Best Regards,
- --
Patrick Mackey,
System Administrator
Deep House Music Organisation
http://www.deephousemusic.org
On Wed, 9 Jan 2002, Stian
I'll flame you now because you were wrong (As you requested). IPCHAINS works
with 2.2, IPTABLES works with 2.4...
yes you are sizzling now
-Original Message-
From: "Howland, Curtis" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>, "Debian-Security"
Date: Wed, 9 Jan 2002 16:13:56 +090
On Sat, Jan 05, 2002 at 07:09:01PM +0100, eim wrote:
> I'm planing to install a secure finger daemon
> on one of the public boxes I admin.
> Which Finger daemon is *really* secure ?
> Shouldn't I install this service at all ?
> Any experiences about compromised systems ?
http://www.fefe.de/ffing
On Thu, 10 Jan 2002 02:02:00 +1300 (NZDT)
Patrick Mackey <[EMAIL PROTECTED]> wrote:
> Edit '/etc/hostname' to reflect the change. Then run:
>
> hostname -F /etc/hostname
>
> That should do it.
You might also want to edit /etc/mailname
--
.--=-=-=-=--=---=-=-
Hi,
Recently I've installed some IP logging packages like ippl.
A few days ago a lot of ICMP - destination unreachable - bad port
messages started showing up comming from my DSL router.
Unfortunatly the log shows only that they come from the router
and nothing more.
Now obviously these are replies
alright, my users don't know how to do shell, and they can't change
passwords. now, i just upgraded to squirrelmail (upgraded because i had
IMP before, barf!), which has a plugin to change the password. it's TLS
encrypted, so not too much of a problem, but in testing out poppassd,
the underlying pa
also sprach Balazs Javor <[EMAIL PROTECTED]> [2002.01.09.2130 +0100]:
> Recently I've installed some IP logging packages like ippl.
> A few days ago a lot of ICMP - destination unreachable - bad port
> messages started showing up comming from my DSL router.
are you behind a firewall?
what's the ex
I'm using poppassd v1.8-ceti from
http://www.ceti.com.pl/~kravietz/prog.html
It doesnt suffer from any of the problems you described below.
1) I cant use an old password, only the current password will work to
change the password
2) It is PAM aware
3) It supports MD5
I also make sure that
Hi,
Thanks for the tip about tcpdump. It seems the ntp service is
the responsible. I'll check the list of the ntp servers to see if
some of them is obsolete.
Anyway just in case I misinterpreted something...
I live in Switzerland, and I have a ZyXEL Prestige 642R DSL
router connected to the ADSL
Potato has 1.2-14 as its latest for poppasswd... I agree that
v1.8-ceti would be a better solution, especially considering the
security issues you cited. What does it take to get this version into
the security updates? A bug filed?
Micah
On Wed, 09 Jan 2002, Steve Mickeler wrote:
>
> I'm using
also sprach Micah Anderson <[EMAIL PROTECTED]> [2002.01.10.0127 +0100]:
> Potato has 1.2-14 as its latest for poppasswd... I agree that
> v1.8-ceti would be a better solution, especially considering the
> security issues you cited. What does it take to get this version into
> the security updates?
also sprach Balazs Javor <[EMAIL PROTECTED]> [2002.01.09.2329 +0100]:
> Anyway just in case I misinterpreted something...
> I live in Switzerland, and I have a ZyXEL Prestige 642R DSL
> router connected to the ADSL line, which performs some NAT and
> firewalling. The I connect my PCs through an eth
hi ya
On Wed, 9 Jan 2002, Phillip Hofmeister wrote:
> I'll flame you now because you were wrong (As you requested).
> IPCHAINS works with 2.2, IPTABLES works with 2.4...
>
and if you're really desperate
you can run ipchains with the 2.4 kernels by insmod'ing ipchains
and start your ipchains
46 matches
Mail list logo
