syslog.conf question

tch it back, then it will log to the syslog and the /var/log/mail/ dir too. What did I do wrong? Thanks! Daniel -- LeVA

restricting process limit

the ulimit function in bash. But what else could I do? Thanks a lot! Daniel -- LeVA

what process is using a port

Hi! Is there a way to figure out what program is using a port. For example I want to know which process is using port 80. How can I do this? ps.: and another tiny question: Is it possible to see if a symlink is pointing at a given file? Thanks! Daniel -- LeVA pgpys9DERUZ4Q.pgp

Re: what process is using a port

Wow, thanks for all the answers. I really appreciate it! Daniel -- LeVA pgpFpG8NgrnLc.pgp Description: signature

logging samba access

Hi! Is it possible to log the file/dir accesses to samba server? I.e. I got a share, and when someone mounts (from win or unix) it and access file, or write files I want samba to log it to the smb.log. Is this possible? Thanks! Daniel -- LeVA pgp1uiUEsQUo6.pgp Description: signature

Re: logging samba access

arty because of protocol nature, but not that much > ). > > btw, I'd be very interested if someone knew solution to this that > does not require modifying samba source and then maintaining your own > packages... I think increasing the log level is quite enough for me. Thanks! Daniel -- LeVA pgpaK13c71bwY.pgp Description: signature

tuning the samba log file

om me? Thanks! Daniel -- LeVA -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

can not connect to sshd

in, I can connect to the machine. What could be the problem? Thanks! Daniel -- LeVA -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: Request for comments: iptables script for use on laptops.

n one can spoof anything else, so creating any rule with an ip address matching is useless. No? If I set up my firewall to accept only my local network (eg. -s 192.168.0.0/255.255.255.0) connecting to a port (eg. smtp), then anyone can spoof that too. So what's the point of creating rules? :) Daniel -- LeVA

Re: Request for comments: iptables script for use on laptops.

2006. május 23. 10:06, Rolf Kutz <[EMAIL PROTECTED]> -> debian-security@lists.debian.org,: > * Quoting LeVA ([EMAIL PROTECTED]): > > > iptables -A INPUT -i lo -j ACCEPT > > > iptables -A OUTPUT -o lo -j ACCEPT > > > > But if one can spoof 127.0

editing "new" known_hosts files

Hi! I have reinstalled a server of mine, and now I need to remove it's old pubkey from my $HOME/.ssh/known_hosts, but it is in the "new" format, so no hostnames which may indicate which pubkey belongs to which host. How can I "decrypt" the known_hosts file? Thanks!

"su -" and "su" - what is the real difference?

n the "real world") between running `su` (getting a non-login shell) and `su -` (getting a login shell). Is there a security related problem with any of the invokings above? AFAIK the real and effective uids are always set to 0 after both commands. Thanks! Daniel -- LeVA -- To UNSUBS

Re: "su -" and "su" - what is the real difference?

2006. July 28. 16:04, Michael Marsh: > On 7/28/06, LeVA <[EMAIL PROTECTED]> wrote: > > Here comes a lame question yes I know, but I need to hear the > > experiences and opinions about this. > > I've read thru a number of documents which described the > > diff

Re: "su -" and "su" - what is the real difference?

2006. July 28. 16:04, Michael Marsh: > On 7/28/06, LeVA <[EMAIL PROTECTED]> wrote: > > Here comes a lame question yes I know, but I need to hear the > > experiences and opinions about this. > > I've read thru a number of documents which described the > > diff

Re: "su -" and "su" - what is the real difference?

2006. July 28. 17:03, Florent Rougon: > LeVA <[EMAIL PROTECTED]> wrote: > > And can you tell me why the $USER and the $LOGNAME variables gets > > resetted by su, no matter if I've invoked it with or without the > > '-' option? > > Which suite are y

what is this "postponed publickey for user" in the logs?

error message, but I'm curious about what does it mean. Maybe this is just a "lost in translation" thing, and I'm not getting the right meaning of that word. I've translated the english "postponed" word in this context to "delayed". Is this right? Tha

Re: PTRACE Fixed?

Hello! Is the 2.4.20 kernel vulnerable to this exploit? Phillip Hofmeister wrote: All, I just patched my kernel with the patch available on kernel.org. I downloaded, compiled and ran the km3.c exploit for this bug. How can I tell if the exploit failed or not? When I run the exploit as non-r

ptrace

Hello! I have patched my kernel (2.4.20) with this patch: http://www.kernel.org/pub/linux/kernel/v2.4/testing/cset/cset-1.1076.txt It compile correctly. Now I have downloaded the km3.c and isec-ptrace-kmod-exploit.c The km3.c doesn't write the OK! stuff, and it could run forever starting child

Re: [despammed] ptrace

Hello! Thanks, that was the problem. The patch works fine. Ed McMan wrote: Saturday, March 22, 2003, 8:26:44 PM, debian-security@lists.debian.org (debian-security) wrote: LeVA> So it droped me a root shell. Well it is not good I think, after the LeVA> patch... People have been sayin

sendmail + mailscanner

Hello! I know this is not specially a security topic, but I need to do this for My security :)) I'm using sendmail, and I want to use mailscanner and spamassassin with it. I don't know how to configure sendmail to work with mailscanner. The mailscanner's howtos are very outdated, and in the ma

kind of virtual server

ebian to read a different shadow/passwd file right after the connection (not after chrooting to /users/). Thanks! Daniel -- LeVA

creating password for a shadow file

ion is, that is it possible to create passwords for a shadow file with a command line tool? Is this htpasswd the right tool for this, and I just can not use it? Or if this is not possible, then how can I specify another destination shadow/passwd file for the adduser/useradd program. Thanks! Daniel -- LeVA

GnuPG can not read some pgp signatures

guys. What could be the problem with the other signature files? If it helps, I can send you a signature, which is not working. Thanks for the help! Daniel -- LeVA

Re: GnuPG can not read some pgp signatures

2004. január 06. 19:17 dátummal J.H.M. Dassen (Ray) ezt írta: > On Tue, Jan 06, 2004 at 19:06:50 +0100, LeVA wrote: > > But there are not any gpg-idea packages anywhere. > > IDEA is patent encumbered in much of Europe, including The > Netherlands where non-us.debian.org is hos

Re: GnuPG can not read some pgp signatures

t raw | > <http://www.lpr.ch> | IP? -> <http://www.rawip.org> | > eMail Style Guide: <http://www.rawip.org/style.html>| -- LeVA

Re: GnuPG can not read some pgp signatures

Wednesday 07 January 2004 08:34 dátummal Adrian 'Dagurashibanipal' von Bidder ezt írta: > Clinging to sanity, LeVA mumbled in his beard: > > Reason: No appropriate crypto plug-in was found." > > Hi, > > I guess that your problem is NOT idea, but inline gpg sign

Re: GnuPG can not read some pgp signatures

2004. január 07. 15:47 dátummal Adeodato Simó ezt írta: > * LeVA [Wed, 07 Jan 2004 11:59:25 +0100]: > > Wednesday 07 January 2004 08:34 dátummal Adrian 'Dagurashibanipal' > > von > > > > Bidder ezt írta: > > > Clinging to sanity, LeVA mumbled in hi

cvs newpg compile error

vs libgpg-error, libksba, libgcrypt, libassuan and dirmngr sources before that newpg. What could be the problem with it? Thanks! Daniel -- LeVA

blocking AXFR record query

Hi! Anyone could tell me how could I deny the AXFR record query on my bind server? I'm looking for some global variable, not specifiing per-address. Thanks! Daniel -- LeVA

Re: [ [Dri-devel] XFree86 local root exploit]

2004. február 12. 19:45 dátummal Ryan Underwood ezt írta: Thanks a lot! Daniel -- LeVA

can't see anything with 'w'

r/log files, so I temporarely switched the attributes to 664 in all files, but still can not display the logged in users. Any ideas? Thanks! Daniel -- LeVA

Re: can't see anything with 'w'

gt; Telephone: +34 93 582 02 90 > Email: [EMAIL PROTECTED] > Website: http://www.competitiveness.com > > Hi! Thanks! I had to swith the /var/run/utmp file to o=r. Now it works. Daniel -- LeVA

get ip from samba

Hi! Is there a way to get a machine's ip address, if I only know it's netbios name? With 'smbtree -S' I see a machine with the name 'LEVA': $ smbtree -S Password: CMD \\LEVA LeVA - Samba Server (3.0.2a-Debian) But I want to know it

chrooted apache-ssl

What else could be the problem? Thanks! Daniel -- LeVA

Re: passwords changed?

ust curious, that if my proftpd runs as user 'ftp', than the one who uses this vulnerability could only run arbitrary code as user ftp, or as root? Thanks! Daniel -- LeVA

Re: passwords changed?

2004. április 11. 06:21 dátummal Noah Meyerhans ezt írta: > On Sat, Apr 10, 2004 at 09:19:00PM +0200, LeVA wrote: > > Only as ftp. But there have been a number of locally exploitable > kernel vulnerabilities fairly recently, and an attacker could use one > of these to obtain root a

can not kill a process

e. Thanks! Daniel -- LeVA

Re: PTRACE Fixed?

Hello! Is the 2.4.20 kernel vulnerable to this exploit? Phillip Hofmeister wrote: All, I just patched my kernel with the patch available on kernel.org. I downloaded, compiled and ran the km3.c exploit for this bug. How can I tell if the exploit failed or not? When I run the exploit as non-roo

ptrace

Hello! I have patched my kernel (2.4.20) with this patch: http://www.kernel.org/pub/linux/kernel/v2.4/testing/cset/cset-1.1076.txt It compile correctly. Now I have downloaded the km3.c and isec-ptrace-kmod-exploit.c The km3.c doesn't write the OK! stuff, and it could run forever starting child p

Re: [despammed] ptrace

Hello! Thanks, that was the problem. The patch works fine. Ed McMan wrote: Saturday, March 22, 2003, 8:26:44 PM, [EMAIL PROTECTED] (debian-security) wrote: LeVA> So it droped me a root shell. Well it is not good I think, after the LeVA> patch... People have been saying that one

kind of virtual server

ebian to read a different shadow/passwd file right after the connection (not after chrooting to /users/). Thanks! Daniel -- LeVA -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

creating password for a shadow file

, that is it possible to create passwords for a shadow file with a command line tool? Is this htpasswd the right tool for this, and I just can not use it? Or if this is not possible, then how can I specify another destination shadow/passwd file for the adduser/useradd program. Thanks! Daniel

GnuPG can not read some pgp signatures

guys. What could be the problem with the other signature files? If it helps, I can send you a signature, which is not working. Thanks for the help! Daniel -- LeVA -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: GnuPG can not read some pgp signatures

t raw | > <http://www.lpr.ch> | IP? -> <http://www.rawip.org> | > eMail Style Guide: <http://www.rawip.org/style.html>| -- LeVA -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: GnuPG can not read some pgp signatures

2004. január 06. 19:17 dátummal J.H.M. Dassen (Ray) ezt írta: > On Tue, Jan 06, 2004 at 19:06:50 +0100, LeVA wrote: > > But there are not any gpg-idea packages anywhere. > > IDEA is patent encumbered in much of Europe, including The > Netherlands where non-us.debian.org is hos

Re: GnuPG can not read some pgp signatures

Wednesday 07 January 2004 08:34 dátummal Adrian 'Dagurashibanipal' von Bidder ezt írta: > Clinging to sanity, LeVA mumbled in his beard: > > Reason: No appropriate crypto plug-in was found." > > Hi, > > I guess that your problem is NOT idea, but inline gpg sign

Re: GnuPG can not read some pgp signatures

2004. január 07. 15:47 dátummal Adeodato Simó ezt írta: > * LeVA [Wed, 07 Jan 2004 11:59:25 +0100]: > > Wednesday 07 January 2004 08:34 dátummal Adrian 'Dagurashibanipal' > > von > > > > Bidder ezt írta: > > > Clinging to sanity, LeVA mumbled in hi

cvs newpg compile error

vs libgpg-error, libksba, libgcrypt, libassuan and dirmngr sources before that newpg. What could be the problem with it? Thanks! Daniel -- LeVA -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

blocking AXFR record query

Hi! Anyone could tell me how could I deny the AXFR record query on my bind server? I'm looking for some global variable, not specifiing per-address. Thanks! Daniel -- LeVA -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: [ [Dri-devel] XFree86 local root exploit]

2004. február 12. 19:45 dátummal Ryan Underwood ezt írta: Thanks a lot! Daniel -- LeVA -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

can't see anything with 'w'

r/log files, so I temporarely switched the attributes to 664 in all files, but still can not display the logged in users. Any ideas? Thanks! Daniel -- LeVA -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: can't see anything with 'w'

gt; Telephone: +34 93 582 02 90 > Email: [EMAIL PROTECTED] > Website: http://www.competitiveness.com > > Hi! Thanks! I had to swith the /var/run/utmp file to o=r. Now it works. Daniel -- LeVA

get ip from samba

Hi! Is there a way to get a machine's ip address, if I only know it's netbios name? With 'smbtree -S' I see a machine with the name 'LEVA': $ smbtree -S Password: CMD \\LEVA LeVA - Samba Server (3.0.2a-Debian) But I want to know it

Re: passwords changed?

ust curious, that if my proftpd runs as user 'ftp', than the one who uses this vulnerability could only run arbitrary code as user ftp, or as root? Thanks! Daniel -- LeVA

Re: passwords changed?

2004. április 11. 06:21 dátummal Noah Meyerhans ezt írta: > On Sat, Apr 10, 2004 at 09:19:00PM +0200, LeVA wrote: > > Only as ftp. But there have been a number of locally exploitable > kernel vulnerabilities fairly recently, and an attacker could use one > of these to obtain root a

can not kill a process

e. Thanks! Daniel -- LeVA -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

syslog.conf question

tch it back, then it will log to the syslog and the /var/log/mail/ dir too. What did I do wrong? Thanks! Daniel -- LeVA -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

restricting process limit

the ulimit function in bash. But what else could I do? Thanks a lot! Daniel -- LeVA -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

what process is using a port

Hi! Is there a way to figure out what program is using a port. For example I want to know which process is using port 80. How can I do this? ps.: and another tiny question: Is it possible to see if a symlink is pointing at a given file? Thanks! Daniel -- LeVA pgp0.pgp Description

Re: what process is using a port

Wow, thanks for all the answers. I really appreciate it! Daniel -- LeVA pgp0.pgp Description: signature

logging samba access

Hi! Is it possible to log the file/dir accesses to samba server? I.e. I got a share, and when someone mounts (from win or unix) it and access file, or write files I want samba to log it to the smb.log. Is this possible? Thanks! Daniel -- LeVA pgpvLB2l18Lxu.pgp Description: signature

Re: logging samba access

arty because of protocol nature, but not that much > ). > > btw, I'd be very interested if someone knew solution to this that > does not require modifying samba source and then maintaining your own > packages... I think increasing the log level is quite enough for me. Thanks! Daniel -- LeVA pgpoeScU65KgD.pgp Description: signature

vsftpd virtual user

I can not figure out how to make those passwd files. Thanks! Daniel -- LeVA pgp9qlMQgD9i3.pgp Description: PGP signature

debian patched linux kernels

Hi! Is the debian patched kernels are preferred for server/desktop use, or they are just minor cosmetic patches? what is the difference between the kernel.org's kernel source and the debian patched kernel sources? Daniel -- LeVA pgpcftXGXmcM3.pgp Description: PGP signature

upgrading sendmail package when postfix installed

"fake" the sendmail installation, so apt-get would see that sendmail has been upgraded, or do I have upgrade sendmail (for security reasons) and then re-install postfix all over again? Thanks! Daniel -- LeVA pgpGRZ6W2bkkj.pgp Description: PGP signature

secure ident daemon

Hi! Can someone please suggest me a secure ident daemon. I can not choose from the apt searched list. Thanks! Daniel -- LeVA -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

which pop3/imap secure method should I use?

s for authentication. My mail user agent supports all of the above, so I would really appreciate if someone could tell me which configuration is the most secure way. Thanks! Daniel -- LeVA -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble?

Re: which pop3/imap secure method should I use?

2005. június 14. 01:36, Ian Eure <[EMAIL PROTECTED]> -> debian-security@lists.debian.org,: > On Monday 13 June 2005 04:23 pm, LeVA wrote: > > Hi! > > > > I've configured a courier-imap server with pop3(-ssl) and imap(-ssl) > > support. Now I can not decide

Re: which pop3/imap secure method should I use?

2005. június 14. 07:57, Radu Spineanu <[EMAIL PROTECTED]> -> debian-security@lists.debian.org,: > Ian Eure wrote: > >> On Monday 13 June 2005 04:41 pm, LeVA wrote: > >> I don't see why it would be helpful, unless you're trying to keep > > your in

getting the MAC address from an ip

Hi! How can I get a machines mac address, if I only know it's ip? Thanks! Daniel -- LeVA -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]