You should probably check that your interrupts are enabled during disk access.
-Original Message-
From: Meir Michanie [mailto:[EMAIL PROTECTED]
Sent: Tuesday, July 01, 2003 10:53 PM
To: Linux Mailing-List
Subject: Making linux behave as a real multiuser multitask os.
Hi, here is my probl
Quoth Arik Baratz on Tue, Jul 01, 2003:
> Whoever you are PLEASE OH PLEASE make sure the envelope FROM is blank when they send
> system messages. Today they are sending me tons of messages, replying to the error
> message my server sends when the user does not exist.
What kind of system messages
On Tue, Jul 01, 2003 at 10:52:47PM +0300, Meir Michanie wrote:
> Hi, here is my problem:
> There are times that when I am ripping a movie, or doing something else like opening
> mozilla ( as a regular user)
> my computer freezes. Not even a BSOD.
This does not appear to be the wrk of runaway CPU-
Just to add something to the web pages that support open standards,
debate I would like to point to "www.virginradio.co.uk".
Not only does their website work with Mozilla. they have a "listen live"
page that works with Linux.
There are four different streams that are available, all of them are
av
Hi, here is my problem:
There are times that when I am ripping a movie, or doing something else like opening
mozilla ( as a regular user)
my computer freezes. Not even a BSOD.
even if run the script with nice 10.
in the file /etc/security/limits.conf you can setup:
"cpu - max CPU time (MIN)" or "n
On Tuesday 01 July 2003 18:04, Nadav Har'El wrote:
NH>Paranoids (like me, for example) use several lines of defense.
NH>
NH>For example, here are 3 lines of defense:
That's exactly what I used (and use) before my paranoia progressed and i
started messing up with NIDS as a fourth line of defense
On Tuesday 01 July 2003 18:40, Mycroft wrote:
> AJ>
> AJ>If you want that functionality, google for "portsentry".
>
> Erm...it appears (to me at least) that portsentry has all the firewall
> ruleset blocking "functionality" that you recommended against
I *don't* recommend blocking hosts by detect
On Tuesday 01 July 2003 16:35, Shachar Shemesh wrote:
SS>
SS>The bottom line is this - if you have no open source, why do you care
SS>whether you are scanned?
SS>This mail brought to you by the person responsible for Check Point not
SS>sporting any easy-to-configure automatic retaliation system,
On Tuesday 01 July 2003 18:11, Aviram Jenik wrote:
AJ>
AJ>If you want that functionality, google for "portsentry".
Erm...it appears (to me at least) that portsentry has all the firewall ruleset
blocking "functionality" that you recommended against with the addition of
rather questionable detect
On Tuesday 01 July 2003 15:58, Mycroft wrote:
>
[snip]
> This box is my networked workstation at home, and i
> don't have open server ports. I'm merely dealing with a number of script
> kiddies that think scanning and DOSing people they meet on IRC channels
> makes them all-powerful.
[snip]
> howe
On Tue, Jul 01, 2003, Shachar Shemesh wrote about "Re: Snort - iptables addon":
> The bottom line is this - if you have no open source, why do you care
> whether you are scanned?
Paranoids (like me, for example) use several lines of defense.
For example, here are 3 lines of defense:
1. Run no
Hi,
On Tuesday 01 July 2003 17:46, josh wrote:
> > Your IDS will not block a simple connect scan (AFAIR snort does not save
> > packets and does not know that this is the 10,000th port in a row you are
> > trying to reach)
>
> FYI the portscan2 preprocessor on snort 2.0 tracks connection states.
who said a regular portscan is illegal?
and the portscans that are, surely, you can catch those because they are too brutish.
besides, if its so slow, then it shouldn't make a dent on your server performance.
* - * - *
Tzahi Fadida
[EMAIL PROTECTED]
Technion Email: [EMAIL PROTECTED]
* - * - * - *
On Tue, 1 Jul 2003, Aviram Jenik wrote:
> "Idle scan" will actually work quite nicely here (I'm sure one of the servers
> written above has its idle moments), but that's not the way I would approach
> it as an attacker.
> Your IDS will not block a simple connect scan (AFAIR snort does not save
> p
Mycroft wrote:
Well I'm not securing a corporate web server here, most probably if i were,
I'd choose other means of security responce. Leaving it to professionals is
always a good idea :)). This box is my networked workstation at home, and i
don't have open server ports. I'm merely dealing wit
On Tuesday 01 July 2003 15:11, Tzafrir Cohen wrote:
TC>And suppose I don't really need the results of those scan? And this is
TC>all done just to make you block some computers?
TC>
TC>What traffic can someone make you drop?
TC>
What harm could that do? I do realize that you are right about the pot
On Tuesday 01 July 2003 15:18, Aviram Jenik wrote:
AJ>
AJ>(if my irony went undetected, I would really recommend against this
AJ>hair-triggered blocking system)
AJ>
Hmm, I am a big fan of constructive feedback. Don't we all?
AJ>"Idle scan" will actually work quite nicely here (I'm sure one of the
On Tuesday 01 July 2003 14:43, Mycroft wrote:
> On Tuesday 01 July 2003 10:13, Tzafrir Cohen wrote:
>
> TC>What happens if I spoof a portscan from a different address? Do you
> TC>block it? Now what was the IP of your DNS server?
> TC>
> That's what the "preprocessor portscan2-ignorehosts:" and "pr
On Tue, Jul 01, 2003 at 02:43:01PM +0300, Mycroft wrote:
> On Tuesday 01 July 2003 10:13, Tzafrir Cohen wrote:
>
> TC>What happens if I spoof a portscan from a different address? Do you
> TC>block it? Now what was the IP of your DNS server?
> TC>
> That's what the "preprocessor portscan2-ignorehos
On Tuesday 01 July 2003 10:13, Tzafrir Cohen wrote:
TC>What happens if I spoof a portscan from a different address? Do you
TC>block it? Now what was the IP of your DNS server?
TC>
That's what the "preprocessor portscan2-ignorehosts:" and "preprocessor
portscan-ignorehosts:" sections in the /etc/s
Ahoy,
Does anyone happen to know whether the CNet CNWLC-811 (AKA CNWLC-811-5V)
801.11b PCMCIA card works under Linux, and with drivers? It's based on
the Prism chipset. The web site claims Linux support and provides some
drivers, but the only relevant post I found claims they silently fail.
There
Micha Feigin wrote on 2003-06-30:
> How do I get xterm to show hebrew file names ?
>
First, what does ``locale`` show you? And what's the encoding of the
file names.
> I set the font properly, but I get the files appearing as a bunch of
> question marks (_??.html)
>
In the output of ``ls``,
> -Original Message-
> From: Aviram Jenik [mailto:[EMAIL PROTECTED]
[snip]
> They are therefore looking for someone to do this transition
> for them. In
> general, this means installing the machine, and configuring
> the applications,
> but also integrating with their current system (
On 2003-06-30 Shimon Panfil wrote:
> Hi folks,
> I am trying to use procmail all seems OK but mutt says that that
> "var/spool/mail/.. is not mailbox". Actually it is text file which looks (to
> my unexperienced eye) as mbox.
> Any idea
You can also try "mutt -f full.path.to.mbox", to see if the
How do I get xterm to show hebrew file names ?
I set the font properly, but I get the files appearing as a bunch of
question marks (_??.html)
When I press the tab for autocomplete though the filenames do apear
properly, but I can't do anything with those files.
When connecting through ftp usi
On Tue, Jul 01, 2003 at 02:14:12AM +0300, Mycroft wrote:
> Hello,
> Have anyone heard of/used an snort add-on that could manage iptables firewall
> in responce to a specific network events...like portscans or DOS attacks?
What happens if I spoof a portscan from a different address? Do you
block i
26 matches
Mail list logo
