Re: snort not recognizing dns server correctly

2002-05-16 Thread Javier Fernández-Sanguino Peña
On Mon, May 06, 2002 at 04:27:53AM -0700, Jeff wrote: dafr, 2002-May-03 10:52 -0700: Jeff, I had this problem initially as well when I reconfigured snort, until I restarted the service. Quite obvious in retrospect, but when I missed it initially, I could see others doing the same.

strange log.

2002-05-16 Thread daniel mendoza
Hello , I've got 750k of this log daily May 15 03:40:01 sm-msp-queue[16123]: STARTTLS=client, error: load verify locs /etc/ssl/certs/, /etc/mail/ssl/sendmail-server.crt failed: 0 May 15 03:40:01 sm-msp-queue[16123]: STARTTLS=client, error: load verify locs /etc/ssl/certs/,

Re: strange log.

2002-05-16 Thread Marc-Christian Petersen
On Thursday 16 May 2002 13:47, daniel mendoza wrote: Hi Daniel, May 15 03:50:01 sm-msp-queue[16143]: STARTTLS=client, error: load verify locs /etc/ssl/certs/, /etc/mail/ssl/sendmail-server.crt failed: 0 what can it be? create the SSL Certificates for sendmail or disable SSL/TLS Support

SSH

2002-05-16 Thread Pawel Romanek
Hi !! Then I was playing with sshd I had discovered that it checks only 8 (first) characters of my password, the remainder can be omitted ;) Is it normal situation or my sshd is configured incorrectly (i use default configuration from package) ? ssh -V shows: OpenSSH_3.0.2p1 Debian

Re: [d-security] SSH

2002-05-16 Thread Christian Hammers
On Thu, May 16, 2002 at 02:26:37PM +0200, Pawel Romanek wrote: Then I was playing with sshd I had discovered that it checks only 8 (first) characters of my password, the remainder can be omitted ;) That's normal for passwords using the standard unix crypt() function (like aI24pyUVhurNU in

Re: SSH

2002-05-16 Thread Peter Samek
On Thu, May 16, 2002 at 02:26:37PM +0200, Pawel Romanek wrote: Hi !! Then I was playing with sshd I had discovered that it checks only 8 (first) characters of my password, the remainder can be omitted ;) [...] Hi. I suggest you look at your PAM settings (/etc/pam.d/ssh,

unsubscribe

2002-05-16 Thread Rick Weinbender
unsubscribe -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]

unsubscribe

2002-05-16 Thread Andreas Maikisch

Re: snort not recognizing dns server correctly

2002-05-16 Thread dafr
--- Javier Fernández-Sanguino_Peña [EMAIL PROTECTED] wrote: On Mon, May 06, 2002 at 04:27:53AM -0700, Jeff wrote: dafr, 2002-May-03 10:52 -0700: Jeff, I had this problem initially as well when I reconfigured snort, until I restarted the service. Quite obvious in retrospect, but

RE: restricting outbound access?

2002-05-16 Thread Gustavo Felisberto
How about group access privileges on the offending executables? Seems to me to be the natural method of restricting access to stuff. That is no good unless you restricket adding new binaries, or building from source. Gustavo -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject

Re: SSH

2002-05-16 Thread Anne Carasik
It also depends if you've enabled MD5 passwords. If not, you can only use up to 8 characters. -Anne This one time, Pawel Romanek wrote: Hi !! Then I was playing with sshd I had discovered that it checks only 8 (first) characters of my password, the remainder can be omitted ;) Is it

unsubscribe

2002-05-16 Thread Juan Pablo Lopez
unsubscribe -- Juan Pablo Lopez P. [EMAIL PROTECTED] El Camino de los excesos lleva al templo de la Sabiduria. Jim Morrison -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]

what this message means? is any allert?

2002-05-16 Thread Csar Augusto Seronni Filho
what this message means? is any allert? May 16 14:53:29 server named[487]: lame server on '36.50.17.200.in-addr.arpa' (in '50.17.200.in-addr.arpa'?): 200.17.50.35#53 tks -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]

Re: snort not recognizing dns server correctly

2002-05-16 Thread Javier Fernández-Sanguino Peña
On Mon, May 06, 2002 at 04:27:53AM -0700, Jeff wrote: dafr, 2002-May-03 10:52 -0700: Jeff, I had this problem initially as well when I reconfigured snort, until I restarted the service. Quite obvious in retrospect, but when I missed it initially, I could see others doing the same.

strange log.

2002-05-16 Thread daniel mendoza
Hello , I've got 750k of this log daily May 15 03:40:01 sm-msp-queue[16123]: STARTTLS=client, error: load verify locs /etc/ssl/certs/, /etc/mail/ssl/sendmail-server.crt failed: 0 May 15 03:40:01 sm-msp-queue[16123]: STARTTLS=client, error: load verify locs /etc/ssl/certs/,

Re: strange log.

2002-05-16 Thread Marc-Christian Petersen
On Thursday 16 May 2002 13:47, daniel mendoza wrote: Hi Daniel, May 15 03:50:01 sm-msp-queue[16143]: STARTTLS=client, error: load verify locs /etc/ssl/certs/, /etc/mail/ssl/sendmail-server.crt failed: 0 what can it be? create the SSL Certificates for sendmail or disable SSL/TLS Support

SSH

2002-05-16 Thread Pawel Romanek
Hi !! Then I was playing with sshd I had discovered that it checks only 8 (first) characters of my password, the remainder can be omitted ;) Is it normal situation or my sshd is configured incorrectly (i use default configuration from package) ? ssh -V shows: OpenSSH_3.0.2p1 Debian

Re: SSH

2002-05-16 Thread Peter Samek
On Thu, May 16, 2002 at 02:26:37PM +0200, Pawel Romanek wrote: Hi !! Then I was playing with sshd I had discovered that it checks only 8 (first) characters of my password, the remainder can be omitted ;) [...] Hi. I suggest you look at your PAM settings (/etc/pam.d/ssh,

unsubscribe

2002-05-16 Thread Rick Weinbender
unsubscribe -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]

unsubscribe

2002-05-16 Thread Andreas Maikisch

Re: snort not recognizing dns server correctly

2002-05-16 Thread dafr
--- Javier Fernández-Sanguino_Peña [EMAIL PROTECTED] wrote: On Mon, May 06, 2002 at 04:27:53AM -0700, Jeff wrote: dafr, 2002-May-03 10:52 -0700: Jeff, I had this problem initially as well when I reconfigured snort, until I restarted the service. Quite obvious in retrospect, but

RE: restricting outbound access?

2002-05-16 Thread Gustavo Felisberto
How about group access privileges on the offending executables? Seems to me to be the natural method of restricting access to stuff. That is no good unless you restricket adding new binaries, or building from source. Gustavo -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of

Re: SSH

2002-05-16 Thread Anne Carasik
It also depends if you've enabled MD5 passwords. If not, you can only use up to 8 characters. -Anne This one time, Pawel Romanek wrote: Hi !! Then I was playing with sshd I had discovered that it checks only 8 (first) characters of my password, the remainder can be omitted ;) Is it

unsubscribe

2002-05-16 Thread Juan Pablo Lopez
unsubscribe -- Juan Pablo Lopez P. [EMAIL PROTECTED] El Camino de los excesos lleva al templo de la Sabiduria. Jim Morrison -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]

what this message means? is any allert?

2002-05-16 Thread César Augusto Seronni Filho
what this message means? is any allert? May 16 14:53:29 server named[487]: lame server on '36.50.17.200.in-addr.arpa' (in '50.17.200.in-addr.arpa'?): 200.17.50.35#53 tks -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]

RE: what this message means? is any allert?

2002-05-16 Thread Thiago Lucas
Extracted from the Bind FAQ: A lame server is a server that does not believe is it authoritative for a domain which has been delegated to it. The lame server messages can be useful if you have the lame server, or are a domain delegated to the lame server. If you would rather not see the lame