Bruno Fernandes wrote:
Nop the issue is related with netflow switching as you now the
logic here is route one switch many this is done using MLSP wich
is protocol used between the MSFC (L3 engine) and in your case Sup 1A
(L2 engine), as soon as a flow is edentified the packet's belonging
Title: Please help explain VACL/ACL Performance Impact Differences
-Mensagem original- De: Gary Flynn
[mailto:[EMAIL PROTECTED]] Enviada: sex 07-06-2002 21:16
Para: [EMAIL PROTECTED] Cc: Assunto:
Please help explain VACL/ACL Performance Impact Differences
Hi
Hi,
Is a packet filter still considered relevant discussion here? :)
I'm being asked to convert our Cisco IOS ACLs to VACLs to decrease
the performance impact on our routers. However, reading the
implementation documentation (instead of the sales literature)
makes me question whether there will
Unless the network is lying to me again, Vishal Mukherjee said:
We have a catch-all account with an ISP and our exchange server dial out to
the Internet and connects the ISP's server and fetches the mails which is
then distributed to the respective mailbox.
[...]
There will be no surfing
On Thu, 16 May 2002, Alan B. Clegg wrote:
Unless the network is lying to me again, Vishal Mukherjee said:
We have a catch-all account with an ISP and our exchange server dial out to
the Internet and connects the ISP's server and fetches the mails which is
then distributed to the
]
To subscribe or unsubscribe via the World Wide Web, visit
http://lists.gnac.net/mailman/listinfo/firewalls
or, via email, send a message with subject or body 'help' to
[EMAIL PROTECTED]
You can reach the person managing the list at
[EMAIL PROTECTED]
When replying, please
Hi All Gurus,
I have a Typical problem and looking out for help from all you geniuses.
We have a catch-all account with an ISP and our exchange server dial out to
the Internet and connects the ISP's server and fetches the mails which is
then distributed to the respective mailbox.
The IP
]
.com
cc:
Sent by:
Subject: SMTP Problem - HELP
firewalls-admin@list
s.gnac.net
09/04/2002 13:57
This is a bit OT but I'm
]]
Sent: Wednesday, 17 April 2002 3:32 AM
To: Ron DuFresne; Alexander.O'[EMAIL PROTECTED];
[EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]; [EMAIL PROTECTED];
[EMAIL PROTECTED]
Subject: Re: SMTP Problem - HELP
[...]
___
Firewalls mailing list
[EMAIL PROTECTED
I've got a pair of NetScreen 5xp boxes that I am
trying to setup as a proof of concept experiment. Right now I can only
"play" with them on my local network behind my fireway (192.168.x.x). I am
following the examples given in Chapter 7 of the Concepts Examples file on
the NetScreen
Is there any way to monitor VPN access to these guys? I need
to know how many connections, traffic, things like that. Can I set idle
timeouts?
We
have some people having trouble, and it sounds like resource issues, but I am
not sure how to determine what is even in use. Cisco's docs are
Matthew Carpenter wrote:
body lang=EN-US link=navy vlink=#004000
div class=Section1p class=MsoNormalfont size=2 face=Arialspan
style='font-size:10.0pt;font-family:Arial'Is there any way to monitor
VPN access to these guys? I need to know how many connections, traffic,
things like
up and more
or less self sufficient in about 30 minutes.
Joe
-Original Message-From:
[EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On
Behalf Of Trader's ParadiseSent: Thursday, April 25, 2002 8:15
AMTo: [EMAIL PROTECTED]Subject: VPN newbie needs
some help
I've got a pair
Title: RE: PIX 515 HELP
VPN users on the PIX 515
Idle timeouts on VPN users on the PIX 515
Are there ways to monitor the traffic through the VPN? I.e. # of users, bandwidth, resources used, blah blah
-Original Message-
From: Mikael Olsson [mailto:[EMAIL PROTECTED]]
Sent
]
.com cc:
Sent by:Subject: SMTP Problem - HELP
firewalls
]
.com cc:
Sent by:Subject: SMTP Problem - HELP
firewalls-admin@list
s.gnac.net
09/04/2002 13:57
This is a bit OT but I'm desperate to find
firewally2002@yahoo To: [EMAIL PROTECTED]
.com cc:
Sent by: Subject: SMTP Problem - HELP
for the OT response folks ... we now return you to your regular
firewall problems ...
Lance
- Original Message -
From: Rick Brown [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Tuesday, April 09, 2002 8:57 AM
Subject: SMTP Problem - HELP
This is a bit OT but I'm desperate to find an answer
This is a bit OT but I'm desperate to find an answer.
I have a W2K server in my DMZ running SMTP relay mail
to an internal mail server. I'm seeing occasional
delivery failures with the following error:
Reporting-MTA: dns;mail.mycompany.com
Received-From-MTA: dns;mail.othercompany.com
hi all
i want to know more about firwalls in detail.right from the various attacks , solutions, implementation . it iwll be better all these issues are related to wireless network(if possible).
if anyone can provide me with cool links that will satisfy my thirst, it will be of great help
michael
(if possible).
if anyone can provide me with cool links that will satisfy my thirst, it
will be of great help
michael inies
He who knows his own self, knows God.
The world is the great gymnasium where we come to make ourself strong.
ARISE! AWAKE! STOP NOT TILL THE GOAL IS REACHED
AMEN
Faq
http://kubarb.phsx.ukans.edu/~tbird/vpn/FAQ.html.
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]]On Behalf Of Michael Inies
Sent: Wednesday, March 20, 2002 2:27 PM
To: [EMAIL PROTECTED]
Subject: help plzz
hi all
i want to know more about firwalls
the World Wide Web, visit
http://lists.gnac.net/mailman/listinfo/firewalls
or, via email, send a message with subject or body 'help' to
[EMAIL PROTECTED]
You can reach the person managing the list at
[EMAIL PROTECTED]
When replying, please edit your Subject line so it is more
This is a reverse lookup issue probably. Make sure you have PTR records in
DNS for your internal servers.
-Mike
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]
Sent: Friday, March 08, 2002 5:41 AM
To: Firewall list
Subject: Lil Help
HI,
I am doin a NAT
HI,
I am doin a NAT on a Cisco 2610 router. Users are facing no problems
accessing the Internet world. Problem is when they do a telnet to any machine
internal havin public IPs. the telnet returns the Crtl+] but then it hangs for
some time (say about a min or so) and then gives the
Got apache_1.3.22+ssl_1.45 and openssl-0.9.5a. Ran Fixpatch on apache-ssl
which is a script that patches the apache-ssl tree.
Gary.
- Original Message -
From: Don Woodward [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: February 27, 2002 2:02 PM
Subject: Re: [apache-ssl] Please help
the World Wide Web, visit
http://lists.gnac.net/mailman/listinfo/firewalls
or, via email, send a message with subject or body 'help' to
[EMAIL PROTECTED]
You can reach the person managing the list at
[EMAIL PROTECTED]
When replying, please edit your Subject line so it is more
(EST)
From: Jose Nazario [EMAIL PROTECTED]
To: jennyw [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]
Subject: Re: Please help w/ ipchains log
On Sat, 17 Nov 2001, jennyw wrote:
My interpretation is that several computers, all within the 171.66.x.x
subnet are attempting access to my computer
: Help to analyze the pop3 protocol
Bruno:
I have following code in iptables rules, this might be more appropriate.
# AUTH server
# Reject ident probes with a tcp reset
# Need to reset instead of drop for smtp, ftp, ssh and etc.
#
$IPTABLES -A INPUT -i $WAN_IFACE -p tcp
If I may asnwer that question
Resetting the connection will help continue the mail process...
If you drop it... the process will continue after the connection
is timed out...
Resetting will speed up the delivery or retrieval of mail.
Regards,
Brenno
-Original Message
Hy, i'm using a redhat linux with 2 ethernet interfaces and iptables +
ipmasquerading.
I made a tcpdump of a connection between a masqueraded client machine
(192.168.13.10) and my external pop3 server (falcon.etcetera). The
firewall's name is 15bis.etcetera.com.br
What I found interesting was a
Hi,
The auth protocol is a session between identd's on the
respective machines. Its purpose and protocol are
described in RFC-1413. If you specifically disable it,
on the firewall, then the pop3 session will wait until
it times-out (from the server side) before it continues.
Most people
Actually you have several choices on how to handle identd. (there are
religious implications about the use of identd, so I'm only addressing the
technical aspects) Your choices are to permit identd to pass through your
firewall, drop identd, or reject identd.
Here are the implications of
: Skough Axel U/IT-S [EMAIL PROTECTED]
To: 'Bruno Negrão' [EMAIL PROTECTED]
Sent: Monday, January 14, 2002 10:51 AM
Subject: RE: Help to analyze the pop3 protocol
Hello,
The AUTH protocol is used by some servers on the Internet to verify the
connecting client. Your firewall should in general allow
without a process binded to it is a risk to the
firewall?
- Original Message -
From: Skough Axel U/IT-S [EMAIL PROTECTED]
To: 'Bruno Negrão' [EMAIL PROTECTED]
Sent: Monday, January 14, 2002 10:51 AM
Subject: RE: Help to analyze the pop3 protocol
Hello,
The AUTH protocol
received
such kind of letter from my E-Mail address.
Maybe it's some mismatch in the
Yahoo mail delivery system .. but I think it's a case of E-Mail
faking.
Thank you in
advance.
Best regards,
Boryan Yotov
I attached two of the failed
E-Mails if they could help you
On 11 Jan 2002 at 10:26, Boryan Yotov wrote:
I know this doesn't concern not the firewall neither the netfilter
news group but I don't know what to do at all.
I've had exactly the same - over the past few days about 10 bounces for
spam that has used my address, plus I've had colleagues in
.
Maybe it's some mismatch in the Yahoo mail delivery system .. but I think it's a
case of E-Mail faking.
Thank you in advance.
Best regards,
Boryan Yotov
I attached two of the failed E-Mails if they could help you
submissions to
[EMAIL PROTECTED]
To subscribe or unsubscribe via the World Wide Web, visit
http://lists.gnac.net/mailman/listinfo/firewalls
or, via email, send a message with subject or body 'help' to
[EMAIL PROTECTED]
You can reach the person managing the list at
[EMAIL
On Wed, Jan 09, 2002 at 05:12:25PM -0500, Hunt, Curtis wrote:
Please unsubscribe me from your list for the last time.
I think this URL, given in every mailing from the list, will help you:
To subscribe or unsubscribe via the World Wide Web, visit
http://lists.gnac.net/mailman/listinfo
Curtis,
You are sending your request to the wrong address. As you can see in the
e-mail you included, you need to send subscribe/unsubscribe requests to
'[EMAIL PROTECTED]'. You are sending your e-mail to the
mailing list submissions address.
Greg S.
dear sir
am trying to compile satan on my linux 7.0 host,
i get the following error when i run the 'make linux ' command
satan-1.1.1]# make linux
The LINUX rules are untested and may be wrong
make[1]: Entering directory `/var/satan-1.1.1'
cd src/misc; make LIBS=
On 18 Dec 2001 at 16:29, Brian Ford wrote:
I use Kiwi Syslog also. It's wonderful. Andrew Ross, the developer is a
great person and has a great product.
An impotant PIX syslog feature that you didn't mention (and the reason we
put out a syslogd in the first place) is TCP Syslog. On
On 19 Dec 2001, at 8:44, Daniel Crichton wrote:
On 18 Dec 2001 at 16:29, Brian Ford wrote:
And Kiwi supports PIX TCP Syslog too!
I personally will never touch TCP syslog with the PIX - I once had
my syslog server run out of disk space and the PIX shut down.
Check the release notes for
On 19 Dec 2001 at 3:13, [EMAIL PROTECTED] wrote:
It seems to me that running out of log space *should* not be a
normal condition, and might indicate a deliberate hostile attempt to
disable logging. Whether one wants to continue to permit connections
with logging disabled is a policy
]
Organization: Computer Manuals Ltd.
To: [EMAIL PROTECTED]
Date: Wed, 19 Dec 2001 11:46:39 -
Subject: Re: Re: PIX logging setup help
Reply-To: [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]
On 19 Dec 2001 at 3:13, [EMAIL PROTECTED] wrote:
It seems to me that running out of log space *should
: Daniel Crichton [EMAIL PROTECTED]
Organization: Computer Manuals Ltd.
To: Timothy K. Cornelius [EMAIL PROTECTED]
Date: Tue, 18 Dec 2001 09:41:32 -
Subject: Re: PIX logging setup help
Reply-To: [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]
On 15 Dec 2001 at 10:17, Timothy K. Cornelius wrote
Setting up the logging was very simple and took about 15 minutes to do.
If anyone else want to setup logging for their Pix email me privately and I
will show them. Or if I get enough response to this I will write a little how
to with diagrams and documents showing what to do and what not
We have 2 pix 515 firewalls and 2 VPN 3000 concentrators connected to a 3640
router that connects to our ISP with 2 T-1's I have downloaded ciscos pix
logging server for NT. Is there any problem that has come up trying to setup
logging to Compaq server from the Pix? Any help would greatly
Hi,
I would like to know why a DNS server will try to connect to my DNS server
on port 1031.
I've got the following denied at my Firewall.
%PIX-4-106023: Deny udp src outside:66.34.137.1/53 dst
dmz1:206.47.245.10/1031 by access-group acl_out
%PIX-4-106023: Deny udp src
Message -
From: Jose Nazario [EMAIL PROTECTED]
To: jennyw [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]
Sent: Saturday, November 17, 2001 4:08 PM
Subject: Re: Please help w/ ipchains log
On Sat, 17 Nov 2001, jennyw wrote:
My interpretation is that several computers, all within the 171.66.x.x
I'm just starting to learn ipchains and have a
Debian GNU/Linux system (woody) setup. This morning, I started getting a lot of
stuff in the log, and I'm not sure what it is. An excerpt from the log is at the
end of the message.
My interpretation is that several computers, all
within the
On Sat, 17 Nov 2001, jennyw wrote:
My interpretation is that several computers, all within the 171.66.x.x
subnet are attempting access to my computer. But this seems rather odd
... could it be that I've configured something wrong and it's not
really coming from these other folks? Then
this at the firewall?
HELP!!!
The real fix for this is to configure your smtp software correctly.
Your firewall filter should be an adjunct not the definative measure for
your relay configuration.
John
On Tue, Oct 23, 2001 at 04:26:22PM -0500, Timothy K. Cornelius wrote:
At this time our
On Wed, 24 Oct 2001, Timothy K. Cornelius wrote:
But my point was to see if there was a solution at the firewall level.
Now I know there are many many intelligent people on this list and I
wanted an answer on a way to do this.
unfortunately there isn't, that's kind of everyone's point. you
into the FAQ I will.
Thank you for your help
Steven
*** REPLY SEPARATOR ***
On 10/23/2001 at 9:06 PM [EMAIL PROTECTED] wrote:
I have to agree with some of the other comments. You shouldn't use your
firewall
to fix a bad SMTP server. Take a look at www.postfix.org, which is my
favorite
On Wed, 24 Oct 2001, Steven Pierce wrote:
Question: I was reading the FAQ on postfix site. One questions is
that do you still need Sendmail on the server for Postfix to run??
From what I can tell it is a total replacement for sendmail. Am I
making an assumption for something that I should
Jose,
Thank you for answering my question. I am reading more on the FAQ and also just
joined the list for Postfix.
Steven
*** REPLY SEPARATOR ***
On 10/24/2001 at 11:15 AM Jose Nazario wrote:
On Wed, 24 Oct 2001, Steven Pierce wrote:
Question: I was reading the FAQ on
Greetings!
Steven Pierce schrieb:
Question: I was reading the FAQ on postfix site. One questions is that do you
still need
Sendmail on the server for Postfix to run?? From what I can tell it is a total
replacement
for sendmail. Am I making an assumption for something that I should
Volker,
Thank you. I have not started to use Sendmail as of yet. I am just getting ready for
my mail
server to go online. If it is a complete replacement that helps. I have heard a lot
of horror
stories about setting send mail is not for the faint of heart...
Steven
*** REPLY
that denies and mail service plus 2 services with resources
(SMTP-openrelay-in and SMTP-openrelay-out) these are the same as the first
two. Is this not the correct way to handle stopping an open relay mailserver
or is there a better way?
PLEASE HELP ME ASAP!!! our mail services
as the first
two. Is this not the correct way to handle stopping an open relay mailserver
or is there a better way?
PLEASE HELP ME ASAP!!! our mail services are just about
non-existent, except my Firewall email groups.
1 Source: anyDest.: mailserver Service: SMTP-our-mail-only
-in and
SMTP-openrelay-out) these are the same as the first two. Is this
not the correct way to handle stopping an open relay mailserver or
is there a better way?
PLEASE HELP ME ASAP!!! our mail services are just about
non-existent, except my Firewall email groups.
1 Source: any
On Tue, 23 Oct 2001, Timothy K. Cornelius wrote:
At this time our internet mailserver(behind the FW-1) has been designated as
an open relay mailserver and has been blacklisted by several spam blocker
websites( www.orbz.org is one of them) after reading up on how to stop this
at the firewall
with resources (SMTP-openrelay-in and
SMTP-openrelay-out) these are the same as the first two. Is this
not the correct way to handle stopping an open relay mailserver or
is there a better way?
PLEASE HELP ME ASAP!!! our mail services are just about
non-existent, except my Firewall
I have to agree with some of the other comments. You shouldn't use your firewall
to fix a bad SMTP server. Take a look at www.postfix.org, which is my favorite.
It's relay free, out of the box. (Or out of the tar file as it were, since
it doesn't come in a box and is free).
On Tue, Oct 23,
We are in the process of implementing a cisco PIX and VPN to a new ISP.
both machine are configured and are setup parallel(beside each other). one
side of both PIX and VPN servers are connected to a cisco 3640 router using
BGP and the other side of both are connected to our network on a Alcatel
Hello,
just working on a Page for IT-Security Starters. It should contain basic
information (opposed to detailed knowledge) to enable people to have an
educated background in risk analysis, social engeneering and IT-System
Design before they start to get into the Security Topics.
Therefore I
Title: RE: Certification Help
Hi,
I completed the Londons SANS course. I have to say that just meeting these guys are awesome. The course material itself is nothing that you cant find on the web, BUT and a big BUT, is that the hands-on experience that you get from the guys that give
Hi
Are any of you aware of the acceptibility of the GIAC Certifications. Please
also guide me as to where to find study material for the following courses
* GIAC Security Essentials Certification (GSEC)
* GIAC Certified Firewall Analyst (GCFW)
* GIAC Certified Intrusion Analyst (GCIA)
*
AM
Subject: Certification Help
Hi
Are any of you aware of the acceptibility of the GIAC Certifications.
Please
also guide me as to where to find study material for the following courses
* GIAC Security Essentials Certification (GSEC)
* GIAC Certified Firewall Analyst (GCFW)
* GIAC
of the GIAC
certifications?
Please help...
Regards,
Steve J.
___
Firewalls mailing list
[EMAIL PROTECTED]
http://lists.gnac.net/mailman/listinfo/firewalls
://lists.gnac.net/mailman/listinfo/firewalls
or, via email, send a message with subject or body 'help' to
[EMAIL PROTECTED]
You can reach the person managing the list at
[EMAIL PROTECTED]
When replying, please edit your Subject line so it is more specific
than "Re: Contents of Firewalls d
the World Wide Web, visit
http://lists.gnac.net/mailman/listinfo/firewalls
or, via email, send a message with subject or body 'help' to
[EMAIL PROTECTED]
Just go to the link where it says unsubscribe:
http://lists.gnac.net/mailman/listinfo/firewalls
Then go to the bottom of the page and look
://lists.gnac.net/mailman/listinfo/firewalls
or, via email, send a message with subject or body 'help' to
[EMAIL PROTECTED]
You can reach the person managing the list at
[EMAIL PROTECTED]
When replying, please edit your Subject line so it is more specific
than "Re: Contents of Firewalls d
Hi,
Please tell if some knows
how to find if some one is trying to ping my machine
both
1. from internal network
2. Out side of my LAN.
thanks,
Sudipto.
=
The most I can do for my friend is.
Simply to be his friend.
__
Do
Subject: DMZ Help!
Hello All,
I am in desperate need of some help. I am considering implementing a DMZ
in
my network and am interested in knowing how to set up an DMZ. What I
would
like to do is put my Web server and mail server behind the DMZ on a
completely different subnet. What I
I would suggest reading Building Internet Firewalls
(http://www.bookpool.com/.x/sa78pn34o4/sm/1565928717) for help understanding
this. It not only covers the hows, but the whys of doing such things. Once
you've read some, you should be able to figure out how best to satisfy your
site's needs
hosts, you can tell what, where, and when.. then you
can figure out the how..).
Good luck
Carric Dooley
Senior Consultant
COM2:Interactive Media
But this one goes to eleven.
-- Nigel Tufnel
On Mon, 2 Jul 2001, Stewart, Chris B wrote:
Hello All,
I am in desperate need of some help. I am
Thanks to all who have replied to my previous question. I have another
little question.
I apologize if this sounds confusing, I am trying to understand the whole
DMZ
technology. My questions concerns putting Exchange Server
in a DMZ. I understand that I can put a windows 2000
server on my DMZ
Hello All,
I am in desperate need of some help. I am considering implementing a DMZ in
my network and am interested in knowing how to set up an DMZ. What I would
like to do is put my Web server and mail server behind the DMZ on a
completely different subnet. What I don't understand is how
Stewart, Chris B wrote:
I am in desperate need of some help. I am considering implementing a DMZ in
my network and am interested in knowing how to set up an DMZ. What I would
like to do is put my Web server and mail server behind the DMZ on a
completely different subnet. What I don't
Hi,
I have twice sent an unsubscribe e-mail as per the instructions
I received when I first signed up. Both times the e-mail bounced
back with a could not deliver message. Any suggestion as to
how I can get off this mailing list would be appreciated. TIA
Tom.
Wide Web, visit
http://lists.gnac.net/mailman/listinfo/firewalls
or, via email, send a message with subject or body 'help' to
[EMAIL PROTECTED]
You can reach the person managing the list at
[EMAIL PROTECTED]
When replying, please edit your Subject line so it is more specific
, June 21, 2001 4:02 AM
To: [EMAIL PROTECTED]
Subject: PIX Outside Interface - Please Help
Group,
I need to get off of PSINET and onto UUNET ASAP. My problem is that all of
my servers are behind the PIX, and I can only make them listen on one
subnet. I either need to have the STATIC command
Paul,
You don't need to do either. All you need to do is change your outside interface
address AND global pool of addresses to those assigned by your new ISP (or bandwidth
provider). Do a re-load and Bingo youre back on-line in a matter of minutes.
BUT:
The problem is your DNS records,
Group,
I need to get off of PSINET and onto UUNET ASAP. My problem is that all of
my servers are behind the PIX, and I can only make them listen on one
subnet. I either need to have the STATIC command on the outside interface
listen on two different ip ranges. OR . I need to create two
Title: rigas1 Stationery
Hi,
Where I should write a
mail to ask a quastion about a problem I have with a Firewall-1 and Floodgate
software?
Here is the problem.We
have a Firewall-1 with a DMZ zone and the feature Floodgate-1 installed and
working.We don't use aNAT for theDMZ zone so the
Hi,
just the file external.if is the problem: It should contain the name
of the external interface, e.g. El90x1 - the name, the interface known
by the OS and not an IP.
To set the counter back, stop the FW/FG, edit external.if, delete fwd.h
and fwd.hosts (in $FWDIR/database) and start the FW/FG
Hi,
I'm doing NATting (1:1) through ip route command.
ip route add nat ext ip via int ip
ip rule add prio 320 from int ip nat ext ip
now my ext ip is accessibale from other systems. BUT
strangely when I try to access my ext ip then from
some systems it works fine but from other system it
won't
hi,everybody:
In the firewall-1 Log Viewer,I change mode to "active",and use the "block
intruder".
I want to block a connection one time and just 5 minutes,but I set the
blocking timeout to Indefinite,that mean "never".
Now,I want to change the mistake,delete it and set it again,but I can find
the browser should make a new connection for the new redirected
location or proxy should connect to new location without forwarding the
response
comming from the web server to the browser? rfc says that the redirection
should
be reported to the user.
Please help me on this problem.
Thanks in
5.5 and i connected to google.com.
Is it that the browser should make a new connection for the new redirected
location or proxy should connect to new location without forwarding the response
comming from the web server to the browser? rfc says that the redirection should
be reported to the use
to help me
with the patching. Problem is, it's commercial. How will I obtain this tool?
I called Sun but I got lost with the automatic attendant.
Lastly, please tell me what files/directories to backup so that in case
something goes wrong, I can revert back to the old configuration. Yeah, what
tool
http://www.enteract.com/~lspitz/armoring.html
is a good start.
--- Ronneil Camara [EMAIL PROTECTED] wrote:
Hi everyone,
Sorry, this is a bit off topic and I couldn't find anywhere where people
really knows what they're doing. :-)
I would like to harden a solaris 7 box on intel. This is
no 64bit mode on Intel unless things have changed.
Overall his advice works well - and a lot of is common sense (how to
disable rc files, touch .netrc; touch .rhosts; chmod 000 .netrc .rhosts
etc... - which daemons can be safely disabled, CDE, nfs etc...)
The last time I tried it (a couple of
Thanks for all who replied. I really appreciate it very much. /8-)
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
Shimamoto; Ronneil Camara; [EMAIL PROTECTED]
Subject: Re: Solaris: HELP!!!
no 64bit mode on Intel unless things have changed.
Overall his advice works well - and a lot of is common sense (how to
disable rc files, touch .netrc; touch .rhosts; chmod 000 .netrc .rhosts
etc... - which daemons can
To: [EMAIL PROTECTED]
Sent: Tuesday, April 10, 2001 7:49 PM
Subject: Solaris: HELP!!!
Hi everyone,
Sorry, this is a bit off topic and I couldn't find anywhere where people
really knows what they're doing. :-)
I would like to harden a solaris 7 box on intel. This is just the box for
my
testi
61
done
if [ "$ETH1" = "up" ] do
cat /proc/net/route | grep A14655D4 $B3
done
if [ "$B3" = " " ] do
/sbin/./route add -net 0.0.0.0 gw 212.85.70.161 netmask 0.0.0.0
done
pause 15 sek
go
1 - 100 of 262 matches
Mail list logo