Over 2 years ago, I had a situation with the pro version (no support) where it was constantly rebooting.
I looked at logs, monitored traffic, sat and "babysat" the system... Finally I emailed support and informed them that something was wrong. Turned out - they replied and helped me look at several config issues. Net result - Someone was using "Laplink" and pointing it directly at the DMZ NIC. Final solution - Filter to prevent ANYTHING from pointing at the DMZ - no more Dos (although, there are other ways to do a Dos attack)... Bottom line - They take pride in their product; and on those special occasions, make the extra effort to help out. The more I see this group comment, the more I am convinced this is far less a threat the hinted at. Andrew, if you really want support, ask the group and you will probably have 5 or 10 security experts ready to give a helping hand. All that is asked of you is clarification as to: What you did to cause the crash? How reproducible is it? On what versions is it reproducible? And provide some information as to your config (without providing addresses, user data or schemas). On a lighter note: I located 3 major sources of SPAM, some originating in California. I finally decided to block them at the firewall. My SPAM filters now trap about 18 per day versus 200+ before the blocks! So far I am seeing an average of 500 hits per hour from each of the blocked networks. Interested in the ip class info: 210.192.111.83 - 85 64.156.187.40 - 59 64.156.187.61 - 79 64.156.187.120 - 130 They are for: dailyripple smilepop Their DNS are open to zone xfers. Anyone interested in the remainder of my block list can email me. Danny -----Original Message----- From: Stephen Bradley [mailto:[EMAIL PROTECTED]] Sent: Thursday, September 26, 2002 12:30 PM To: 'Paul Emerson'; [EMAIL PROTECTED] Subject: RE: [gb-users] Any ideas who I would contact at GTA with r egards to a possible way to crash a GNATBox fire wall? i believe this list helps separate a lot of the config problems from security issues. although not instant it certainly helps people with little problems that don't require gta's involvement. what? you can't provide free support for a free product and make money? ;-) steve -----Original Message----- From: Paul Emerson [mailto:[EMAIL PROTECTED]] Sent: Thursday, September 26, 2002 2:27 PM To: [EMAIL PROTECTED] Subject: RE: [gb-users] Any ideas who I would contact at GTA with regards to a possible way to crash a GNATBox fire wall? Free (installation) support is available for the fist 30 days. We do offer various support plans. It is true that you need a support contract in order to have the support staff work on an issue. It doesn't mean that you can't send email to them. They've been instructed to make sure that customers seeking support have a contract before they begin working on a problem. If an issue such as the one alluded to exists I'm sure it would be investigated. We have discussed creating an email address or web facility for users to report suspected bugs, and possible security issues. I think this would go a long way in addressing such issues. The big problem for GTA is sorting the wheat from the chaff. Quite often what a user thinks is a bug or security flaw is not, but rather a misconfiguration (maybe not even the firewall but other sw/hw), or misunderstanding of networking/firewalling, etc. It is true we don't offer support for GB-Light users for the obvious reason--it's free and we can't run a company providing free support for a free product. The web forum and the mailing list are good resources for GB-Light users to gain information and ask questions. Paul >Paul, > >Don't ya'll restrict use of [EMAIL PROTECTED] to paying customers? It has >certainly been my impression that LITE users don't receive support. > >As such, perhaps he felt that wasn't appropriate ... though I must admit >it wouldn't slow me down for a possible security issue. > >Dave Morris > >On Thu, 26 Sep 2002, Paul Emerson wrote: > >> Ok, now I see it in the Subject line. I wish it would have been >>in the body. >> >> I thought it was rather obvious that [EMAIL PROTECTED] would be a good >> place to start. >> >> >> >> >> >On Thu, 26 Sep 2002, Paul Emerson wrote: >> > >> >> Interesting. >> >> >> >> GTA has not been contacted by Andrew Batson about this issue. >> > >> >Well he *was* asking about who to contact. My suggestion would be tech >> >support as a start. Is there a better place? >> > >> > >> > >> >Joe Matuscak >> >Rohrer Corporation >> >717 Seville Road >> >Wadsworth, Ohio 44281 >> >(330)335-1541 >> >[EMAIL PROTECTED] >> >> --------------------------------------------------------------------- >> To unsubscribe, e-mail: [EMAIL PROTECTED] >> To subscribe to the digest version first unsubscribe, then >> e-mail: [EMAIL PROTECTED] >> For additional commands, e-mail: [EMAIL PROTECTED] >> Archive of the last 1000 messages: >> http://www.mail-archive.com/[email protected] --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] To subscribe to the digest version first unsubscribe, then e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archive of the last 1000 messages: http://www.mail-archive.com/[email protected] --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] To subscribe to the digest version first unsubscribe, then e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archive of the last 1000 messages: http://www.mail-archive.com/[email protected] --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] To subscribe to the digest version first unsubscribe, then e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archive of the last 1000 messages: http://www.mail-archive.com/[email protected]
