/* HINT: Search archives @ http://www.indyramp.com/masq/ before posting! */ Hey Everyone, The biggest news of this update is that the IPCHAINS ruleset now does SYN/ACK checking. This greatly improves security for all HIGH ports. 252 users on the list. --David ========================================================= Criticality -- Date What was changed and in what [Section] -------- ----------------------------------------------- ========================================================== I 9/7/99 I've finally posted a firewall ruleset that supports the HIGH PORT SYN/ACK checking. This helps reduce the number of high port attacks from the Internet since the only HIGH port traffic that is accepted is REPLY traffic. PLEASE NOTE that this checking is NOT possible for UDP traffic and some specific application traffic. I also fixed a few other things in the IPCHAINS ruleset. See the version control header of the ruleset for more details. ** IF YOU HAVE ANY PROBLEMS WITH THIS RULESET, PLEASE LET ME KNOW ASAP ** [Section 10] I also changed the order of the rulesets to make IPCHAINS the first one since IPFWADM support is dieing and you can get IPCHAINS to run on 2.0.x kernels with a patch. [Section 10] ----------------- G 9/6/99 Finally changed the docs to reflect the sending of real-time SYSLOG data to the F7 and F8 VTYs via the SYSLOG daemon itself and not via a re-directed "tail". This is the cleaner way to do this which I've been doing for a WHILE but TrinityOS didn't reflect that. [Section 9] ------------------ G 9/5/99 Marcio sent me a 9/3/99 PDF and MS WORD version of TrinityOS and I've put it up. Looks VERY nice! One day all TrinityOS versions will be this nice but be re-orged, spell checked, and updated. *C* You know.. I *CAN'T* believe I didn't document this in TrinityOS before since I've always taken it for granted. *ALL* users should disable all unneeded programs in /etc/inetd.conf. Doh! [Section 8] ------------------ G 9/3/99 As an experiment, I'm trying a TrinityOS/Linux Forum via OneCenter.com. It offers a nice interface and hopefully people will want to use it for any Linux-related issue. Check it out and let me know what you think. If it isn't used much or people have issues with it, I will either create my own Forum tool or delete the feature all together. You can get to the forum either via the main URL at: http://forum.onecenter.com/linux-forum Or via my main Linux WWW page. G Also, "Marcio Almeida (M)" <[EMAIL PROTECTED]>, exported the 3/30/99 Word version of TrinityOS to .PDF. Its on the WWW site but PLEASE understand that the 3/30/99 version is VERY old. I promise that I'll start hacking away on the SGML version once the SANS book is finished. ------------------ G 9/2/99 Recommended to change the perms on /etc/lilo.conf to 700 for people that use the "password" option. [Section 15] N Moved all Updates older than 5/23/99 to http://www.ecst.csuchico.edu/~dranch/LINUX/TrinityOS-old-updates.wri ------------------ G 8/31/99 After these waves of SPAM I've been getting, I'm getting pretty HARSH on spam. I just updated the /etc/aliases file to reflect the "abuse" alias. [Section 18] Added another SSH-forwarding example and fixed some issues on my example. [Section 30] ------------------ G 8/30/99 Updated the build-it script to include the System.Map file and to cp and not mv the bzImage file to /boot. [Section 14] ------------------ I 8/29/99 I finally updated ALL of my WWW pages to include both WWW counters and a SEARCH Engine. Its all outsourced (I'm too busy to do it myself) but we'll see how well it works out. N Updated the RPM Watch URL [Section 5] G Updated the Redhat Errata URLs for RPM Watch [Section 43] ------------------ .----------------------------------------------------------------------------. | David A. Ranch - Linux/Networking/PC hardware [EMAIL PROTECTED] | !---- ----! `----- For more detailed info, see http://www.ecst.csuchico.edu/~dranch -----' _______________________________________________ Masq maillist - [EMAIL PROTECTED] Admin requests can be handled at http://www.indyramp.com/masq-list/ or email to [EMAIL PROTECTED] PLEASE read the HOWTO and search the archives before posting. You can start your search at http://www.indyramp.com/masq/ Please keep general linux/unix/pc/internet questions off the list.
