Re: anyone using telnet
On Thu, Mar 22, 2001 at 10:36:21AM -0800, Mike Fedyk wrote: > I don't even use it for that. I install netcat on all of my boxes that I > test from, and it works great, and it exits with a ^C instead of a "^] quit". Yes, that's what I was thinking when I said telnet was obsolete. -- #define X(x,y) x##y Peter Cordes ; e-mail: X([EMAIL PROTECTED] , ns.ca) "The gods confound the man who first found out how to distinguish the hours! Confound him, too, who in this place set up a sundial, to cut and hack my day so wretchedly into small pieces!" -- Plautus, 200 BCE
Re: anyone using telnet
> on Mon, Mar 19, 2001 at 01:07:51PM -0400, Peter Cordes ([EMAIL PROTECTED]) > wrote: > > Don't even bother with telnet, it's obsolete. Install sshd on any > > machines that don't have it yet, and don't install telnet on the > > public machine. > On Wed, Mar 21, 2001 at 11:46:34PM -0800, kmself@ix.netcom.com wrote: > In this context, I agree with the statements above (a public access > kiosk should use SSH). However, telnet of itself remains a useful > _client_, largely for accessing arbitrary services for testing. > > I would tend to support rooting out all instances of telnet _daemons_ > (servers). However I don't see a great deal of harm in providing a > telent client to informed users. Likely not those you'd find on a > public access system. > I don't even use it for that. I install netcat on all of my boxes that I test from, and it works great, and it exits with a ^C instead of a "^] quit". Mike
Re: anyone using telnet
On Thu, Mar 22, 2001 at 10:36:21AM -0800, Mike Fedyk wrote: > I don't even use it for that. I install netcat on all of my boxes that I > test from, and it works great, and it exits with a ^C instead of a "^] quit". Yes, that's what I was thinking when I said telnet was obsolete. -- #define X(x,y) x##y Peter Cordes ; e-mail: X([EMAIL PROTECTED] , ns.ca) "The gods confound the man who first found out how to distinguish the hours! Confound him, too, who in this place set up a sundial, to cut and hack my day so wretchedly into small pieces!" -- Plautus, 200 BCE -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: anyone using telnet
> on Mon, Mar 19, 2001 at 01:07:51PM -0400, Peter Cordes ([EMAIL PROTECTED]) >wrote: > > Don't even bother with telnet, it's obsolete. Install sshd on any > > machines that don't have it yet, and don't install telnet on the > > public machine. > On Wed, Mar 21, 2001 at 11:46:34PM -0800, [EMAIL PROTECTED] wrote: > In this context, I agree with the statements above (a public access > kiosk should use SSH). However, telnet of itself remains a useful > _client_, largely for accessing arbitrary services for testing. > > I would tend to support rooting out all instances of telnet _daemons_ > (servers). However I don't see a great deal of harm in providing a > telent client to informed users. Likely not those you'd find on a > public access system. > I don't even use it for that. I install netcat on all of my boxes that I test from, and it works great, and it exits with a ^C instead of a "^] quit". Mike -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Please remove me from this mailing list
Luke Diamand wrote: > Please can someone remove me from this mailing list. > > I've send countless emails both to debian-security-request (which tells > me it doesn't know who I am, but lists my email address anyway) and to > the listmaster, which go unanswered. When I get back from the States, I'll catch up with the listmaster mail. Some time next week. cheers, Remco.
Re: Applications using Linux capabilities
[EMAIL PROTECTED] (=?ISO-8859-1?Q?Juha_J=E4ykk=E4?=) writes: > > - xntp3 w/patch (just keeps CAP_SYS_TIME, drops uid 0) > > As far as I can recall, xntp3 was split into ntp and ntpdate > somewhere around version 4. You are correct that the Debian package is now derived from version 4 upstream source, and split into ntp and ntpdate packages. > I do not see why there is any need for the older version. The point of the original posting was to identify applications that can use "capabilities" to avoid running with root privs all the time. There is apparently a patch for xntp3 out there somewhere, which suggests that it might be possible to generate such a patch for ntp/ntpdate fairly reasonably. I can confirm that the current Debian packages run as root, since I maintain those packages. Bdale
Re: Applications using Linux capabilities
> - xntp3 w/patch (just keeps CAP_SYS_TIME, drops uid 0) As far as I can recall, xntp3 was split into ntp and ntpdate somewhere around version 4. I do not see why there is any need for the older version. Besides there used to be a .deb for it. -- --- | Juha Jäykkä, [EMAIL PROTECTED]| | home: http://www.utu.fi/~juolja/ | ---
Re: Please remove me from this mailing list
Luke Diamand wrote: > Please can someone remove me from this mailing list. > > I've send countless emails both to debian-security-request (which tells > me it doesn't know who I am, but lists my email address anyway) and to > the listmaster, which go unanswered. When I get back from the States, I'll catch up with the listmaster mail. Some time next week. cheers, Remco. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Applications using Linux capabilities
[EMAIL PROTECTED] (=?ISO-8859-1?Q?Juha_J=E4ykk=E4?=) writes: > > - xntp3 w/patch (just keeps CAP_SYS_TIME, drops uid 0) > > As far as I can recall, xntp3 was split into ntp and ntpdate > somewhere around version 4. You are correct that the Debian package is now derived from version 4 upstream source, and split into ntp and ntpdate packages. > I do not see why there is any need for the older version. The point of the original posting was to identify applications that can use "capabilities" to avoid running with root privs all the time. There is apparently a patch for xntp3 out there somewhere, which suggests that it might be possible to generate such a patch for ntp/ntpdate fairly reasonably. I can confirm that the current Debian packages run as root, since I maintain those packages. Bdale -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Please remove me from this mailing list
* Randy Edwards |Is it any wonder that the Debian mail server isn't recognizing a | domain name of "harsha"? The last I heard, the Debian maintainer for | the mailing list program was still working on the artificial | intelligence module that reads people's minds... :-) You should be able to unsubscribe at http://www.debian.org/MailingLists/unsubscribe , have you tried that? -- Tollef Fog Heen Unix _IS_ user friendly... It's just selective about who its friends are.
Re: Please remove me from this mailing list
harshu wrote: > i am also facing the same problem, i have countless attempts too. > > harsha Harsha, your problem is a misconfigured mail client. Your address comes through as this: X-Envelope-Sender: [EMAIL PROTECTED] Received: (qmail 31930 invoked from network); 22 Mar 2001 10:02:11 - Received: from hd2.vsnl.net.in (HELO hd2.dot.net.in) (202.54.30.2) by murphy.debian.org with SMTP; 22 Mar 2001 10:02:11 - Received: from harsha ([203.197.21.112]) by hd2.dot.net.in (8.8.8/8.8.8) with ESMTP id PAA21645 for ; Thu, 22 Mar 2001 15:25:41 +0530 (IST) Received: from harshu by harsha with local (Exim 3.22 #1 (Debian)) id 14g25q-8d-00 for ; Thu, 22 Mar 2001 15:43:22 +0530 Date: Thu, 22 Mar 2001 15:43:22 +0530 From: harshu <[EMAIL PROTECTED]> To: debian-security@lists.debian.org Subject: Re: Please remove me from this Look at the "From:" line -- "[EMAIL PROTECTED]". That's invalid. I'm sure that was not the E-Mail address you signed up for the list from. Is it any wonder that the Debian mail server isn't recognizing a domain name of "harsha"? The last I heard, the Debian maintainer for the mailing list program was still working on the artificial intelligence module that reads people's minds... :-) Regards, . Randy
Re: Applications using Linux capabilities
> - xntp3 w/patch (just keeps CAP_SYS_TIME, drops uid 0) As far as I can recall, xntp3 was split into ntp and ntpdate somewhere around version 4. I do not see why there is any need for the older version. Besides there used to be a .deb for it. -- --- | Juha Jäykkä, [EMAIL PROTECTED]| | home: http://www.utu.fi/~juolja/ | --- -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Please remove me from this mailing list
i am also facing the same problem, i have countless attempts too. harsha On Thu, Mar 22, 2001 at 08:09:03AM +, Luke Diamand wrote: > Please can someone remove me from this mailing list. > > I've send countless emails both to debian-security-request (which tells > me it doesn't know who I am, but lists my email address anyway) and to > the listmaster, which go unanswered. > > Thanks in advance, > Luke Diamand > > > -- > To UNSUBSCRIBE, email to [EMAIL PROTECTED] > with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED] > > -- Q: Why haven't you graduated yet? A: Well, Dad, I could have finished years ago, but I wanted my dissertation to rhyme.
Please remove me from this mailing list
Please can someone remove me from this mailing list. I've send countless emails both to debian-security-request (which tells me it doesn't know who I am, but lists my email address anyway) and to the listmaster, which go unanswered. Thanks in advance, Luke Diamand
Applications using Linux capabilities
Hi folks I'm currently collecting a list of applications which make use of the capabilities introduced in Linux 2.2. However this list is quite short and I'm wondering whether I am searching wrong or the capabilities aren't advocated enough yet or just not used as they're bad or whatever (huge "huh?" here from my side). So if anyone has a application to add to this list, please tell me so. Incredibly long list of apps: - proftpd - xntp3 w/patch (just keeps CAP_SYS_TIME, drops uid 0) MfG/Regards, Alexander -- Alexander Reelsen http://joker.rhwd.de [EMAIL PROTECTED] GnuPG: pub 1024D/F0D7313C sub 2048g/6AA2EDDB [EMAIL PROTECTED] 7D44 F4E3 1993 FDDF 552E 7C88 EE9C CBD1 F0D7 313C Securing Debian:http://joker.rhwd.de/doc/Securing-Debian-HOWTO
Re: Please remove me from this mailing list
* Randy Edwards |Is it any wonder that the Debian mail server isn't recognizing a | domain name of "harsha"? The last I heard, the Debian maintainer for | the mailing list program was still working on the artificial | intelligence module that reads people's minds... :-) You should be able to unsubscribe at http://www.debian.org/MailingLists/unsubscribe , have you tried that? -- Tollef Fog Heen Unix _IS_ user friendly... It's just selective about who its friends are. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Please remove me from this mailing list
harshu wrote: > i am also facing the same problem, i have countless attempts too. > > harsha Harsha, your problem is a misconfigured mail client. Your address comes through as this: X-Envelope-Sender: harshu@harsha Received: (qmail 31930 invoked from network); 22 Mar 2001 10:02:11 - Received: from hd2.vsnl.net.in (HELO hd2.dot.net.in) (202.54.30.2) by murphy.debian.org with SMTP; 22 Mar 2001 10:02:11 - Received: from harsha ([203.197.21.112]) by hd2.dot.net.in (8.8.8/8.8.8) with ESMTP id PAA21645 for <[EMAIL PROTECTED]>; Thu, 22 Mar 2001 15:25:41 +0530 (IST) Received: from harshu by harsha with local (Exim 3.22 #1 (Debian)) id 14g25q-8d-00 for <[EMAIL PROTECTED]>; Thu, 22 Mar 2001 15:43:22 +0530 Date: Thu, 22 Mar 2001 15:43:22 +0530 From: harshu To: [EMAIL PROTECTED] Subject: Re: Please remove me from this Look at the "From:" line -- "harshu@harsha". That's invalid. I'm sure that was not the E-Mail address you signed up for the list from. Is it any wonder that the Debian mail server isn't recognizing a domain name of "harsha"? The last I heard, the Debian maintainer for the mailing list program was still working on the artificial intelligence module that reads people's minds... :-) Regards, . Randy -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: anyone using telnet
on Mon, Mar 19, 2001 at 01:07:51PM -0400, Peter Cordes ([EMAIL PROTECTED]) wrote: > On Mon, Mar 19, 2001 at 08:58:06AM -0300, Pedro Zorzenon Neto wrote: <...> > Don't even bother with telnet, it's obsolete. Install sshd on any > machines that don't have it yet, and don't install telnet on the > public machine. In this context, I agree with the statements above (a public access kiosk should use SSH). However, telnet of itself remains a useful _client_, largely for accessing arbitrary services for testing. I would tend to support rooting out all instances of telnet _daemons_ (servers). However I don't see a great deal of harm in providing a telent client to informed users. Likely not those you'd find on a public access system. -- Karsten M. Self http://kmself.home.netcom.com/ What part of "Gestalt" don't you understand? There is no K5 cabal http://gestalt-system.sourceforge.net/ http://www.kuro5hin.org pgpvPpFiavmQc.pgp Description: PGP signature
Re: Please remove me from this mailing list
i am also facing the same problem, i have countless attempts too. harsha On Thu, Mar 22, 2001 at 08:09:03AM +, Luke Diamand wrote: > Please can someone remove me from this mailing list. > > I've send countless emails both to debian-security-request (which tells > me it doesn't know who I am, but lists my email address anyway) and to > the listmaster, which go unanswered. > > Thanks in advance, > Luke Diamand > > > -- > To UNSUBSCRIBE, email to [EMAIL PROTECTED] > with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED] > > -- Q: Why haven't you graduated yet? A: Well, Dad, I could have finished years ago, but I wanted my dissertation to rhyme. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Please remove me from this mailing list
Please can someone remove me from this mailing list. I've send countless emails both to debian-security-request (which tells me it doesn't know who I am, but lists my email address anyway) and to the listmaster, which go unanswered. Thanks in advance, Luke Diamand -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Applications using Linux capabilities
Hi folks I'm currently collecting a list of applications which make use of the capabilities introduced in Linux 2.2. However this list is quite short and I'm wondering whether I am searching wrong or the capabilities aren't advocated enough yet or just not used as they're bad or whatever (huge "huh?" here from my side). So if anyone has a application to add to this list, please tell me so. Incredibly long list of apps: - proftpd - xntp3 w/patch (just keeps CAP_SYS_TIME, drops uid 0) MfG/Regards, Alexander -- Alexander Reelsen http://joker.rhwd.de [EMAIL PROTECTED] GnuPG: pub 1024D/F0D7313C sub 2048g/6AA2EDDB [EMAIL PROTECTED] 7D44 F4E3 1993 FDDF 552E 7C88 EE9C CBD1 F0D7 313C Securing Debian:http://joker.rhwd.de/doc/Securing-Debian-HOWTO -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]