On Wed, Apr 03, 2002 at 03:22:39AM +0200, martin f krafft wrote:
> dear list,
>
> look, i am really not here to start a flame war and heck no, i don't
> want one. please excuse if my behaviour has been leading you onto this
> belief (or maybe not). i am simply failing to grasp the arguments laid
>
Dear .debs,
I am playing with packet filtering on a DHCP client and trying to get
it done the right way. Policy for all built-in chains is DROP and all
packets are logged before they go plonk. I pulled the network cable
while playing around.
Debian GNU/Linux 3.0
kernel 2.4.18-tux, iptables 1.2.
On Tue, Apr 02, 2002 at 11:49:53AM -0700, Will Aoki wrote:
> On Tue, Apr 02, 2002 at 10:23:21AM -0800, Anne Carasik wrote:
> > On Tue, Apr 02, 2002 at 07:45:21PM +0200, eim wrote:
> > > A question about some network services
> > > ==
> > >
> > > Hallo Debian fo
hi all,
does someone heard about any implementation of the SPSL (Simple Policy
Specification Language ?)
What i am looking for is a kind of parser / generator (more the generator side)
type of program
which wouls allow me to produce SPSL files easily. As a background, SPSL is a
language that
h
On Wed, Apr 03, 2002 at 03:22:39AM +0200, martin f krafft wrote:
> dear list,
>
> look, i am really not here to start a flame war and heck no, i don't
> want one. please excuse if my behaviour has been leading you onto this
> belief (or maybe not). i am simply failing to grasp the arguments laid
Dear .debs,
I am playing with packet filtering on a DHCP client and trying to get
it done the right way. Policy for all built-in chains is DROP and all
packets are logged before they go plonk. I pulled the network cable
while playing around.
Debian GNU/Linux 3.0
kernel 2.4.18-tux, iptables 1.2
I would bet that the vast majority of "flame wars" begin because someone
mistakes "terse" or "concise" for hostility.
The reverse, being the endless spewing of meaningless words, all the while
saying nothing at all or even the opposite of what it sounds like, is the art
of politicians and diplo
well, you make sense to me.
2c from an end-user.
martin f krafft wrote:
dear list,
look, i am really not here to start a flame war and heck no, i don't
want one. please excuse if my behaviour has been leading you onto this
belief (or maybe not). i am simply failing to grasp the arguments laid
hi all,
does someone heard about any implementation of the SPSL (Simple Policy Specification
Language ?)
What i am looking for is a kind of parser / generator (more the generator side) type
of program
which wouls allow me to produce SPSL files easily. As a background, SPSL is a language
that
dear list,
look, i am really not here to start a flame war and heck no, i don't
want one. please excuse if my behaviour has been leading you onto this
belief (or maybe not). i am simply failing to grasp the arguments laid
out by wichert. that is, i don't disagree with him per se, but i have
the fe
I would bet that the vast majority of "flame wars" begin because someone mistakes
"terse" or "concise" for hostility.
The reverse, being the endless spewing of meaningless words, all the while saying
nothing at all or even the opposite of what it sounds like, is the art of politicians
and dipl
well, you make sense to me.
2c from an end-user.
martin f krafft wrote:
> dear list,
>
> look, i am really not here to start a flame war and heck no, i don't
> want one. please excuse if my behaviour has been leading you onto this
> belief (or maybe not). i am simply failing to grasp the argum
dear list,
look, i am really not here to start a flame war and heck no, i don't
want one. please excuse if my behaviour has been leading you onto this
belief (or maybe not). i am simply failing to grasp the arguments laid
out by wichert. that is, i don't disagree with him per se, but i have
the f
On Tue, Apr 02, 2002 at 07:45:21PM +0200, eim wrote:
> All this services are stareted from inet.d / xinet.d so I can easily
> disable them via "update-inetd", so my only question is:
And *that's* the problem; update-inetd. I've run into this myself,
too, and the solution is to not use update-inet
On Tue, Apr 02, 2002 at 10:23:21AM -0800, Anne Carasik wrote:
> On Tue, Apr 02, 2002 at 07:45:21PM +0200, eim wrote:
> > A question about some network services
> > ==
> >
> > Hallo Debian folks,
> >
> > By default, on my debian boxes, I disable this network
> >
On Tue, 2 Apr 2002, Anne Carasik wrote:
> On Tue, Apr 02, 2002 at 07:45:21PM +0200, eim wrote:
> > A question about some network services
> > ==
> >
> > Hallo Debian folks,
> >
> > By default, on my debian boxes, I disable this network
> > services which are
On Tue, Apr 02, 2002 at 10:23:21AM -0800, Anne Carasik wrote:
>
> Well, daytime spits out the time of day, time is for NTP,
> and I'm not sure what discard is used for.
No, NTP does not use the time port. It uses port 123 (ntp in
/etc/services).
Discard is the network equivalent of /dev/null
T
[snips:]
Anne Carasik wrote:
> On Tue, Apr 02, 2002 at 07:45:21PM +0200, eim wrote:
> > A question about some network services
> > ==
...
>
> Well, daytime spits out the time of day, time is for NTP,
> and I'm not sure what discard is used for.
It is the net
On Tue, Apr 02, 2002 at 07:45:21PM +0200, eim wrote:
> A question about some network services
> ==
>
> Hallo Debian folks,
>
> By default, on my debian boxes, I disable this network
> services which are enabled automaticly during a fresh
> Debian stable aka "po
A question about some network services
==
Hallo Debian folks,
By default, on my debian boxes, I disable this network
services which are enabled automaticly during a fresh
Debian stable aka "potato" installtion:
* daytime
* time
* discar
Previously martin f krafft wrote:
> wrong. fix things with bandaid to give you more time to find the real
> problem. i am not saying that this is the final fix. put it this way,
> you aren't going to wait for intruders to make use of the opportunity
> while you search the drunkbold who broke your w
also sprach Wichert Akkerman <[EMAIL PROTECTED]> [2002.04.02.1250 +0200]:
> I does, and in fact it's a very good approach: make sure you study
> what the real problem is instead of trying to fix things with bandaid.
wrong. fix things with bandaid to give you more time to find the real
problem. i a
On Tue, Apr 02, 2002 at 07:45:21PM +0200, eim wrote:
> All this services are stareted from inet.d / xinet.d so I can easily
> disable them via "update-inetd", so my only question is:
And *that's* the problem; update-inetd. I've run into this myself,
too, and the solution is to not use update-ine
On Tue, Apr 02, 2002 at 10:23:21AM -0800, Anne Carasik wrote:
> On Tue, Apr 02, 2002 at 07:45:21PM +0200, eim wrote:
> > A question about some network services
> > ==
> >
> > Hallo Debian folks,
> >
> > By default, on my debian boxes, I disable this network
>
On Tue, 2 Apr 2002, Anne Carasik wrote:
> On Tue, Apr 02, 2002 at 07:45:21PM +0200, eim wrote:
> > A question about some network services
> > ==
> >
> > Hallo Debian folks,
> >
> > By default, on my debian boxes, I disable this network
> > services which ar
On Tue, Apr 02, 2002 at 10:23:21AM -0800, Anne Carasik wrote:
>
> Well, daytime spits out the time of day, time is for NTP,
> and I'm not sure what discard is used for.
No, NTP does not use the time port. It uses port 123 (ntp in
/etc/services).
Discard is the network equivalent of /dev/null
[snips:]
Anne Carasik wrote:
> On Tue, Apr 02, 2002 at 07:45:21PM +0200, eim wrote:
> > A question about some network services
> > ==
...
>
> Well, daytime spits out the time of day, time is for NTP,
> and I'm not sure what discard is used for.
It is the ne
On Tue, Apr 02, 2002 at 07:45:21PM +0200, eim wrote:
> A question about some network services
> ==
>
> Hallo Debian folks,
>
> By default, on my debian boxes, I disable this network
> services which are enabled automaticly during a fresh
> Debian stable aka "p
A question about some network services
==
Hallo Debian folks,
By default, on my debian boxes, I disable this network
services which are enabled automaticly during a fresh
Debian stable aka "potato" installtion:
* daytime
* time
* disca
Previously martin f krafft wrote:
> wrong. fix things with bandaid to give you more time to find the real
> problem. i am not saying that this is the final fix. put it this way,
> you aren't going to wait for intruders to make use of the opportunity
> while you search the drunkbold who broke your
also sprach Wichert Akkerman <[EMAIL PROTECTED]> [2002.04.02.1250 +0200]:
> I does, and in fact it's a very good approach: make sure you study
> what the real problem is instead of trying to fix things with bandaid.
wrong. fix things with bandaid to give you more time to find the real
problem. i
On Tue, 2 Apr 2002 13:25:18 +0100, Jose Manuel dos Santos Calhariz
<[EMAIL PROTECTED]> wrote:
>Where I can more information about Trin00?
Well google of course:
http://www.google.com/search?hl=en&q=Trin00&btnG=Google+Search
First hit:
http://staff.washington.edu/dittrich/misc/trinoo.analysis
Tr
Hello !
> concern. Users can ssh into my machine but their profiles are fixed to
> run a menu of things I allow them to do. Thus they can't get to the $
> prompt and thus can't cd to other directories to see what's there. And
maybe i do not get the point but :
i think you should try 'pd
I have run nessus against a Debian Machine and it detected the Trin00
troian. If the nessus says that is a Windows troian how can it infect
a Debian Machine?
Where I can more information about Trin00?
Jose Calhariz
--
Todo mundo é ignorante, só que em assuntos diferentes...
--
To UN
I'd recommend installing AMaViS along with some virus scanner. I'm using
Kaspersky because it had a good recognition rate in a test and because
those Russians care more about Linux than most other AV vendors.
Also, AMaViS and the Kaspersky scanner can both run as daemons, saving
repeated startup
On Tue, 2 Apr 2002 13:25:18 +0100, Jose Manuel dos Santos Calhariz
<[EMAIL PROTECTED]> wrote:
>Where I can more information about Trin00?
Well google of course:
http://www.google.com/search?hl=en&q=Trin00&btnG=Google+Search
First hit:
http://staff.washington.edu/dittrich/misc/trinoo.analysis
T
Previously martin f krafft wrote:
> that's a purist approach which doesn't work with security.
I does, and in fact it's a very good approach: make sure you study
what the real problem is instead of trying to fix things with bandaid.
With all the energy wasted on this someone could have found the
Hello !
> concern. Users can ssh into my machine but their profiles are fixed to
> run a menu of things I allow them to do. Thus they can't get to the $
> prompt and thus can't cd to other directories to see what's there. And
maybe i do not get the point but :
i think you should try 'p
I have run nessus against a Debian Machine and it detected the Trin00
troian. If the nessus says that is a Windows troian how can it infect
a Debian Machine?
Where I can more information about Trin00?
Jose Calhariz
--
Todo mundo é ignorante, só que em assuntos diferentes...
--
To U
>
>
>I'd recommend installing AMaViS along with some virus scanner. I'm using
>Kaspersky because it had a good recognition rate in a test and because
>those Russians care more about Linux than most other AV vendors.
>Also, AMaViS and the Kaspersky scanner can both run as daemons, saving
>repeated
also sprach Wichert Akkerman <[EMAIL PROTECTED]> [2002.03.31.2009 +0200]:
> Because it might impact other packages as well.
sure, but the upload won't.
> I'ld rather make sure we don't have a bug in multiple packages then
> a reasonably harmless semi-bug in a single package.
that's a purist appr
Previously martin f krafft wrote:
> that's a purist approach which doesn't work with security.
I does, and in fact it's a very good approach: make sure you study
what the real problem is instead of trying to fix things with bandaid.
With all the energy wasted on this someone could have found the
also sprach Wichert Akkerman <[EMAIL PROTECTED]> [2002.03.31.2009 +0200]:
> Because it might impact other packages as well.
sure, but the upload won't.
> I'ld rather make sure we don't have a bug in multiple packages then
> a reasonably harmless semi-bug in a single package.
that's a purist app
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
44 matches
Mail list logo